IT Governance, Risk, and Compliance

Dec 20 2012   2:52AM GMT

eBook excerpt: Assuring Information Security – Part III

Robert Davis Robert Davis Profile: Robert Davis

Acquisitions and implementations are necessary for adequate information security.  To realize the information security strategy, information security solutions need to be identified, developed or acquired, as well as implemented and integrated into business and IT processes seamlessly.  During an information security product or service acquisition and implementation cycle, changes and maintenance may be required to sustain continued service quality for impacted systems or processes.

Within an entity’s organizational structure, providing acceptable service delivery necessitates the installation of an effective support system.  Information security service delivery and support may range from operational protection deployment to crisis response training.  However, assessing changes in, and maintenance of, existing systems are critical security service components contributing to delivery value.  Required information protection changes and maintenance can be induced through various problems encountered by users or deliberate attacks on the established information security architecture.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: