| Papers [1-16] of 100 :: [Page 1 of 7] | | Go to page : 1 2 3 4 5 6 7 —> | Search results on "INFORMATION SECURITY": |
|
|
Veterans Affairs Information Security, 2008.
Looks at mitigating information security vulnerabilities at the Department of Veterans Affairs (VA).
2,690 words (approx. 10.8 pages), 12 sources, APA, AU$ 117.95
»
Click here to show/hide summary
Abstract
This paper explains that information security at the Department of Veterans Affairs (VA) is very important because the VA is the largest administrator of healthcare services and insurance in the United States and provides a wide range of benefits and services for millions of American citizens, which involves extensive e-commerce. The author relates that a security problem in 2006 caused the Department to hire an outside consultation services to evaluate its information security procedures. The paper discusses this decision and describes the outsourcing process.
Table of Contents:
Introduction
Review and Discussion
Analysis of Outsourcing and Information Security Risks.
Costs and Benefits Relating to Outsourcing
Security Functions and Security Considerations when Outsourcing
Outsourcing Processes and Procedures
Conclusion
From the Paper
"In those cases where the decision is made to outsource a given security function, due diligence can be accomplished through the vendor selection process and the request for proposal (RFP); these reviews are essential when assessing the potential scope and impact of an outsourcing arrangement on IT processes, infrastructure and staff, and the probable size of the outsourcing contract. Moreover, crafting such an RFP for outsourcing a VA security-related IT function becomes even more critical than an RFP for other types of vendor arrangements."
| |
|
Information Security, 2007.
A development of a security assessment model for information security.
7,461 words (approx. 29.8 pages), 16 sources, MLA, AU$ 240.95
»
Click here to show/hide summary
Abstract
This paper describes and analyzes the problems and risks with information security in the modern world. It then attempts to develop and test a five-dimensional information security assessment model. The security assessment models aims to include administrative security controls, employee security controls, physical security controls, logical security controls and data communication security controls.
Table of Contents:
Introduction
Problem Statement
Significance of the Study
Background of the Study
Literature Review
Methodology
Research Objectives
Research Method
Research Design
Sampling Unit
Sampling Frame
Method of Selecting the Sample Elements
Scale Development
Data Analysis
Our Information Security Model
Questionnaires
Reliability and Validity of the Results
Advantages
Delimitations
Ethical Issues
From the Paper
"Since encryption is so widely used, there are numerous advancements made in its genre, and the latest enhancement was the central government's key escrow encryption proposal. This is more commonly called the Clipper Chip and the Capstone chip. The Clipper Chip, as the name suggests comes in the size and form of a chip and holds the private key encryption algorithm. The Capstone chip, also in the form of the chip, holds the public key encryption algorithm. Both the encryption algorithms used in these chips when sold off have to be recorded in two different government or government-supported companies. This way the government has the inside access to these algorithms in case they need to use them for implementation of the regulations or public security functions (McNab 2004)."
| |
|
Information Systems Security, 2004.
A discussion on the negative consequences to an organisation that suffers a major security breach to a core information system.
3,677 words (approx. 14.7 pages), 23 sources, MLA, AU$ 149.95
»
Click here to show/hide summary
Abstract
This paper discusses information systems (IS) security and focuses on three areas relating to IS security. These three sections cover the possible impact a major information security breach has on an organisation, the security frameworks an organisation should adopt to protect and information system and describe the OCTAVE risk based strategic assessment and planning technique specifically designed for information systems security.
Outline
Introduction
Information System Security Breaches ? Impacts on Organisation
Information Systems Security Framework
OCTAVE and Information Systems Security
Bibliography
From the Paper
"Information systems (IS) security is challenging most organisations in the world today. As organisations recognise the importance of information to compete and be successful in business, an increase in security awareness to protect this information has also followed. As a greater reliance has been placed of information systems by organisations, the need to protect IS systems have never been so relevant as they are today. Highly publicised security breaches have made organisations realise how this can affect business, particularly when it relates to confidential, financial and personal information."
| |
|
Information Systems Security Strategy, 2007.
