Scenarios in business security: A risk assessment
James P. England
CMGT/442
April 16, 2012
David Conway
Scenarios in business security: A risk assessment The use of an external service provider for data storage
The storage of data is the key to any business, and the security of this information requires a plan for safe storage with ease to accessibility for the company. Typical business storage growth is at 40% per year, and the efficient management of storage is a key element in keeping operational costs to a minimum. Management cost for storage will outweigh hardware costs so efficiency by sharing of storage practices in an outsourcing environment will be generally more cost-effective to the customer (Simmons, 2004). The wide range of variables in the nature of a customer’s storage, and the possible savings through outsourcing of storage can be an appropriate undertaking for a business. The risks involving this form of storage entails customers looking closely at outsourcing to determine if this is best at meeting requirements, how outsourcing storage would include size of the storage, the rate of storage growth, the accessibility, and security of the information. The customer needs to take into account other risks, such as organizational policy regarding asset ownership.
The “Best Practice” method of application shows that risks are inherent, but the control and level of risk assigns the practice of choice for the company. The mitigation plan for outsourcing involves ranking the risks for the company, and security is the number one concern for any business. The plan calls for encryption of data in storage, redundancy of backups for critical data, compliance with regulatory agencies, and monitoring of the information off sight. This mitigation plan will allow the outsourcing costs, and keep a tight control or access to the information off sight (Spafford, 2006). The encryption method allow access only to an authorized user to access information and make changes to the system, and again adds a level of extra security.
Administrative Outsourcing
This form of business adds many risks for the business, and to customers, but the initial risk is that this type of data will have a high need for security. The risks involve the possibility of Health Insurance Portability and Accountability Act (HIPAA) fines, identity theft of personal data, loss of one-on-one communication with employees, and company loyalty from customers. The security issue is the main concern in this mitigation plan, and the information from a payroll, human resources, and order processing department will contain a variety of sensitive information (Corporate Computer Services, Inc., 2010). This mitigation plan will require creating a transition management plan detailing the duty requirements for establishing responsibility for the vendor. Shifting the burden for responsibility ensures cooperation with the outsourcing vendor, and allows input from the client. Both sides can identify responsibility for making certain decisions, how the decision-making process will work and how these decisions may affect the company. This helps reduce any doubt and describes the accountability that individuals from both parties have in the relationship. Building a reporting framework for success communicates if the outsourcing arrangement is operating. Service level agreements (SLAs) quantify the objectives of the performance to the stakeholders, and reporting performance consistently with analysis will show potential improvement areas. The business should consider operating measures for the current state of the workforce showing the value the organization is providing to the organization. The complex interactions between these organizations for safeguarding the data is not without a certain risk, and these techniques involve some up-front investment in planning and design, but typically save resources and prevent conflict (Corporate
Related Documents: Essay on Week four individual assignment
pack of PSYCH 550 Week 3 Discussion Question 2 contains: Thorndike and Skinner were close in agreement on a number of issues including the control of behavior by stimuli and the ineffectiveness of punishment. However, there were differences in their approach to conditioning. Thorndike believed in instrumental conditioning, and Skinner believed in operant conditioning. Please compare and contrast Thorndike Psychology - General Psychology PSYCH 550 Week 1 Individual Assignment Learning Paper…
International Business, Ch. 2 • International Business, Ch. 3 • International Business, Ch. 4 • International Business, Ch. 6 • Week One Read Me First Support Material • Week One Read Me First • Test Your Knowledge of Week One Topics with a Self-Assessment Instructions • Test your knowledge of Week One topics with a self-assessment. Support Material • Test your knowledge of Week One topics with a self-assessment • Internet in Global Trade Discussion Instructions • Brainstorm a list of ways the Internet…
This pack of COM 155 Week 1 Discussion Questions contains: DQ 1: List at least one of the serious writing errors identified on p. 385 and identify how such an error could negatively affect your writing DQ 2: Identify which of the four most serious writing errors listed on p. 385 you find challenging to overcome in your own writing. State a method to avoid this error. DQ 3: The projects ongoing over the next few days allow one to utilize the grammar lessons covered in the weekly objective list posted…
/13555 SPE 513 WEEK 1 INDIVIDUAL ASSIGNMENT REFLECTION PAPER Write a 500- to 750-word reflection paper. Include your experiences and beliefs as a student in a classroom with exceptional students. Address the following questions: * How was diversity addressed when you were in school? * What changes have you noticed in how diverse learners are treated in the classroom? * What are the enefits of including all students in general education classrooms? Click the Assignment Files tab to submit…
PSC410 full course [ all discussions and all weeks assignments except week 10 Click Link Below To Buy: http://hwcampus.com/shop/psc410-full-course/ mod 1 dq Describe the most significant leadership challenges facing organizations today. Are you optimistic that these challenges can be overcome? Why or why not? week 1 dq 2 The idea of “servant leadership” may be considered a paradox. Describe this paradox in the context of leadership. week 2 dq 1 Review the "Core Values" media piece…
First Message – Week 1 - Roles of Managers Participate in the class discussions substantively by integrating the text, course materials, research and critical analysis through integration and application of the learning. • First Message – Week 1 - Four Functions of Management Model Participate in the class discussions substantively by integrating the text, course materials, research and critical analysis through integration and application of the learning. • First Message – Week 1 - Sustainability…
- MAT 116 Algebra 1A Version 5 12/15/07 MAT 116 MAT 116 Algebra 1A Program Council The Academic Program Councils for each college oversee the design and development of all University of Phoenix curricula. Council members include full-time and practitioner faculty members who have extensive experience in this discipline. Teams of full-time and practitioner faculty content experts are assembled under the direction of these Councils to create specific courses within the academic program. Copyright…
Consulting has received some feedback and concerns that their processes and procedures are not sufficiently documented. This lack of professional documentation has caused some loss of potential contracts for the firm. The Learning Team has been given the assignment to define, develop, and propose the following standards for a software testing environment at Smith Consulting: • Define the Smith Consulting engagement approach. This will include a statement of the way the firm works with clients and how projects…
possible (it MUST be at least a week before the exam is to take place), so that the exam can be forwarded to the appropriate person in time. Personal Responses - 10% Projects - 50% Part 1: Getting started - 10% Part 2: Action - N/A Part 3a: Team PPT - 25% Part 3b: Class Share - 5% Part 4a: Participation - 5% Part 4b: Reflection & Critique - 5% All components of the project MUST be completed, or you will receive a mark of zero. Late submissions of any assignment will be penalized by 1% per…
This document includes BSHS 452 Week 3 Individual Assignment Methods General Questions - General General Questions Use worksheet 5.1A on page 36 of your text as a guide to complete this assignment. Do not submit the worksheet, rather use the information gleaned from the worksheet to write your assignment in a narrative format. You will be writing about the same organization that you wrote your needs statement for in week two for your individual assignment. Write your methods in paragraph…