Principles of Information Systems (MindTap Course List)
13th Edition
ISBN: 9781305971776
Author: Ralph Stair, George Reynolds
Publisher: Cengage Learning
expand_more
expand_more
format_list_bulleted
Concept explainers
Question
Chapter 14, Problem 1CE
Program Plan Intro
Code of ethics:
- The “ethics” word comes from the Greek term “duty”. The code of ethics means all the responsibilities that professional must respect when carrying out their work.
- It also contains the core value of the work and the behavior which should be adopted.
Example:
Professional and confidentiality secrecy are responsibilities contained in code of ethics and conduct in numerous professions like accountants, lawyers, doctors and journalists.
Intent of code of ethics:
- The intent of code of ethics established by a professional order as a way to safeguard public and the status of professionals.
- The employee who breach their code of ethics suffer disciplinary actions that can range from a warning or rebuke to dismissal or ejection from their professional order.
Privacy policy:
- A privacy policy denotes a statement that discloses some or all ways an organization would gather, use, disclose and manage data of customers as well as clients.
- It fulfills a legal requirement for protecting privacy of customers as well as clients.
- Personal information denotes anything that could be used to identify an individual.
- It represents a generalized treatment that tends to be more specific and detailed.
- The exact content of certain privacy policy will depend upon applicable law and need to address requirements across all boundaries.
Expert Solution & Answer
Want to see the full answer?
Check out a sample textbook solutionStudents have asked these similar questions
The CISO reaches out to complains about the interns who appear to be violating many security policies. They do not lock their workstations, download illegal music, connect their personal devices to the organization's computers, spend too much time on social media, and even download pornography to the organization's computers. The CISO asks you to address these violations by developing a security document (Rules of Behavior) stating at least 15 rules about what activities employees are not allowed to conduct on the network.
A security policy is developed by senior management to assign certain responsibilities and mandate certain requirements, which are usually aligned with the agency's mission.A new policy was just created to prohibit peer-to-peer software downloads, as they are illegal and may bring malicious content to the workplace. The security officer, noticed that employees resisted the policy and chose to continue downloading peer-to-peer software. Explain how you would handle this situation. What would you do to enforce the policy?
You have been assigned to be a computer security trainer for your firm’s 2,000 employees and contract workers. What are the key topics you would cover in your initial one-hour basic training program for non-IT personnel? What sort of additional security-related training might be appropriate once people have the basics covered ?
Chapter 14 Solutions
Principles of Information Systems (MindTap Course List)
Ch. 14.1 - What is the harm in nonproductive use of...Ch. 14.1 - Prob. 2RQCh. 14.1 - Do you think that it would help to involve a small...Ch. 14.1 - Prob. 2CTQCh. 14.2 - Prob. 1RQCh. 14.2 - Prob. 2RQCh. 14.2 - Prob. 1CTQCh. 14.2 - Prob. 2CTQCh. 14.3 - Prob. 1RQCh. 14.3 - Prob. 2RQ
Ch. 14.3 - Prob. 1CTQCh. 14.3 - Prob. 2CTQCh. 14.4 - Prob. 1RQCh. 14.4 - Prob. 2RQCh. 14.4 - Prob. 1CTQCh. 14.4 - Prob. 2CTQCh. 14 - Prob. 1SATCh. 14 - Prob. 2SATCh. 14 - Prob. 3SATCh. 14 - Prob. 4SATCh. 14 - Prob. 5SATCh. 14 - Prob. 6SATCh. 14 - Prob. 7SATCh. 14 - Prob. 8SATCh. 14 - Prob. 9SATCh. 14 - Prob. 10SATCh. 14 - Prob. 11SATCh. 14 - Prob. 12SATCh. 14 - Prob. 13SATCh. 14 - Prob. 14SATCh. 14 - Prob. 15SATCh. 14 - Prob. 16SATCh. 14 - Prob. 1RQCh. 14 - Prob. 2RQCh. 14 - Prob. 3RQCh. 14 - Prob. 4RQCh. 14 - Prob. 5RQCh. 14 - Prob. 6RQCh. 14 - Prob. 7RQCh. 14 - Prob. 8RQCh. 14 - Prob. 9RQCh. 14 - Prob. 10RQCh. 14 - Prob. 11RQCh. 14 - Prob. 12RQCh. 14 - Prob. 1DQCh. 14 - Prob. 2DQCh. 14 - Prob. 3DQCh. 14 - Prob. 4DQCh. 14 - Prob. 5DQCh. 14 - Prob. 6DQCh. 14 - Prob. 7DQCh. 14 - Prob. 8DQCh. 14 - Prob. 9DQCh. 14 - Prob. 10DQCh. 14 - Prob. 1PSECh. 14 - Prob. 1TACh. 14 - Imagine that your team has been hired to conduct a...Ch. 14 - Prob. 3TACh. 14 - Prob. 1WECh. 14 - Prob. 2WECh. 14 - Prob. 3WECh. 14 - Prob. 1CECh. 14 - Prob. 2CECh. 14 - Prob. 3CECh. 14 - Prob. 1CTQ1Ch. 14 - Prob. 2CTQ1Ch. 14 - Prob. 3CTQ1Ch. 14 - Prob. 1CTQ2Ch. 14 - Prob. 2CTQ2Ch. 14 - Prob. 3CTQ2
Knowledge Booster
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.Similar questions