A comparative analysis of the information systems security strategies of the Federal Bureau of Investigation (FBI) and the National Institute of Standards and Technology (NIST).
2,196 words (approx. 8.8 pages), 10 sources, APA, AU$ 100.95
»
Click here to show/hide summary
Abstract
This paper examines how, since the 9/11 incidents, information systems security has been a primary concern by all organizations as a result of the consequences that resulted in the loss of data and information in the ensuing attacks. It discusses the information systems security strategies of two federal agencies: the Federal Bureau of Investigation (FBI) and the National Institute of Standards and Technology (NIST). It looks at how these two distinct agencies are opposites in term of their mandates; one is the premier law enforcement and security agency of the nation that already has a hard core security function as its mission while the other one sets the standards in various aspects of technology and business processes.
From the Paper
"The FBI is the premier federal law enforcement and criminal investigative body of the United States. It is under the Department of Justice (DOJ) and has as its mission: "To protect and defend the United States against terrorist and foreign intelligence threats, to uphold and enforce the criminal laws of the United States, and to provide leadership and criminal justice services to federal, state, municipal, and international agencies and partners." Its current director, Robert S. Mueller III, literally went through a "baptism of fire" because of the 9/11 terrorist attacks. He was recently sworn in a week before the attacks (September 4, 2001) thus not having the luxury of a "honeymoon period" in the agency. In fiscal year 2006, the total budget of the FBI was approximately $5.7 billion, including $495 million in program increases to enhance counterterrorism, counterintelligence, cyber crime, information technology, security, forensics, training, and criminal programs ."
| |
|
Information Security Management, 2002.
Why information security management is essential for a proper e-commerce business.
2,150 words (approx. 8.6 pages), 8 sources, AU$ 116.95
»
Click here to show/hide summary
Abstract
This paper discusses the importance of information security management in the development of e-commerce businesses.
| |
|
Teenager's Awareness of Information Security, 2008.
A research proposal for an analytical assessment of teenagers' awareness and their lack of implementing information security and online privacy concepts.
8,487 words (approx. 33.9 pages), 13 sources, APA, AU$ 262.95
»
Click here to show/hide summary
Abstract
This work contains a research proposal for a behavioral medication intervention for teens ages 12 to 17, as well as for their parents and peer-groups. It presents an initiative to facilitate a change in behavior relating to the way teenagers perceive information technology security and privacy identification issues and threats while interacting with media via the Internet.
Table of Contents:
Chapter 1 - Introduction to the Study
Introduction
Statement of the Problem
Background of the Problem
Purpose of the Study
Research Design
Scope and Delimitation
Limitations
Theoretical Conceptual Support for the Study
Assumptions
Research Questions
Significance of Study
Social Change
Definition of Terms
Acronyms
Summary
From the Paper
"The research design of this study is qualitative in nature and will be implemented through survey/questionnaires and focus group studies using behavioral modification intervention which makes the individuals ages 12-17, their parents, and their peer-groups cognitively aware of the inherent dangers when interacting with media via the Internet and which is geared toward changes that will ensure safety and security for these individuals when participating in online media communities. This intervention is to be introduced at the community level. Peer-group and parent support will provide the necessary supports needed to reinforce the behavioral changes for this age group and further the information provided to the parents will ensure that they have the necessary knowledge and capacity to ensure that they are positive reinforcers of safety and security issues. Peer-group normative behavior will further assist in this behavioral change as the normative behavior is established and then reinforced in and among members of the peer group in relation to Internet safety and security measures."
| |
|
Chief Information Security Officers, 2007.
This paper provides a phenomenological study of government and private industry chief information security officers (CISO).
7,554 words (approx. 30.2 pages), 15 sources, MLA, AU$ 241.95
»
Click here to show/hide summary
Abstract
In this work the writer seeks to identify the skill set of the CISO, or the chief information security officer, in the business world of today with the complex problems that are faced. It is the belief of the researcher that there must be special and identifiable attributes and through phenomenological study of a vast amount of literature, survey and case study documentation, this work seeks to make those identifications. This paper discovers that there are most certainly special attributes of these individuals in performing their role and successfully fulfilling their responsibilities in such roles.
