Download presentation
Presentation is loading. Please wait.
Published bySydney Lyons Modified over 8 years ago
2
Articulate the major security risks and legal compliance issues for a Fire and Rescue Service. Identify and justify technical controls for securing remote access and data governance. Explain the key features of ISO 27001 and risk assessment. Explain key features and requirements for an Information Security culture and suggest activities for developing it. Identify and outline key policies required and HR processes. Learning Outcomes
3
Pre-requisite Knowledge This scenario is adaptable and the prerequisite knowledge is not essential, some of it may be considered part of the learning outcomes. The following identify concepts/processes that are required for successful completion of the scenario. Information Security concepts including: 1.Confidentiality, Integrity, Availability, 2.Information Assets, Threat, Vulnerability, Impact, Likelihood, Risk, 3.Teamwork.
4
Pre-requisite Knowledge Test Introduction The following quiz will test your pre-requisite knowledge.
5
Quiz Click the Quiz button to edit this quiz
6
Turing Hill Fire & Rescue Service Improve time and efficiency for firefighters Improve safety through the use of blueprints
7
Commercial Properties STORED AT THE DATA CENTRE Establishes site specific information for safety and fire risks. Information comes from a variety of services such as fire officers, and the fire measures already in place. Provides a construction and CAD drawings of the premises. UPDATED REGULARLY
8
Mobile Data Terminal (MDT) Allows for offline access to key information and standard operating procedures for the fire type. IMAGE PLACEHOLDER FOR OUTSIDE OF THE FIRE SERVICES PLACE
9
Mobile Technologies Interview
10
New Mobile Technologies 4G LTE Access to the network will use Microsoft SharePoint. Allows for real time access to the data held on the THFRS network. After consultation with business users, the mobile device selected was the Apple iPad. This was not the preference of the ICT department.
11
Task- Stage 1 Identify a list of the checks that you need to make for an initial audit. You have some limited experience of ISO27001 in a previous role, and whilst you are not (at this stage) considering certification against the standard, you would like to know how well THFRS’ Information Security Management System (ISMS) aligns with ISO27001 requirements. What are the checks you would make to ensure that there is overall alignment? A Report and presentation addressing all of the above points.
12
Task- Stage 2 Perform a risk assessment for this system. 1.To identify the threats, vulnerabilities and associated risks with utilising iPads in this way. 2.To propose a set of controls that are cost-effective in mitigating the risks within acceptable limits for THFRS. 3.To identify any potential commercial products that could meet these requirements. Deliver a report and presentation
13
Reflection It is also important that at the end of the scenario you should reflect on your learning and team working and identify what worked well, what didn’t and actions for future improvement.
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.