5 | Information Systems homework help



 Explain the steps involved in implementing a security policy within an organization, where is the most obvious chance for error? 



1) APA format

2) References

3) Body Citations

4) No Plagiarism 

5) 350 words

6) 2 responses (each 150 words)



The goal of IT Security Policies and Procedures is to lower the risks associated with being a technology leader in the world and to enable businesses to reduce costs, decrease disruptions, and optimize their energy efficiency. Having an IT Security Policy and Procedures helps establish best practices in the use of information technology and other IT assets and the requirements of IT security. IT Security Policy and Procedures help facilitate the appropriate security posture for the organization by having clear expectations and policies in place in regards to authorized access, data, and information, user credentials, security controls, authentication methods, and preferred methods (Rummel, 2019).

Steps involved in implementing a successful security policy:

Identify risks: A good way to determine risk may be to use monitoring or reporting measures. They can detect the various types of high-risk locations and risk factors for particular areas. Whether this is related to residential, commercial, or industrial users, or just as a general “what could go wrong” think tank, the location with the greatest potential for danger is usually a “hotspot” for accidents in the community.

Do the Security Partition match with Risk: The number of security measures that are carried out should indicate a real threat. Given the complexity of the terrorist threat in many parts of the world, operational security arrangements should be designed to detect, deter, and defend against several potential threats. Within the European Union, legal, technological, and political obstacles may prevent operational security measures from being fully implemented.

Effective coordination and cooperation among security agencies are needed to counter terrorist threats. Given the variety of security threats and the importance of effective coordination of the intelligence and law enforcement communities, a comprehensive approach is needed to address security threats. Police enforcement of immigration laws should be the primary purpose of the organization of border management.

Involve employees in policy development: Invite employees to define appropriate uses. Keep employees informed as rules are updated and tools are implemented. “Facility staff are to encourage staff to use portable devices at maximum speeds and/or under maximum conditions. They should utilize hands-on innovation rather than body contact.  Equipment and devices are designed to minimize staff interaction with certain content or areas of the facility and must not be used to compromise that content”



A security policy is a written document that outlines the critical assets within an organization and how they should be protected. The primary purpose of a security policy is to provide staff an overview of the acceptable use of those critical assets to protect them. In other words, a security policy explains staff how they are responsible for protecting information systems within the organization besides having secure communication during online transactions. According to Duigan (2003), to implement a security policy, an effective policy should be created which include

  • Performing risk analysis – to identify the assets within an organization, including hardware, software, and personnel.
  • Conducting risk management – to identify potential threats to the organization, which may be physical or system or internet threats.
  • Evaluating legal compliance – Once the assets and threats are identified, the next important step is creating a security policy per the local or federal regulations to ensure privacy, integrity, and confidentiality of data.
  • Revising policy – Once a policy is drafted, the organization should make sure that it is easily understandable to the staff by providing a detailed description of roles and responsibilities. If not, the polices should be revised accordingly based on the feedback received.

After creating and revising a security policy, the implementation process follows, which is harder than creating the actual policy itself as it involves educating staff and creating awareness about the importance of security. One of the critical elements that contribute to successful implementation is the security awareness program. The purpose of this program is to educate staff on what the organization is trying to achieve in terms of security using a security policy. I think this is the stage where the implementation of a security policy can go wrong. Security policies fail not due to the lack of security tools but due to undereducated security personnel and users. So, it is necessary to provide enough training so that users understand why it’s critical to follow security policies and what it means for their job.

Order a unique copy of this paper
(550 words)

Approximate price: $22

Basic features
  • Free title page and bibliography
  • Unlimited revisions
  • Plagiarism-free guarantee
  • Money-back guarantee
  • 24/7 support
On-demand options
  • Writer’s samples
  • Part-by-part delivery
  • Overnight delivery
  • Copies of used sources
  • Expert Proofreading
Paper format
  • 275 words per page
  • 12 pt Arial/Times New Roman
  • Double line spacing
  • Any citation style (APA, MLA, Chicago/Turabian, Harvard)

Our guarantees

We value our customers and so we ensure that what we do is 100% original..
With us you are guaranteed of quality work done by our qualified experts.Your information and everything that you do with us is kept completely confidential.

Money-back guarantee

You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.

Read more

Zero-plagiarism guarantee

The Product ordered is guaranteed to be original. Orders are checked by the most advanced anti-plagiarism software in the market to assure that the Product is 100% original. The Company has a zero tolerance policy for plagiarism.

Read more

Free-revision policy

The Free Revision policy is a courtesy service that the Company provides to help ensure Customer’s total satisfaction with the completed Order. To receive free revision the Company requires that the Customer provide the request within fourteen (14) days from the first completion date and within a period of thirty (30) days for dissertations.

Read more

Privacy policy

The Company is committed to protect the privacy of the Customer and it will never resell or share any of Customer’s personal information, including credit card data, with any third party. All the online transactions are processed through the secure and reliable online payment systems.

Read more

Fair-cooperation guarantee

By placing an order with us, you agree to the service we provide. We will endear to do all that it takes to deliver a comprehensive paper as per your requirements. We also count on your cooperation to ensure that we deliver on this mandate.

Read more

Calculate the price of your order

550 words
We'll send you the first draft for approval by September 11, 2018 at 10:52 AM
Total price:
The price is based on these factors:
Academic level
Number of pages