Outline:
Abstract
Objective
Significance of the Study
Hypothesis
Rationale
Literature Review
Ten Top Challenges Rates by Federal CISOs
Critical Technology Ratings of 10 Federal CISOs
Federal CISO and CIO Responsibilities
Figures
Use of Security Tools and Technology
Summary of the Literature Reviewed
Theoretical Framework
Research Question
Data Collection and Analysis
Testable Hypotheses
Rival Hypotheses
Contribution to the Body of Knowledge
Research Methodology
Data Collection and Analysis Design
Project Plan for Execution of Design and Reporting Results
Projected Results and Presentation of Projected Results
Bibliography
From the Paper
"The rationale upon which this study is based is that in today's increasingly complex world of Information system and information technology and the applications that are utilized each and every day by the business and finance, economic, banking, governmental, and other transactions that are necessary for the world to function the responsibility that lay in the hands of the CISO, or 'Chief Information Security Office' is one of great import both in terms of their own stability, but the security of those depending upon them to carry that heavy load. There must be specific attributes that assist these individuals in skillfully carrying out their appointed role and that allows them to remain in their role successfully. This study seeks to identify a specific set of skills or attributes of these individuals through exploration of literature seeking to identify the same."
| |
|
Information Security.
This paper discusses the legal issues of information security in many countries, especially New Zealand.
3,085 words (approx. 12.3 pages), 15 sources, APA, AU$ 132.95
»
Click here to show/hide summary
Abstract
This paper explains that more legislation is needed to specifically address areas of information security. New Zealand's most recent legislation on computer crime, the Crimes Amendment Act of 2003, lends legal coverage for the genre of typical computer crimes, but does not address how to apply these laws in the real world. The author points out that Belgium has a specific law addressing computer forgery, computer fraud, hacking, and sabotage, making them criminal offenses; unauthorized access of a computer system carries a sentence of imprisonment of three months to one year, and if this crime is committed with the intention to defraud, the term of imprisonment may be from six months to two years. The paper relates that People's Republic of China's law, which criminalizes unauthorized surveillance of information systems, imposes a fine in the amount of one to three times as much as the amount of the illegal income, and the confiscation of illegal income from these sales.
From the Paper
"In particular, New Zealand companies have faced severe information security threats and resulting legal challenges, which the New Zealand government has addressed through legislation. Even as recent as 1997, New Zealand has faced difficulties with prosecuting information technology crimes as a result of a lack of Parliament Acts that provide laws relating to information technology crimes. Before the introduction of Acts between 2003 and 2004, prosecutions were attempted using laws that were designed before computers were commonplace and did not adequately address the advancements in information technology."
| |
|
Information Systems and Security, 2008.
This paper critically examines the information systems of the United States with regards to the struggle against terrorism.
2,977 words (approx. 11.9 pages), 10 sources, APA, AU$ 127.95
»
Click here to show/hide summary
Abstract
The paper examines the Department of Homeland Security (DHS) and looks at how the United States' information systems fail to meet the tests of universality and of platform and operating systems compatibility. The paper then looks at how border security and the war against bioterrorism have been facilitated by cutting-edge technologies that are compromised by the same interoperability issues. The paper concludes that the failings of the DHS is proof that a more streamlined, centralized data-gathering and data-exchange process is needed.
Outline:
Abstract
Introduction
Information Systems and Standards Universality, Oversight and Compatibility: the Case of the United States Government
Federal Information Systems and the Border
A brief Look at Federal information Systems and Bioterrorism
Future Vision
Conclusions/Summary
From the Paper
"A Government Accountability Office Study conducted in June of 2005 found many problems with the information system in place at the Department of Homeland Security - problems that clearly reveal logistical and planning problems that must be overcome both in the public and in the private realms if the terrorist threat is to be appreciably reduced. To begin with, if the DHS is to be held up as an example, the United States government has done a desultory job of putting in place universal information security practices and controls. Things like a proper risk assessment, security plan, a regime of security tests and evaluations, remedial action plans, and a structure for the continuity of operations have (in one way or another) fallen short of expectations or have simply been absent (Government Accountability Office, 2005)."
| |
|
Electronic Health Information Security, 2008.
