I have uploaded all the previous 7 labs. Due in 24 hoursSecurity Operations – Week #8 Final Project In this Project Final you are to update, refine and combine the past seven weeks of Labs to create t

Running Head: POLICY REVIEW AND MODIFICATION 0

Policy Review and Modification

Policy review and modification is an important aspect of any organization. It helps give up-to-date information to the workers in the sector, which ensures swift operations and good relations. Reviewing and modifying helps an organization in its technological practices helping it to participate in healthy in the market. Mahtmarg being involved in business with individual customers and government organizations means that there will be a lot of information shared between those business transactions which must be protected (Pahnila, 2018). The information may be personal, internal, external, or even information concerning the company's assets. As the information security officer, I am mandated to develop policies that will help oversee data protection and information between the different entities. It would help in enhancing privacy and promoting confidentiality and hence promoting integrity.

Annual review

The data information security policy has been in effect for a whole year. There have been challenges, and at the same time, the lager part has been the successive part of the policy. The information has been protected, but there were instances of hacking, and some crucial data was accessed. With that in mind, there was a need to review and modify the policy on information security to avoid such instances happening (Li, 2018). The first step was to determine the vulnerability and rectify where possible or change the systems. Anti-hackers were employed to help counter such acts in the future. Another staff was educated on the possible sites that hackers may tend to use in accessing various information. The year was successful, and the policy was recommended to be working on protecting clients' and customers' information.

Who is responsible for making updates and revisions?

It is the organization's responsibility, more specifically, the information security department to enlighten the rest of the workers on the changes made in certain policies. It is also the department's responsibility to help the company understand the benefits of making such recommendations (Li, 2018). The information security advises the company on the weaknesses of the security policies and, at the same time, makes revisions on the already existing ones to help avoid loss of any partner information. The department must also ensure that rest of the employees are informed of what is required of them to ensure the information is secure. A framework would be deliberated on the measures taken to any employee who may leak the information secure in one way or another.

The reviewed policy information details should be well-published on the company's website and its notice board. From these locations, the other employees will be in a good position to access them. The information security officer will also be open for any employee with an issue concerning the reviews and modification.

References

Moody, G. D., Siponen, M., & Pahnila, S. (2018). Toward a unified model of information security policy compliance. MIS Quarterly, 42(1).

Qu, Z. G., He, H. X., & Li, T. (2018). The novel quantum watermarking algorithm based on improved least significant qubit modification for quantum audio. Chinese Physics B, 27(1), 010306.