(A).examine an organization’s relationship between information security and ISO 27001. Additionally, students will examine some of the different types of cryptographic Attacks such as those on social media plaforms.
Understand the importance of articulating an organization’s goals, values and risk position as well understanding how they assist in setting an organization’s materiality standard.
Assess effectiveness of an organization’s information security risk assessment methodologies.
Define the relationship between an organization’s operational informational security requirements and the ISO 27001.
(B).The required article readings this week give a good discussion and look at some of the frameworks that are used to manage risk within organizations and enterprises. One of the readings this week provided an introduction and comparison of different frameworks. As with anything, there are going to be strengths and weaknesses to all approaches.
Do you think that ISO 27001 standard would work well in the organization that you currently or previously have worked for? If you are currently using ISO 27001 as an ISMS framework, analyze its effectiveness as you perceive in the organization.
Are there other frameworks mentioned has been discussed in the article that might be more effective?
Has any other research you uncover suggest there are better frameworks to use for addressing risks?