A review of the security aspect and risks involved in electronic computer systems.
1,297 words (approx. 5.2 pages), 5 sources, APA, AU$ 63.95
»
Click here to show/hide summary
Abstract
The paper relates that computer technology evolved from large mainframe computers, programmed with punch cards and
occupying entire rooms, to desktop computers, portable laptops etc.. Processing power has increased exponentially, and microchip technology now enables watches and toys, to surpass the computing power of the computers that NASA used for the Apollo program. This rate of progress will continue, with processing power increasing steadily, reaching the limit of microchip technology. The paper highlights the threats to computer networks and elaborates on them. It also comments that in spite of all this progress in technology, persons employed in the industry are sometimes not aware of the consequences of failing to safeguard the information in a manner commensurate with its value and the risks associated with its unauthorized disclosure.
Outline:
External Threats to Electronic Healthcare Information
Internal Threats to Electronic Healthcare Information
Physical Loss of Electronic Healthcare Information
Conclusion
From the Paper
"In 1995, the World Wide Web launched the modern era of electronic
communications, and with it, the need to secure sensitive data to multiple forms of theft and unauthorized access. Shortly thereafter, with health insurance fraud, identity theft, and white-collar crimes against business organizations like mortgage fraud at the top of
the list of growing crimes by the last decade of the 20th century, federal legislation went to effect in 1996 in the form of the Health Insurance Portability Act (HIPAA) that, as part of its comprehensive administration of employment health insurance benefits, also tightened measures to maintain the privacy of patient information throughout the healthcare system. "
| |
|
Information Security and E-Commerce, 2008.
A review of the Internet and the security risks that are associated with this technology.
4,025 words (approx. 16.1 pages), 20 sources, APA, AU$ 158.95
»
Click here to show/hide summary
Abstract
The paper discusses the growth of the Internet and the use of computer-based systems in business and warns that all businesses should be aware of the impact which this has on their practice. The paper highlights that risk management is important to ensure that the risks from their data storage and sharing procedures are minimized. The paper states that this is important in maintaining the integrity of the business and also ensuring that the safety of the customers is maintained. The paper confirms that there are various standards and practices which are in place to ensure that sufficient practices are maintained.
Outline:
Risk Management
COSO Report
SAS 78
Mutual Aid Pacts
Importance of Computer Information Standards
ISO Development
Computer Emergency Response Co-ordination Centre (CERT)
Cryptography, Identification and Firewalls
Electronic Payment Methods
Web-based Marketing Methods
From the Paper
"Risk management is the process in which the potential risks to any information system are identified, measured and minimized. This is achieved by limiting the number of uncertain events which may occur in order to prevent harm occurring to the system. Risk management is an important component of internal control. Internal control is the process where the internal risks to a company are controlled. This includes ensuring that all relevant legislation is adhered to, that all financial information is adhered to and that operations are efficiently run. The COSO Report and SAS 78 are two important frameworks which ensure that internal control is maintained, each containing elements relating specifically to risk management."
| |
|
Globalization, State Security and Human Security in Asia, 2006.
An analysis of globalization and how it relates to state security.
3,997 words (approx. 16.0 pages), 54 sources, APA, AU$ 158.95
»
Click here to show/hide summary
Abstract
This paper explores the relationship between globalization and security using the state and the individual as units of analysis. It argues that globalization has varying consequences on different actors. The paper challenges the assumption that globalization has a direct impact on state security. It shows that global processes challenge state security in an indirect manner but have direct effects on human security.
