Using MIS (10th Edition)
10th Edition
ISBN: 9780134606996
Author: David M. Kroenke, Randall J. Boyle
Publisher: PEARSON
expand_more
expand_more
format_list_bulleted
Expert Solution & Answer
Chapter 5.3, Problem 4SAQ
Explanation of Solution
Security:
Security plays an important role in protecting the digital information from the unauthorized user.
Organization that would place greater value on security:
Some example organization that would place greater value on the security is Health care services and Law enforcement agencies.
Security in Health care Services and Law enforcement agencies:
Health care services are focused in storing the patient data and the information stored about the patient needs to be secured because they are data based on the federal regulations.
Law enforcement agencies are focused on storing information regarding the criminals and those data needs to be secured for performing investigations on the criminals such that no tampering is made and it should ensure proper custody chain.
The above mentioned data present in the health care services and Law enforcement agencies are needs to be secured because they deal with the federal regulation and hence they are concentrated in the security than the convenience...
Expert Solution & Answer
Want to see the full answer?
Check out a sample textbook solution
Students have asked these similar questions
Security breaches in information systems are very commonplace these days even though some organizations have what they believe is good security controls. Because of their vulnerability to threats from hackers, internal personnel, and poor management of Hardware and software devices, security controls always need revisiting.From my perspective as manager of the Accounts and Finance department, every security breach affects this department even if it is just down time to be at meetings, to discuss strategies and costs to repair damages. When the breaches occur, unauthorized access is gained to either, do something malicious to the organization's resources to steal or sabotage data for financial gain.This usually results in the company's reputation/integrity being damaged, Loss of revenue during downtime, high costs to repair and restructure. legal ramifications are expected as well if guilty persons are found or if customers decide to sew for breach of contract and losses.Two Reasons…
Why is company information confidentially important? What types of mistreatment come to mind in the absence of confidentiality controls? What illicit acts may be curtailed or stopped if confidentiality rules were properly put into place?
In the area of Information systems security, there are a number of phases that a
business will follow to conduct this security. Two of the phases are "Implement
controls" and "Review & Update security process". What is the relationship between
these two phases regarding their purposes? Do not just state or explain what each of
these are, but regarding their overall purposes explain their relationship.
Chapter 5 Solutions
Using MIS (10th Edition)
Ch. 5.2 - Prob. 1EGDQCh. 5.2 - Prob. 2EGDQCh. 5.2 - Prob. 3EGDQCh. 5.2 - Prob. 4EGDQCh. 5.2 - Prob. 5EGDQCh. 5.2 - Prob. 6EGDQCh. 5.2 - Prob. 7EGDQCh. 5.2 - Consider the adage Never ask a question for which...Ch. 5.3 - Prob. 1SAQCh. 5.3 - Prob. 2SAQ
Ch. 5.3 - Prob. 3SAQCh. 5.3 - Prob. 4SAQCh. 5.8 - Prob. 1SGDQCh. 5.8 - Prob. 3SGDQCh. 5.8 - Prob. 4SGDQCh. 5.8 - Prob. 5.1ARQCh. 5.8 - Prob. 5.2ARQCh. 5.8 - Prob. 5.3ARQCh. 5.8 - Prob. 5.4ARQCh. 5.8 - How are data models used for database development?...Ch. 5.8 - Prob. 5.6ARQCh. 5.8 - Prob. 5.7ARQCh. 5.8 - Prob. 5.8ARQCh. 5 - Draw an entity-relationship diagram that shows the...Ch. 5 - Consider the relationship between Adviser and...Ch. 5 - Prob. 5.3UYKCh. 5 - Prob. 5.4UYKCh. 5 - Study Figure 5-28 to understand the entities and...Ch. 5 - Working with your team, develop a list of seven...Ch. 5 - Modify the E-R model in Figure 5-28 to include a...Ch. 5 - Discuss the advantages and disadvantages of the...Ch. 5 - Transform the data model in Figure 5-28 into a...Ch. 5 - Prob. 5.1CE5Ch. 5 - Fill your database with sample data. Because you...Ch. 5 - Prob. 5.12CE5Ch. 5 - Explain why a one-table database could be stored...Ch. 5 - Prob. 5.14CS5Ch. 5 - Examine the columns in Figure 5-33. Name three...Ch. 5 - Prob. 5.16CS5Ch. 5 - Prob. 5.17CS5Ch. 5 - Explain the statement A database is an abstraction...Ch. 5 - Prob. 5.19CS5Ch. 5 - Prob. 5.2MMLCh. 5 - Prob. 5.21MML
