Question

Task 3: Analysis of Case Study on Regulating Information Security for the Company:

TransManuCo has asked for your help in dealing with securing their information while they remain within set regulations.

In order to do business efficiently and effectively the company uses eSign. However, they have concerns about the security of this especially with clients overseas.

According to the new Protecting Cyber Networks Act Sec. 103 “Permits private entities to monitor or operate defensive measures to prevent or mitigate cybersecurity threats or security vulnerabilities, or to identify the source of a threat, on: (1) their own information systems; and (2) with written authorization, the information systems of other private or government entities. Authorizes entities to conduct such activities on information that is stored on, processed by, or transiting such monitored systems.” Since this is a new act just passed by congress, the CEO of TransManuCo wants to be sure what the ramifications are for his company. With the increase in cyber attacks especially on companies such as his, he wants to take aggressive action to protect his information.

The HR department of TransManuCo needs assistance in dealing with issues that have surfaced surrounding social media. Since much of the work the company does is sensitive and secret, they have considered using social media background checks. However, they are unsure of the legalities.

The CEO and his immediate management team have concerns that as the company has grown rapidly, access to passwords and administrative privileges are too widespread. They would like to implement the Critical Security Control Regulations to help them get control of access to their systems and decrease vulnerabilities.

They are also concerned about wireless access from company employees traveling on business, especially overseas, whose computers become infected through remote exploitation during air travel. They believe this provides backdoor access to the network when the employees return to the main office and reconnect to the network.

Analyze the episodes in this case including:

• A brief discussion of what the issue or threat is and how it could affect the company
• What cyber security laws or compliance standards are affected
• What actions the company should take to mitigate the issue or decrease the potential threat
• Cite your sources in APA from reputable reference materials

Answer 1

A short talk of what the trouble or danger is and the manner in which it might affect the corporate What digital security laws or consistency measures are influenced What activities the corporate should need to alleviate the trouble or reduction the potential risk Cite your sources in APA from good reference materials.

Answer:

The primary risk or issue is on (I) the organization's information (ii) composed documentation concerning the non-open or elective substances.

At the point when the employees working with their PCs all through their movement especially abroad, at that point their PCs get tainted just through the remote misuse that gives they the way to secondary passage getting to the system through the employees coming back to their geological point and reconnecting thereto.

These issues are raising for the corporate that has been started to well grown-up and spreading their systems.

In order to shield the advantages of the corporate, it's to establish various digital security laws or consistency standards. On the off chance that any risk is done, even though there are a couple of digital security laws and gauges, at that point the relating office should structure their laws and principles in order to shield their benefits like organization information and furthermore the composed approval.

The organization should build their measures inside the digital security the board rules, even though it acts simply like the forceful activities towards the staff.

See obviously and decide the establishment clarification for the threat

Assess the risk that reason the damage

Decide the instruments, methodologies, techniques rather confront the peril

Organizing these and fabricate appraisal on them.

Make guarantee of the assets that ought to be utilized alternatively.