Table of Contents:
Introduction
Globalization And State Security In Asia
Asian Security in a Globalized Context
Responses to State Insecurity
Globalization And Human Security In Asia
From Development Economics to Human Development: A Focus on Peoples' Livelihoods
Poverty Reduction and Inequality in Comparative Perspectives
Water Crisis as a source of Human Insecurity
Conclusions
Appendix
From the Paper
"Globalization can be seen both as a historical project and as a process that affects social relations of peoples, groups and states.(Bello, 1998) It is conceived as a historical conjuncture of the modernist project (McMichael 1996) that promotes the ideological framework of neoliberalism (Kinvall 2002: 5-6). The principles of free market economics constitute the policy package called the Washington Consensus - trade liberalization, financial deregulation, privatization, and inflation and currency exchange stability policies - which became the cornerstone of structural adjustment policies (SAPs) implemented in many economies. While Latin America and Africa have severely suffered from neoliberal globalization, Asia stands as an exceptional case of successful integration in the global economy (Dittmer 2002). Asia Pacific projected itself to the world as the most dynamic region characterized by growth with equity: rapid and sustained economic growth, equitable distribution of incomes, and dramatic improvements in human welfare (Rigg 2003: Table 1.3: 10; World Bank 1993)."
| |
|
Computer Security, 2002.
A paper which discusses the strategies a manager should adopt in order to ensure the security of the information within the organization.
630 words (approx. 2.5 pages), 4 sources, MLA, AU$ 33.95
»
Click here to show/hide summary
Abstract
The paper shows that to address the issue of information security of an organization, managers should develop certain security policies, keeping in view the possible threats that can create problems for the company in future. It shows that threats could constitute hacking, viruses, denial of service, software crashes, etc. In this paper the strategies a manager should adopt in order to ensure the security of the information within the organization are briefly discussed. Finally the paper lists certain companies that provide information on security services.
From the Paper
"The second biggest problem is of hacking. Hackers not only steal important and highly sensitive information but also damage the information systems of the organization. To prevent the company?s systems from hacking managers should hire anti hacking experts or contact consulting firms, which provide security to their companies. Companies, which are maintaining an online service network, are more exposed to the threat of hacking as their networks are continuously in the reach of the outsiders."
| |
|
Computer Security, 2008.
A discussion on the management of a secure information technology environment.
1,449 words (approx. 5.8 pages), 8 sources, APA, AU$ 70.95
»
Click here to show/hide summary
Abstract
The paper reveals that technology is not enough to protect information systems; the business must have an information security advocacy and awareness program for process owners and users and a strict implementation and enforcement of policies. The paper stresses how there must be policies in place to ascertain that standards and benchmarks are aligned with organizational goals and objectives. The writer then discusses his organization and how it performs risk assessments. The writer emphasizes that corporate officers and staff in this business know that information security is one of the vital resources and attitudes needed to keep the company afloat and ensure a full protection of their information systems.
From the Paper
"Business and business processes are the lifeblood of any organization. Whether the enterprise is engaged in a for profit or not for profit venture, its core competency (i.e. for schools, it is teaching; for an accounting firm, it is its financial management capabilities) is the epitome of its existence thus the continuing survival is dependent on the sustained operational capabilities. But core competency alone does not protract business survival; rather there are business drivers that directly or indirectly support the business."
| |
|
Computer Security, 2008.
A case study analysis of a security breach at Commerce Bank and the steps they took to assess and manage the problem.
4,107 words (approx. 16.4 pages), 10 sources, APA, AU$ 161.95
»
Click here to show/hide summary
Abstract
This paper discusses computer security and its importance for organizations. The paper presents an information security strategic plan or "defense plan" as an overview of what needs to be done for any organization dependent on information technology as a business driver. The paper presents a case study of Commerce Bank and how they handled a breach in security.
