Presentation is loading. Please wait.

Presentation is loading. Please wait.

SME Security. Articulate the major security risks and legal compliance issues for an SME.Explain and justify approaches of investment on InfoSec controls,

Published byDarrell Sherman Modified over 9 years ago

Similar presentations

Presentation on theme: "SME Security. Articulate the major security risks and legal compliance issues for an SME.Explain and justify approaches of investment on InfoSec controls,"— Presentation transcript:

1 SME Security

2 Articulate the major security risks and legal compliance issues for an SME.Explain and justify approaches of investment on InfoSec controls, including ROSI.Explain the key features of ISO 27001 and risk assessment. Explain key features and requirements for an Information Security culture and suggest activities for developing it. Analyse and discuss the relevance of Cyber Essentials and BMIS to the scenario.Identify and outline key policies required and HR processes. Identify and justify technical controls for securing remote access and data governance. Learning Outcomes

3 1.Information security concepts / controls including: Confidentiality, integrity, availability Information assets, threat, vulnerability, impact, likelihood, risk 2.Teamwork. Pre-Requisite Knowledge

4 Quiz Introduction

5 Quiz Click the Quiz button to edit this quiz

6 SME Security Leading Edge Removals is an SME based locally in Skelmersdale. Provides high quality services both to and from the UK and international destinations. Grown from a local and regional removals company to starting international removals. The company is ambitious and sees opportunities to expand. SME Security

7 Information Security The management team does not fully appreciate the information security risks or the measures needed. The company has limited financial and technical resources and the most important thing for them is their need must fit their revenue. Security Measures in place Leading Edge Removals Adequate Security Information Security: Not Appreciated?

8 Interview Video Transcript

9 Your Task: Stage 1

10 Your Task: Stage 2

11 You have articulated the major security risks and legal compliance issues for an SME. Explained and justified the approaches of investment on InfoSec controls, including ROSI. Explained the key features of ISO 27001 and Risk Assessment. Explained key features and requirements for an Information Security culture and suggest activities for developing it. Analysed and discussed the relevance of Cyber Essentials and BMIS to the scenario.Identified and outlined key policies required and HR processes. Identified and justified technical controls for securing remote access and data governance. Summary

Download ppt "SME Security. Articulate the major security risks and legal compliance issues for an SME.Explain and justify approaches of investment on InfoSec controls,"

Similar presentations

Module 1 Evaluation Overview © Crown Copyright (2000)

Module 1 Evaluation Overview © Crown Copyright (2000)
Fieldwork assessment The difference between AS and A2 David Redfern

Fieldwork assessment The difference between AS and A2 David Redfern
PhoenixPro Procurement. technology. contracts. projects.

PhoenixPro Procurement. technology. contracts. projects.
Information Technology – Guidelines for the Management of IT Security

Information Technology – Guidelines for the Management of IT Security
Senior Secondary Reform Team, DECS Curriculum Services Task design – SACE Stage 2 Workshop term 2 2010 Part 1.

Senior Secondary Reform Team, DECS Curriculum Services Task design – SACE Stage 2 Workshop term Part 1.
1 Introduction Welcome! Format of day Response to previous requests from clients Amendment to schedule Using Information Security for Business Advantage.

1 Introduction Welcome! Format of day Response to previous requests from clients Amendment to schedule Using Information Security for Business Advantage.
Add client logo Elliot Harris FCA DChA Charities Partner Trustees - The Roles, Responsibilities and Challenges a presentation.

Add client logo Elliot Harris FCA DChA Charities Partner Trustees - The Roles, Responsibilities and Challenges a presentation.
Short presentation of a project proposal for the 6 th call Space in FP7 „Draft proposal title“ Name, Organisation type of organisation (SME, research centre,

Short presentation of a project proposal for the 6 th call Space in FP7 „Draft proposal title“ Name, Organisation type of organisation (SME, research centre,
© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.
Determining CLIMASP Competencies Jerash University Development of Interdisciplinary Program on Climate Change and Sustainability Policy- CLIMASP Development.

Determining CLIMASP Competencies Jerash University Development of Interdisciplinary Program on Climate Change and Sustainability Policy- CLIMASP Development.
Integrated Coastal Zone Management Unit 7: Integrated coastal planning.

Integrated Coastal Zone Management Unit 7: Integrated coastal planning.
Risk Management a Case Study DATALAWS Information Technology Law Consultants Presented by F. F Akinsuyi (MSc, LLM)MBCS.

Risk Management a Case Study DATALAWS Information Technology Law Consultants Presented by F. F Akinsuyi (MSc, LLM)MBCS.
OAUG SOX Panel Krista Ladd Oracle Applications Manager Silicon Image, Inc.

OAUG SOX Panel Krista Ladd Oracle Applications Manager Silicon Image, Inc.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Creation of Policies, Part.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Creation of Policies, Part.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Creation of Policies, Part.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Creation of Policies, Part.
Overview and Introduction

Overview and Introduction
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
SecureAware Building an Information Security Management System.

SecureAware Building an Information Security Management System.
Discussing “Risk Analysis in Software Design” 1 FEB 2006 - Joe Combs.

Discussing “Risk Analysis in Software Design” 1 FEB Joe Combs.
Managing Risk. What is Risk Risk is the chance of things happening that could have an impact on the outcomes it achieves, or on the objectives of the.

Managing Risk. What is Risk Risk is the chance of things happening that could have an impact on the outcomes it achieves, or on the objectives of the.

Similar presentations

Ads by Google