ipl-logo

Disadvantages Of Effective Security Monitoring

956 Words4 Pages

Security monitoring allows:
1. Effective security protection on the network
2. Controlling of various malicious activities on the network
3. Detailed understanding of security infrastructure of the network

On the other hand, there are some drawbacks related to security monitoring, such as:
1. Organizations must ensure to implement a genuine and licensed security monitoring tool to perform complete security monitoring with all the features embedded, if not there are high risks of security attacks on the network.
2. Security monitoring might prove to be costly, if the budget is not planned properly in order to mitigate many security threats to the organization.

Let us consider some of the examples related to providing security monitoring solutions: …show more content…

Regulatory Compliance
Security and Policy Management
Implementing effective security policies within an organisation is one of the crucial tasks. Security policies define a framework for managing different technologies, resources and helps in achieving the objectives and goals of the organisation. Security policies reduce network threats, risk of security breaches, and manages all kind of business risks in the organisation.
There are various business risks involved in the day-to-day business activities of the organization like: Protecting employee data, sharing business information, discussing about confidential data in the organization or in any public forums, utilizing the confidential information for personal gains/usage and utilizing confidential information for various malicious activities. These business risks have to be addressed by defining security policies in the organization.
The security policies within the organisation are implemented by following certain rules, such as:
i. The security policies can be defined depending on various roles and responsibilities within the organisation. ii. The security policies should be planned in such a way that it should not affect any assets or resources within the …show more content…

Protection of data
b. Securing the information without sharing with anyone
c. Keeping the business data confidential and not used for personal gains
d. Ensuring integrity of the data
e. Following security policies/guidelines/procedures within the organization
f. Choosing a proper security technology based on the security breach detected
These best practices may vary depending on the type of organization and on the business principles followed by the organization.
Regulatory Compliance
Regulatory Compliance ensures that organisations follow as per laws, regulations, guidelines and specifications defined in terms of business. Sometimes, there are some scenarios where organisations does not follow the defined regulations properly. In such situation, these organisations are forced to undergo a legal consequence or punishments, which involve huge price to be paid for such carelessness.
Some of the regulatory compliance followed by the organisation include: Dodd-Frank Act, Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), the Federal Information Security Management Act (FISMA) and the Sarbanes-Oxley Act (SOX).
These standards are described

Show More
Related

Nt1310 Unit 1

410 Words | 2 Pages

With widespread use of internet services, the network scale is expanding on daily basis and as the network scale increases so will the scale of security threats which can be applied to system connected to the network. Viruses and Intrusions are amongst most common threats that affects computer systems. Virus attacks can be controlled by proper antivirus installation and by keeping the antivirus up to date. Whereas any unauthorized access in the computer system by an intruder can be termed as Intrusion and controlled by IDS. Intruders can be grouped into two major categories which are external and internal Intruders.

Read More

Nt1310 Unit 1 Chapter 3

593 Words | 3 Pages

It also helps in performing forensic analysis on networks and computer systems and make recommendations for remediation. Implementation involves application, maintaining and analyzing results from intrusion detection systems, intrusion prevention system, network mapping software and other tools that can be used to protect, detect and correct information security-related vulnerabilities and laws. Implementation can also be said to provide audit data to appropriate law enforcement or other investigation agencies to include corporate security elements. The implementation also involves coordinate dissemination of forensic analysis findings to appropriate

Read More

Nt1310 Unit 3 Pest Analysis

131 Words | 1 Pages

1. Policies governing the network insecurities which include Email and communications policy, Remote Access Policy, BYOD Policy and Encryption policy 2. User accounts management through training and assigning of user roles depending on their access levels to information in the organization. 3. Setting up workstations and assigning every user a workstation.

Read More

Nt1330 Unit 7 Group Policies

500 Words | 2 Pages

Assignment-7 Group Policies Group Policies: Group policies specifies settings for users and computers which includes security settings, software installation, computer startup and shut down, registry based policy settings and folder redirection. Group policies are responsible for controlling the working environment of users and computers accounts. It provides the configuration and management of the user’s settings, operating system and applications in a working environment. It is responsible for the user’s actions in a computer like what a user can and cannot do on the computer for example enforce users to have a complex password to prevent the network from being accessed by unidentified users. Group policies when properly planned and implemented

Read More

Nt1330 Unit 3 Information Security Risk Management

223 Words | 1 Pages

The Information Security Manager reports in their capacity to the CEO. Company officers, executives, directors, employees, contractors and third party service providers cooperate and work with the Information Security Manager to ensure the protection of customer’s non-public information and Licensee’s Information Assets. Policies, such as Enterprise Antivirus Program, Network Access, Software Development Security Standards, Physical Security, Vendor Manangmenet Ativirus, Mobile Computing/Remote Access, Inromation Security Risk Assessment, Social Media, Data Loss Prevention, and Secuiryt Incident Response Policies have been implemented to protect customer’s non-public personal information and company Information

Read More

Nt1330 Unit 6 Paper

684 Words | 3 Pages

Moreover, management should conduct privacy protocol training, so everyone is on the same page. The policy needs to state clearly the company’s rules about protecting customer’s personal data. Also, staff needs to know that there will be monitoring of phone calls and well as computer activity and emphasizes that per Muhl, (2003) “an employee’s personal use of an employer’s e-mail system and Internet access is not protected under the law.” Hence, organizations can encounter legal troubles due the inappropriate use of the system. The privacy of customer is important, and it needs protection.

Read More

Nt1310 Unit 3 Types Of Security Policies

490 Words | 2 Pages

There are several differences between a policy, a standard, and a guideline. Policies are typically a statement produced by senior management relating to the protection of information. It outlines security roles and responsibilities. It also describes the controls that are set in place to protect pertinent information. Each policy should make some form of reference to the standards and guidelines that support it.

Read More

Nt1310 Unit 3 Network Management

1021 Words | 5 Pages

Group Policy Objects (GPOs): Security settings on workstations and for users should be uniformly applied across all company devices, and should not be modifiable by users. Microsoft Active Directory allows an administrator to set numerous configurations and settings that can be applied on all workstations and user accounts. If it is configurable in Windows, it can be managed by a Group Policy Object (GPO). Any company policy that requires a specific setting, should be enforced by creating a GPO that forces user and workstation compliance. For example, if the Password Policy requires users to choose a password of a specific length and complexity, a GPO can be set that enforces that requirement

Read More

5.2 Summarise The Policies And Procedures

893 Words | 4 Pages

5.1 The policies and procedures provide advice and information to the staff, pupils, parents/carers and everyone else involved in working with the school. They ensure that the staff and pupils are aware of what is expected of them. In addition to this, clear policies and procedures also ensure a consistent and appropriate response to the situations arising in the school. There are some policies and procedures that the schools are required to hold by law. These are mentioned in the document entitled "Statutory policies for Schools" provided by the Department of Education.

Read More

Legislation Policies And Procedures In Health And Social Care Essay

1078 Words | 5 Pages

Assignment: Outline how legislation, policies and procedures relating to health, safety and security influence health and social care settings. Go on to describe how those legislation, policies and procedures promote the safety of individuals in your health or social care setting. Policies, procedures and legislation are found in every establishment. They are required to have them in place in order to protect and keep the employers, employees and service users safe. Legislations in an establishment are a groups of laws set by the government that must be followed otherwise an individual will be prosecuted.

Read More

Political Factors Affecting Ulta Beauty

913 Words | 4 Pages

For operational purposes, the company collects and stores confidential information about their customers, employees, suppliers, and vendors. For purposes of their rewards program, the company collects sensitive and confidential consumer information. Although security measures and information technology systems have been put in place to ensure secure transmission and storage of confidential information, security breaches, computer viruses, or even human error can occur. Any of these events could cause data to be lost or stolen, as well as disclosed and used with malicious intent. Such occurrence could lead to litigation, fines, increased security costs, and damage to

Read More

COBIT V4.1 Framework

993 Words | 4 Pages

Implement a policy where employees must adjust their passwords every sixty days and that they must set a screen lock out when they step away from their workstation 4. True or false: COBIT P09 risk management control objectives focus on assessment and management of IT risk. True 5. What is the name of the organization that defined the COBIT P09 Risk Management Framework?

Read More

Information Security Policy

1140 Words | 5 Pages

It’s necessary to protect the organization and the job of its employees. It is also a great management tool that sets the guide lines for audits and helps with legal disputes. 2. For a policy to have any effect, what must happen after it is approved by management? What are some ways this can be accomplished?

Read More

Classroom Management Case Study

833 Words | 4 Pages

Chapter I The Problem Introduction Every school has its own policies which stat the rules and regulations that they are implementing to control and manage the behaviors, attitudes, and activities of the students inside the school. This may enable them to become a responsible and discipline one. The administrators and teachers are responsible for monitoring and supervising the student 's behavior.

Read More

Accountability Theory Summary

990 Words | 4 Pages

Second, employee’s conviction that another person will assess his/her performance according to some normative ground rules and with some implied consequences would much influence his/her attitude towards information security policy (ISP) compliance. Third, when employees are made to understand that the entire work process is being monitored they are likely to put up behaviors that foster compliance with ISP. Finally, employees’ awareness of the presence of another person who has the right to pass judgment on their actions and to administer potential positive or negative consequences in response, can have positive influence on their behavior

Read More

More about Disadvantages Of Effective Security Monitoring

Related Topics

Open Document