Table of Contents:
The Hacking that was Thwarted
Managing the Risk
Defending the Network and the System
Information Security Policies
Assessment of Publicly Accessible Resources and Network Probing
Iinternal Security Assessment
Tools for Ongoing Defense
Third-party Audit and Assessment
Physical Security Assessment
Security Logs Analysis
Information Security Training and Awareness
IT Governance as Part of Executive Managment Responsibilities
Conclusion
From the Paper
"Commerce Bank is indeed lucky because as a result of good corporate governance and an information security methodology in place, no great harm was done. By immediately informing customers of what went on, the level of awareness was promoted thereby any attempt by the hackers to use the data for other nefarious activities will not be fruitful because those are already flagged by the law enforcement agencies especially the FBI. Information security was proven in this case to be a matter not only for the affected organization but community and society as well. From beginning to the end, clear lines of reporting and controls were defined that mitigated the risk at its onset. The information security strategic plan or simply "defense plan" presented in this paper is an overview of what needs to be done not only for the bank but any organization dependent on information technology as a business driver."
| |
|
Post 9-11 Security and Privacy in IT, 2005.
Examines whether privacy and security in information technology have any future after September 11, 2001. Presents an EU and non-EU perspective.
21,000 words (approx. 84.0 pages), 300 sources, MLA, AU$ 364.95
»
Click here to show/hide summary
Abstract
This paper examines not only the data protection instruments but also encompasses various breaches, recognitions and provisions for the interests of national security that over-weighs/surpass dangers to individual privacy in information technology. Chapter 2 deals with the erosion of privacy rights due to Sept 11, and amounts to probably the most significant issue in recent history, as information privacy rights have been recognized for controlling the dissemination and use of data. Chapter 3 has a comprehensive analysis that everyone has the right to be protected under the law and no one shall be subjected to arbitrary interference with his privacy, family, home, or correspondence. Chapter 4 studies means of private communications without the consent of the sender or receiver and deals with breaches of privacy. Chapter 5 reviews data protection instruments in EU and non-EU horizons. Chapter 6 elucidates shocking revelations against terror and a flurry of virus activity resulting in personal data of Arab males being made available to the police to protect data against the war on terrorism. Chapter 7 states the balance between privacy and security risks and suggests that privacy-invasive measures adopted have not been as effective in enhancing security as originally intended. Hence they should not be construed as rivals but rather two sides of the same coin. In Chapter 8, systematic surveillance of the citizen in both the physical and virtual worlds after September 11, 2001 is discussed in detail. In Chapter 9, the war on terrorism by the United States and its allies as well as the discussion and measures about the ways in which the world has changed is dealt with. Chapter 10 details the cooperation and mutual assistance in EU-US law enforcement, namely human trafficking, immigration, and refugees, visas, biometrics and passports, etc.
Chapter 11 addresses security concerns raised in the aftermath of the September 11 attack and interrelated issues involving the movement of people, security at the border and in the skies and various security models/gadgets as well. Chapter 12 gives details of how and why a fund was created for the compensation of victims of Sept 11. Chapter 13, last but not least, wraps up various issues discussed earlier and answers unanswered questions from the introduction.
Table of Contents:
1. Introduction
2. Individual Privacy and Personal Information
3. Legal Recognition of Privacy
4. Infringements of Individual Privacy
5. Data Protection Instruments in EU and non-EU Horizons
6. Data Protection and War against Terror
7. Privacy-Security Analysis
8. Improvement in Technologies in US and in EU
9. Provisions of National Security, EU-Non EU Measures
10. Cooperation and Mutual Assistance in EU-US Law Enforcement
11. Crime and Security in the Aftermath of Sep, 11
12. September 11 Victim Compensation Fund (VCF)
13. Conclusion and Suggestions
14. Bibliography
From the Paper
"Privacy rights have always been something of a stepchild in the family of constitutional rights. Although interpreted by the courts to be one of our fundamental rights, it is not mentioned by name anywhere in the Constitution or its amendments because it is a passive right. Felt only when absent, it tends to get less attention. This is why it became the first constitutional right in the post-September 11 execution line. Whatever the case, we should all be concerned that what has happened to privacy can also happen to other rights. There is always tension in the system, but it was designed that way, and generally we do a good job of balancing the desires of the state with the liberties of the people."
|
|
|
