Questions to Consider

Previous page
Table of content
Next page


Based on what you have read, consider the following questions and how you would reply to them:

  • If you could define your title and your reporting level within a corporation, what would it be and why?

  • Do you believe that all assets protection functions should be under one leader within a corporation?

  • If so, what would that person's title be?

  • If not, why not?

  • As an ISSO, do you know what is expected of you?

  • Do you have a strategic, tactical, and annual InfoSec (CIAPP) plan that supports the corporate plans?

  • Do you have vision, mission, and quality statements?

  • If so, are they something that you actually use in planning or just in meeting management requirements?

  • If you are not using them, why not?

  • Do you use formal project management processes and techniques?

  • If so, how and when?

  • Do you use formal risk management processes and techniques?

  • If so, when and how?

  • If you could change your ISSO duties and responsibilities, how would you change them and why?


Previous page
Table of content
Next page
The Information Systems Security Officer's Guide. Establishing and Managing an Information Protection Program
The Information Systems Security Officers Guide: Establishing and Managing an Information Protection Program
ISBN: 0750698969
EAN: 2147483647
Year: 2002
Pages: 204
Authors: Gerald L. Kovacich CFE CPP CISSP
BUY ON AMAZON
MySQL Stored Procedure Programming
Certified Ethical Hacker Exam Prep
Identifying and Managing Project Risk: Essential Tools for Failure-Proofing Your Project
Professional Java Native Interfaces with SWT/JFace (Programmer to Programmer)
Service-Oriented Architecture (SOA): Concepts, Technology, and Design
The Lean Six Sigma Pocket Toolbook. A Quick Reference Guide to Nearly 100 Tools for Improving Process Quality, Speed, and Complexity
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy