• March 25th, 2016

IT Management

Paper, Order, or Assignment Requirements

Tsai Advanced Technology, Inc. (TATI) is a fictional multi-national company providing outsourced financial services to a variety of clients across many industries, including commercial and government entities. TATI specializes in billing and invoicing services, in which TATI receives relevant data from its clients and processes the data to produce the invoices, monthly statements, and other billing items that are sent to TATI’s clients’ customers. TATI employees serve the company’s customers both on-site at customer locations and while working in TATI facilities. TATI employees routinely store data related to multiple clients on their company-issued laptops. TATI’s Chief Information Officer, having read of the numerous data breaches reported among commercial and government organizations, has become concerned about the risk to TATI’s customers and potentially the company’s reputation if TATI were to experience a similar breach. He has tasked you, the Director of Information Security, to create a new corporate policy regarding the protection of client and company confidential data stored on employee computers, particularly including laptops. Respond to each of the following, taking into account material we have studied in this course regarding threats and vulnerabilities. Cite these and other pertinent sources used in your answer. Be specific and briefly but fully explain and give reasons for your answers. a. Summarize the primary vulnerabilities and potential threats that exist for TATI related to the practice of storing sensitive data on laptops. Use your answer to clarify the difference between vulnerabilities and threats (if there are any). In your opinion, which of the risks TATI faces are most significant to the company? b. What measures would you propose to senior management to try to prevent a breach of data held by TATI? Your response should include recommendations for mitigating vulnerabilities identified in part (a). c. Discuss the key characteristics of a policy statement and write one specifying employee and company responsibilities for protecting client and corporate data, such as the data stored on employee laptops. Be sure to address requirements for protecting the data from theft, and for rendering the data unusable should it be compromised. Note please answer the above questions a-c separately.

Latest completed orders:

Completed Orders
# Title Academic Level Subject Area # of Pages Paper Urgency