Knowledge Booster
Similar questions
- Chain Link Consulting is an information technology consulting company that focuses on system security concerns. When the company's president asks you to assist her with the preparation of a presentation for a group of potential clients at a trade show meeting next month, you say "yes." First and foremost, she would like you to examine system security concerns in light of all six security levels. Afterwards, she wants you to come up with a list of methods that Chain Link might evaluate a client's security procedures in order to obtain an accurate evaluation of their level of exposure.It was her way of making the situation more intriguing by saying that it was fine to be imaginative in your ideas, but that you should avoid proposing anything that would be unlawful or immoral. Example: It might be OK to pretend as a job candidate with phony references to see whether they were being reviewed, but it would be inappropriate to steal a lock and access the computer room to check on things.Your…arrow_forwardAn example of a current security lapse involving access control or authentication might be instructive. Do you think it has changed the way the corporation does business? Are you able to provide me specific information on whether or not the business has suffered losses?arrow_forwardSuppose there is a big ABC organization which offers different products for their customers. When the said organization develops the different products for customers, then there is a possibility of different hazards, which may affect the process of development. What type of procedure and process should be follow by management department for risk management to avoid or mitigate the incoming risks, to produce better quality products at the end?arrow_forward
- An example of a recent security violation involving access control or authentication might be instructive. Do you feel it has had an impact on the company's business practices? Can you give me with specific details on whether or not the firm has suffered losses?arrow_forwardHow do the four most significant security vulnerabilities in purchasing and merchandising systems occur?arrow_forwardIs it possible that the recent security incident involving access control or authentication that made news was the product of an inside job, according to your opinion? In what ways did it have an impact on the day-to-day operations of the company? What kind of financial losses did the firm suffer?arrow_forward
- Select all answers that describe traditional isolation of ICSs. O Information relevant to ICS operations was transferred to the corporate domain via paper. Physical security required an employee or operator to have a badge and go past a security guard to enter the facility. O ICSS were not connected to the corporate network. Corporate entities had real-time access to the control system. O ICSS were connected directly to what was deemed an untrusted environment.arrow_forwardIt is not always simple to determine which security strategy would work best for a particular firm. What recommendations would you provide to a close friend? Explaining the operating principles, as well as the benefits and drawbacks of the processes that are under discussion, is necessary in order to establish a reason for anything.arrow_forwardWhy is maintaining secrecy of company information so important? What types of misuses come to mind when there are no safeguards to protect the confidentiality of information? In what types of illegal activities may confidentiality restrictions, if successfully applied, lead to a reduction or elimination of the activity?arrow_forward
- What are the benefits of having security in a corporation and what are the drawbacks of not having security?arrow_forwardWhy is it important to treat security not as a "point in time" measurement? If you had to explain the important of investing in security in a long-term strategy to a CEO or CFO, how would you counter the "point in time" argument?arrow_forwardSo, what exactly are the security concerns that each firm faces? What should the organization's response be in this situation?arrow_forward
arrow_back_ios
SEE MORE QUESTIONS
arrow_forward_ios
Recommended textbooks for you
Management Of Information SecurityComputer ScienceISBN:9781337405713Author:WHITMAN, Michael.Publisher:Cengage Learning,
Management Of Information Security
Computer Science
ISBN:9781337405713
Author:WHITMAN, Michael.
Publisher:Cengage Learning,