- The school and your employer were so pleased with your outline and handout for the high school career fair that you have been asked back to present on security threats, security measures, and hacking countermeasures to the entire student body and staff of the school. Create a 10- to 12-slide media-rich presentation including detailed speaker notes about a variety of security threats and security measures and hacking countermeasures to combat the threat. In your presentation, you should: Identify 1 threat and 1 security measure or hacking countermeasure for wireless networks. Identify 1 threat and 1 security measure or hacking countermeasure for mobile networks. Identify 1 threat and 1 security measure or hacking countermeasure for OT or IoT. Identify 1 threat and 1 security measure or hacking countermeasure for cloud-based platforms. Summarize the threats, security measures, and hacking countermeasures you identified. Recommend practical methods the staff and students at the school to…arrow_forwardThe organization you work for in Abu Dhabi is a startup company with 2 years in business. To comply with regulations, your CISO has decided to propose implementation of Information Security Management System (ISMS). As a member of the security team, you have to analyze the business needs for ISMS. Demonstrate effective contributions to the ISMS project team relevant to an assigned task as below: Introduce the Organization Demonstrate your project team Highlight the roles and responsibilities of each team member on the project Develop the ISMS for the organization by utilizing all the steps of from the ISO Standard 27001.arrow_forwardThe corporation has assigned you the task of developing a plan to mitigate potential threats. The CEO has requested you to explain in a few words the relationship between influence, threat, and exposure. Make a single, succinct phrase that describes the connection.arrow_forward
- You have recently started working for your firm in the role of Chief Information Officer. As the Chief Information Security Officer of your company, the first thing you need to do is think of ways to stop the unintentional or intentional destruction of the data that belongs to your company. I would really appreciate it if you could kindly recommend any data security procedures for our firm.arrow_forwardWhy did these new types of hacking start to pop up? I need to know where you got this information so I can give you a good answer.arrow_forwardYou were been given the position of Chief Information Officer at your organization. In your role as Chief Information Security Officer, the first thing you'll need to do is provide recommendations for how your company can protect its data from being lost on purpose or by mistake. Kindly suggest any precautions that might be taken to protect the information of your firm.arrow_forward
- In this discussion post, you will analyze difficult and often complex ethical decisions you may encounter as a security professional. To start, please watch Alex Stamos’s An Open Letter The White Hat's Dilemma video. After watching the video, respond to the following prompt in your post: How would you respond to the questions Alex asks the crowd? Why?arrow_forwardYou are a computer security trainer for your firm’s 200 employees and contract workers. What are the key topics you would cover in your initial half-hour basic training program on security for non-IT personnel? What sort of additional security-related training might be appropriate once people have the basics covered?arrow_forwardDo you have any suggestions for protecting the company's network against online threats?arrow_forward
- If you were asked by your employer to develop a new Information Security Policy, where would you turn to find resources to build this policy? List the two most important items you would include in this new policy and explain why you felt these were most important.arrow_forwardThe CISO approaches the interns who seem to be breaking various security standards, who express their displeasure. According to the organization, they don't encrypt their workstations, download unlicensed music, connect personal devices to corporate computers, spend too much time on social media, and download pornographic content on workplace systems. The CISO recommends that you create a security document (Rules of Behavior) that has at least 15 rules limiting what employees may and may not do when connected to the corporate network.arrow_forwardI need help with this please: The work you've done for your clients at the flooring company has helped them realize they have not taken cybersecurity seriously enough. Now that they realize the threats from hackers are more serious than they thought, they want to learn more about how to detect intruders in their systems to try to prevent the problems from happening because of a hack. Write a 2- to 3-page summary explaining how to prevent and detect intrusion in IT systems. Describe how penetration tests provide insight on network vulnerabilities through testing network defenses, such as firewalls, honeypots, and IDS. Explain how and why hackers circumvent firewalls. Explain IDS evasion and countermeasures to IDS evasion techniques. Describe the role of webserver hacking and detection in penetration testing. Identify 3 web server architectures and provide an example of a vulnerability for each. Identify tools and techniques used to detect intrusion web servers. Thank you.arrow_forward
arrow_back_ios
SEE MORE QUESTIONS
arrow_forward_ios
Recommended textbooks for you
- Fundamentals of Information SystemsComputer ScienceISBN:9781337097536Author:Ralph Stair, George ReynoldsPublisher:Cengage LearningPrinciples of Information Systems (MindTap Course...Computer ScienceISBN:9781305971776Author:Ralph Stair, George ReynoldsPublisher:Cengage Learning
Fundamentals of Information Systems
Computer Science
ISBN:9781337097536
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning
Principles of Information Systems (MindTap Course...
Computer Science
ISBN:9781305971776
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning