The four major areas that you should consider when collecting and writing security requirements documents are: User ManagementData ManagementAccess ControlAuditingSelect one (1) of these four areas an

The four major areas that you should consider when collecting and writing security requirements documents are:

User Management
Data Management
Access Control
Auditing

Select one (1) of these four areas and develop a report to management outlining and identifying the specific questions that would need to be asked and addressed in order to determine that adequate access controls are in place to mitigate the inherent risks associated with these major areas.

Please be sure that your paper not only lists the specific questions to be asked but, that you also identify which type of access control (see list below) that each question is designed to assess.

Access Controls

Administrative controls: Policies approved by management and passed down to staff, such as policies on password length.
Logical/technical controls: Control access to a computer system or network, such as a username and password combination
Hardware controls: Equipment that checks and validates IDs, such as a smart-card for or security token for multifactor authentication.
Software controls: Controls embedded in operating system and application software, such as NTFS permissions.
Physical controls: Control entry into buildings, parking lots, and protected areas, such as a lock on an office door.

please do not use AI or plagiarism as this will go through a detector and will detect if AI or plagiarism was used. You can use this book for reference.

– Kim, D., & Solomon, M. G. (2023). Fundamentals of information systems security (4th ed.)Jones & Bartlett Learning

Share This Post

Order a Similar Paper and get 15% Discount on your First Order

Related Questions

Develop an overall summary of what you learned this semester. What did you take away from this course? How did this course assist you in better performing and/or better understanding your job? Tell m

Develop an overall summary of what you learned this semester. What did you take away from this course? How did this course assist you in better performing and/or better understanding your job? Tell me, with respect to this course, what went right this semester, what did not. What worked and

In this reflective activity, you will reflect on the critical aspects of managing systems projects and enhancing cybersecurity within the operations phase of the SDLC.For this Reflection activity, res

In this reflective activity, you will reflect on the critical aspects of managing systems projects and enhancing cybersecurity within the operations phase of the SDLC. For this Reflection activity, research and answer the following questions: What role does risk assessment play in cybersecurity planning? How can a security-first mindset be

Imagine that you are the director of health information for a large hospital. As director, you sit on various institution-wide committees that govern organizational procedures. In collaboration with i

Imagine that you are the director of health information for a large hospital. As director, you sit on various institution-wide committees that govern organizational procedures. In collaboration with interdepartmental committees, you have been asked to write a blog post explaining blockchain in healthcare to non-technical stakeholders within the organization. Your

A critical security patch has just been developed to address a significant vulnerability in your product. Usually, your team conducts thorough regression testing on updates to ensure they do not intro

A critical security patch has just been developed to address a significant vulnerability in your product. Usually, your team conducts thorough regression testing on updates to ensure they do not introduce new bugs or issues. However, due to pressures to meet tight deployment deadlines, your manager instructs you to skip

In this chapter you learned about quality assurance in system maintenance and support. This exercise helps to deepen your understanding of quality assurance practices during system maintenance and sup

In this chapter you learned about quality assurance in system maintenance and support. This exercise helps to deepen your understanding of quality assurance practices during system maintenance and support. Instructions: Answer the following questions: Why is the Maintenance and Support phase crucial for IT systems? How can effective documentation enhance

A team member is handling the testing for the new accounting system and is very upset about the most recent results. “Every time we fix one problem, another one pops up! After 10 days of testing and a

A team member is handling the testing for the new accounting system and is very upset about the most recent results. “Every time we fix one problem, another one pops up! After 10 days of testing and adjusting, we meet over 90% of the goals and benchmarks. If we’re looking

Instructions Imagine that you are the director of health information for a large hospital. As director, you will create a chronological timeline of federal initiatives that have progressed health info

Instructions Imagine that you are the director of health information for a large hospital. As director, you will create a chronological timeline of federal initiatives that have progressed health information exchange in the United States. The timeline should include the following information: Select at least 8 federal initiatives that have

In this chapter you learned about managing system implementation. This exercise helps to deepen your understanding of the critical aspects of managing system implementation and ensuring quality throug

In this chapter you learned about managing system implementation. This exercise helps to deepen your understanding of the critical aspects of managing system implementation and ensuring quality throughout the process. Instructions: Answer the following questions: Why is quality assurance crucial during system implementation? How can effective documentation enhance the implementation

The department manager has asked a junior analyst at a medium-sized IT consulting firm to draft a response to an RFP from a large company seeking IT consulting services in connection with a new accoun

The department manager has asked a junior analyst at a medium-sized IT consulting firm to draft a response to an RFP from a large company seeking IT consulting services in connection with a new accounting system. The analyst working on the RFP noticed a specific question about the firm’s recent

In this chapter you learned about the Implementation Phase in the SDLC. This exercise deepens the understanding of the Implementation Phase in the SDLC. Instructions: Research: Conduct research on the

In this chapter you learned about the Implementation Phase in the SDLC. This exercise deepens the understanding of the Implementation Phase in the SDLC. Instructions: Research: Conduct research on the Implementation Phase. Explore its purpose, key activities, and significance within the SDLC. Create a Summary: Write a concise summary of

The Impact Of Technology On OrganizationsWk 8 – Summative Assessment: Technology-Management Plan Imagine this scenario: You are a technology development consultant for a large service organization. Ex

The Impact Of Technology On OrganizationsWk 8 – Summative Assessment: Technology-Management Plan Imagine this scenario: You are a technology development consultant for a large service organization. Executive leadership has given you the responsibility of developing a technology-management plan. Write a 1,400- to 1,750-word paper in which you evaluate the management

The new accounting system is operational, but user feedback has been negative. The most common complaint is that the system could be more user-friendly. Some people in the IT department think that mor

The new accounting system is operational, but user feedback has been negative. The most common complaint is that the system could be more user-friendly. Some people in the IT department think that more user training would solve the problem. However, the IT manager is opposed to a fresh round of

Review the journal article Employees Adherence to Information Security Policies, link is https://cdn.inst-fs-iad-prod.inscloudgate.net/ec5f46b2-1b12-45f2-915b-5f6549eafab9/Employees’%20adherence%20to%

Review the journal article Employees Adherence to Information Security Policies, link is https://cdn.inst-fs-iad-prod.inscloudgate.net/ec5f46b2-1b12-45f2-915b-5f6549eafab9/Employees’%20adherence%20to%20information%20security%20policies%2C%20An%20exploratory%20field%20study.pdf?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCIsImtpZCI6ImNkbiJ9.eyJyZXNvdXJjZSI6Ii9lYzVmNDZiMi0xYjEyLTQ1ZjItOTE1Yi01ZjY1NDllYWZhYjkvRW1wbG95ZWVzJUUyJTgwJTk5JTIwYWRoZXJlbmNlJTIwdG8lMjBpbmZvcm1hdGlvbiUyMHNlY3VyaXR5JTIwcG9saWNpZXMlMkMlMjBBbiUyMGV4cGxvcmF0b3J5JTIwZmllbGQlMjBzdHVkeS5wZGYiLCJ0ZW5hbnQiOiJjYW52YXMiLCJ1c2VyX2lkIjoiMTA2ODUwMDAwMDAwMDQzMzcwIiwiaWF0IjoxNzYzNTQ4NDcxLCJleHAiOjE3NjM2MzQ4NzF9.N2vrrvQr2t-MEPVDw54kLc_ZoekbOAfWUj5-WoCgT_ds070e01CRec1N_arz8LZJppTgz5rKQA9GNAcZWaQ2OQ&download=1&content_type=application%2Fpdf The essay should reflect your understanding of your textbook readings and the journal article. You are free to use any other relevant references beyond the prescribed texts. Summarize the article’s main points, and answer the following questions. What

In this chapter you learned about system architecture. This exercise helps to deepen the understanding of system architecture concepts and the process of translating logical designs into physical blue

In this chapter you learned about system architecture. This exercise helps to deepen the understanding of system architecture concepts and the process of translating logical designs into physical blueprints for information systems. Instructions: Answer the following questions: Describe the steps involved in translating a logical design into a physical blueprint

Tip Top Toys is a relatively small division of Worldwide Enterprises. Worldwide has nine other divisions, which include insurance, healthcare products, and financial planning services, to name a few.

Tip Top Toys is a relatively small division of Worldwide Enterprises. Worldwide has nine other divisions, which include insurance, healthcare products, and financial planning services, to name a few. The corporate marketing director for Worldwide has requested Tip Top’s customer shopping data to target people who might be likely to

One of the systems analysts on the project team thought they did a good job designing the company’s tech support webpage, but the supervisor isn’t so sure. The supervisor is concerned that the design

One of the systems analysts on the project team thought they did a good job designing the company’s tech support webpage, but the supervisor isn’t so sure. The supervisor is concerned that the design is very similar to a page used by the company’s primary competitor and asked the analyst

Review the journal article, What We Talk About When We Talk About “Reasonable Cybersecurity”, by Kevin L. Miller. The essay should reflect your understanding of your textbook readings and the journal

Review the journal article, What We Talk About When We Talk About “Reasonable Cybersecurity”, by Kevin L. Miller. The essay should reflect your understanding of your textbook readings and the journal article. You are free to use any other relevant references beyond the prescribed texts. Summarize the article’s main points, and

Discuss the importance of user interfaces in technology and the principles of HCI. Objective: In this chapter you learned about the principles and best practices of designing user interfaces and sourc

Discuss the importance of user interfaces in technology and the principles of HCI. Objective: In this chapter you learned about the principles and best practices of designing user interfaces and source documents/forms. Instructions: Choose a specific topic related to user interfaces and HCI (e.g., the importance of user research, the role