Use the following template as a guideline to develop your assignment. Enter your answers on the template to keep them organized.
- The case outlines the Enterprise Information System Security framework with policies for Security, Awareness, Access Control, and Top Level Management Support. In addition to those policies, suggest three more security policies to help mitigate risk against security attacks. Distinguish the controls among people, technology, and business process operations. Use the template to discuss each new policy.
- Classify the security controls to support each policy according to preventive, detective, and corrective measures.
- What additional steps should you take to improve the company’s information security system? Would you suggest an audit?
- What recommendations would you give the bank CIO for how it might select a security management maintenance model? Include graphics if available.
The template and case study are attached , we have to go through the case study and a prepare 3 tables as in template