Organizational Security

EXERCISE

Identify ONE (1) organizational security policy and describe its procedures.

Policy: 

At Mc'donald we have to pay first when we order the foods before we eat.

Procedure:

• As customer we have to confirm our order first before we pay.
• We have to wait for our foods to be prepare by the employee.
• We take our foods after the employee serve it to us.

What will happen?

Problem: 

When the customer only have a big amount of money, the employee have to find the change for the customer money.

EXERCISE (3 May 2018)

• Describe organisational security procedures. Discuss its importance.

Procedures is the step by step instruction given to the reception area on how to deal with. The benefit is to protect of personal data, property and equipment for the company.

• Discuss the different risk control practices.

1. Risk Evaluation - if it happen you need to access it first by evaluate the access and know how to solve. 
2. Technical Risk Control - It should be control to reduce the risk of security threats or to prevent them completely so that it wont happen, by using antivirus or firewalls.
3. Operational Risk Control - By train your trainer so that they will know what they gonna do and not to do before threats happen.

• Describe how business continuity helps organizations.

Even when disaster happen, it helps the business continuity to operate again.

• Discuss the importance of having an IT Business Continuity Plan.

1. Disaster Recovery: if disaster happen, follow the disaster recovery plan. At the beginning u have to back up all the data.
2. Backup Alternative: if one backup gone, still have another backup.
3. Recovery and Testing: when data is gone, the data have to be recover and testing it again.