Share two new insights about information systems security policies

Share two new insights about information systems security policies that you have discovered from this course.
Explain how this type of course is essential for every information systems security professional.

Share two new insights about information systems security policies

Discussion 1 – Week 11
“Course Takeaway” Please respond to the following:

Share two new insights about information systems security policies that you have discovered from this course.
Explain how this type of course is essential for every information systems security professional.

 Post:

I learned many things during this semester in this course.  Now I feel more comfortable with the different methods, roles, responsibilities, and accountabilities of personnel, along with the governance and compliance of security policy framework.  I also feel that I have a better understanding of how security policies help mitigate risks and support business processes in various domains in the information technology environment.

There are many take-a-ways from this course but the best thing I felt I gained from this course was the ability to be able to write my own policy for my occupation.  We had a security policy in place but we did not have a good On-Call policy for the employees that are required to be on-call.  There have been many complaints about pay and the wording of the old policy. I decided to write a new policy to address these issues and make things a little more black and white to stay away from gray areas.  So far my CIO has looked at it and is getting ready to send it to the Human Resources department for review.

Response:

I found the differences between a policy, standard, procedure, and guideline to be interesting. Often those words are thrown around and now I will know the importance level accordingly.

This class is relevant to everyone in the security profession as it brings a well-rounded approach to the different areas of security in any area of business. No matter the level an individual holds in a company, they can impact the situation either negatively or positively depending on their knowledge of the subject. Addressing those potential holes with a class like this will bring many members up to speed on their specific importance in security. Everyone wants to feel important and stressing individual impacts in a class like this is a good way to do that.

Reply:
I agree with your statement, “This class is relevant to everyone in the security profession as it brings a well-rounded approach to the different areas of security in any area of business”. Feel that I found myself looking at the security policies and handbooks that were implement ed at my work. Helped to refine and correct some vague issues within our IT Security Handbook.  I look at policies and procedures at a whole different level since taking this course.

0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *