Principles of Information Security Chapter 3 Review

Chapter 3 Review 1. What is the difference between law and ethics? The difference between law and ethics is that law is a set of rules and regulations that are universal and should be accepted and followed by society and organizations. Ethics on the other hand was derived from the latin word mores and Greek word Ethos means the beliefs and customs that help shape the character of individuals and how people interact with one another 2. What is civil law, and what does it accomplish? A wide variety of laws that govern a nation or state and deal with the relationships and conflicts between organisational and entities and people. 3. What are the primary examples of public law? Criminal, administrative and constitutional law.†¦show more content†¦The act requires organisations that retain health-care information to use information security information security mechanisms to protect information, as well as policies and procedures to maintain this security. HIPPAA provides guidelines for the use of electronic signatures based on security standards that ensure message integrity, user authentication and nonrepudiation. 8. If you work for a financial service organisation such as bank or credit union, which 1999 law affects your use of customer data? What other affects does it have? The law from 1999 that affects the use of customer data by financial institutions is the Financial Services Modernisation Act or Gramm-Leah-Bliley Act of 1999. Specifically, this act requires all financial institutions to disclose their privacy policies on the sharing of non-public personal information. It also requires due notice to customers, so that they can request that their information not be shared with third parties. In addition, the act ensures that the privacy policies effect in an organisation are both fully disclosed when a customer initiates a business relationship, and distributed at least annually for the duration of the professional association. 9. What is the primary purpose of the USA PATRIOT ACT? The purpose of the USA Patriot Act is to deter and punish terrorist acts in the united States and around the world, and to enhance law enforcement investigatory tools. 10. Which 1997 law provides guidance onShow MoreRelatedRelationship Between Iasb and Fasb1151 Words   |  5 Pagescountries. The IASB has no authority with the Financial Accounting Standards Board (FASB) or the Securities and Exchange Commission (SEC) in the United States at this time. Even though the FASB and SEC are not members of the ISAB, the SEC has ruled formally that public companies that have adopted the IASB standards can list their securities on the United States stock exchanges (Schroeder, Clark, Cathey,   Chapter 1, 2011). The International Accounting Standards Board is partnering with nationalRead MorePersonal Financial Planning1579 Words   |  7 PagesPhone: 506 458-7354 Time: 7:00-9:50pm Email: otuteye@unb.ca Classroom: SH 161 Office hours: Th, F 2:00 – 3:00; by appointment; also, usually available immediately after class. COURSE OBJECTIVE AND DESCRIPTION: The objective of this course is to introduce students to 1. the fundamental principles of financial decision-making; and 2. how these principles are applied to personal financial planning. Students will learn the concepts and methods necessary in developing personalRead MoreNews About Stolen Or Missing Data1736 Words   |  7 Pagesas organisations rely more and more heavily on computers to store sensitive corporate and customer information. Increasingly, large amounts of personal and private medical data are being collected, stored and transmitted throughout the health industry especially, the hospitals. This has serious data privacy and integrity consequences. In his writing, (Bradley 2013) explains that a proper Information handling practice would ensure the protection of individual servers and PCs inside an organisationRead MoreNews About Stolen Or Missing Data1736 Words   |  7 Pagesas organisations rely more and more heavily on computers to store sensitive corporate and customer information. Increasingly, large amounts of personal and private medical data are being collected, stored and transmitted throughout the health industry especially, the hospitals. Thi s has serious data privacy and integrity consequences. In his writing, (Bradley 2013) explains that a proper Information handling practice would ensure the protection of individual servers and PCs inside an organisationRead MorePlanning for Security945 Words   |  4 PagesJohn Moura Chapter 2: Planning for Security Review Questions 1. Describe the essential parts of planning. How does the existence of resource constraints affect the need for planning? Answer: Organizational planning, described below, and Contingency planning, which focuses on planning or unforeseen events. Organizations must be able to forecast their needs relative to available resources as best they can to insure best decision making. 2. What are the three commonRead MoreLab 1 How to Identify Threats and Vulnerabilities in an It Infrastructure945 Words   |  4 PagesJohn Moura Chapter 2: Planning for Security Review Questions 1. Describe the essential parts of planning. How does the existence of resource constraints affect the need for planning? Answer: Organizational planning, described below, and Contingency planning, which focuses on planning or unforeseen events. Organizations must be able to forecast their needs relative to available resources as best they can to insure best decision making. 2. What are the three commonRead MoreData Warehousing Fundamentals For It Professionals1580 Words   |  7 Pages Running head: Summary and Review of Data Warehousing Fundamentals Data Warehousing: Data Warehousing Fundamentals for IT Professionals By Paulraj Ponniah Summary and Review By Department of Computer Science, Engineering, and Physics University of Michigan-Flint SUMMARY Below is a summary of the book â€Å"Data Warehousing Fundamentals for IT Professionals†, written by Paulraj Ponniah. Data Warehousing Fundamentals was written in June, 2010 containing 544 pages in its first editionRead MoreAuditing Hmwk #11376 Words   |  6 PagesArayawna Moore @02585360 Auditing I 09/20/10 CHAPTER 1 1-14 A. 3 B. 2 C. 2 D. 3 1-15 A. 2 B. 3 C. 4 D. 3 1-21 1) IRS, compliance audit 2) GAO, operational audit 3) CPA, operational audit 4) Internal, financial statement audit 5) GAO, operational audit 6) CPA, financial statement audit 7) GAO, financial statement audit 8) IRS, compliance audit 9) Internal, financial statement audit 10) IRS, compliance audit 11) Internal, financial statement audit 12) GAO, complianceRead MoreOffice Of Personnel Management ( Opm )1745 Words   |  7 PagesBackground Office of Personnel Management (OPM) in June 2015 discovered two cybersecurity breach incidents that impacted information of Federal government employees and contractors. OPM discovered that the background investigation data of current, former, and future Federal employees and contractors had been stolen y hackers. OPM found that sensitive information, including the Social Security Numbers of 21 million individuals were stolen from the background investigation databases. This includes 20 millionRead MoreWhat Is The Assets Of A Company?1303 Words   |  6 Pagesliabilities are resolved, the take-away (U.S. Securities, 2007). Assets ($6,060,000) - Liabilities ($4,510,000) = Equity ($1,550,000) Or Assets ($6,060,000) = Liabilities ($4,510,000) + Equity ($1,550,000) From the information provided in Table 2 we determine that the assets of this company are gross plant and equipment, inventories, net accounts receivable, and cash. The total assets of this company, for this time period, is $6,060,000.The information in Table 2 also provides the dollars of liability