case study

comments

Discussion-1 100 words comment.

IT Governance gives a structure to applying IT procedure to business improvement. Through actualizing a proper framework, associations can create quantifiable outcomes for accomplishing their targets and objectives. In reality, a conventional program talks about the support’s advantages, just as the specialist’s needs, and the arrangements they follow (Jabbari & Motlagh, 2012). Today, associations are mindful, among others, to different headings that handle secret information insurance, cash related liability, programming the board, and calamity recuperation. We are additionally under tension from creditors, accomplices and purchasers the same. Most associations lead an organized IT Governance program which gives an arrangement of best practices and controls to guarantee that they meet inward and outer prerequisites (Jabbari & Motlagh, 2012).

           Network security control is a system intended to ensure a network and the information coursing through it from dangers, for example, unapproved get to, abuse, disappointment, change, demolition or wrong divulgence, while permitting affirmed machines, clients and applications to complete their exercises (Leal, 2016). The reason behind this International Standard is to give extensive direction on the security parts of information network frameworks the executives, activity, and use. Those elements inside an association, who oversee information assurance by and wide, and framework security explicitly, will reserve the option to change the material right now to meet their preconditions (Leal, 2016).

            Like any ISO management framework, ISO 27001 depends on the PDCA model, which fits well with an approach of managing the network security (arranging, execution, testing, and network control modification). Network security can likewise utilize other ISO 27002 measures to improve its adequacy, for example, get to control strategy, change the board, malware assurance and specialized helplessness the board. Such standards are not just about assisting with keeping up the insurance of data yet in addition assisting with finding and carry guilty parties to equity. Certification as per this standard shows current customers and potential new customers that the business takes security of information significantly (Leal, 2016).

Discussion-2 100 words comment.

The importance of IT governance is increasing on a regular basis in the organizations. With the increasingly large amount of data, there are different types of complexities which arise in IT. For that, IT governance becomes an important factor that an organization must drive. There is a relationship between IT governance and effective value creation in IT which must be driven to achieve excellence in the field of IT. Further the organization works in a competitive environment. There are a large number of IT firms that use the latest technologies and make best use of IT. So, the process optimizations drive the need for IT governance (Pearlson, Saunders, & Galletta, 2020).

These have led to different types of network security measures that are taken by different organizations in ensuring that network securities are not compromised. Network security standards provide different ways and means to detect and correct network compromises. There are different kinds of network compromises that can happen at a workplace. These compromises lead to organizations data being compromised and thus causing substantial harm to the organization. For this, the organization must make sure that they are able to drive IT governance in the best way possible (Pearlson, Saunders, & Galletta, 2020). IT governance combined with network security standards leads organizations to determine the proven standards with respect to IT and network security that must be followed. Following such standards in IT implies making use of the IT resources in the best way possible. Whenever there are IT resources, the same must be checked against any kind of malware or other attacks on a regular basis. Such need has been driven by large organizations and it has been recommended that all organizations start to follow IT and IT governance in the various things that they do (Smallwood, 2014).

Most of the companies are having great advantages and benefits by implementing the IT Governance models and it will support organizational growth and reduce risk factors and vulnerabilities.

ISO Affect the network security standards

International Standards for organizations produce the regulations and policies to organizations, companies, and industries to follow the right and legitimate protocols to achieve organization goals and produce the quality of products and services. It will produce the required technical standards and product standards for the organization so that it will support organization values and growth (Pearlson, Saunders, & Galletta, 2020).

ISO/IEC 27033-1

It will produce the regulation model for administration and operational security systems. Security standards for every organization is mandatory to secure organization network communication and database management systems (Smallwood, 2020). Security systems are always providing the best solution organization data protections and multilevel securities will increase the protection levels.

ISO/IEC 27033-2

It is will produce the right quality systems and associated business models for industries so that the company can follow and implement the right security systems to protect customer and organization data.

ISO/IEC 27033-1

It will characterize specific regulations, models, and plans for community systems, workplace environment, and network engineer system security.