Professional Documents
Culture Documents
Assessment Two Syber Cesurity Training/Compliance Department By:Dalia Alkhateeb
Assessment Two Syber Cesurity Training/Compliance Department By:Dalia Alkhateeb
Assessment two
SYBER CESURITY TRAINING/COMPLIANCE
DEPARTMENT
BY:DALIA ALKHATEEB
Exercise one:
There are many reasons to adopt ISO / IEC27001 in the e-
scooter company, including we found that its mobile
applications contain security flaws that put users' personal and
financial data at risk, therefore controls must be implemented
that address the specific risks they face to maintain the
confidentiality, integrity and availability of information assets.
Hackers can steal electric scooters and modifying the main
panels of bicycles by changing their custom programs and
preventing servers from connecting to bicycles, which made
these scooters their own, which leads to huge financial losses.
Hacker can modify the information to harm the company's
reputation when a strong security system is implemented that
makes us avoid many of the risks mentioned.
Exercise three:
The main goal of the company e-Scooter is the development
and growth in the work by creating their own application that is
easy to use and simplified, improving the user interface and
providing new features. Therefore, there must be instructions
for information security controls and the protection of
personally identifiable information by using the ISO / IEC27001
standard, and dealing with companies Reliable and eliminate
some features that could be exploited to cause harm and set
rules to prevent unauthorized access to data and develop
electronic payment services to expand their services throughout
the continental United States.
There are two sources for the company's compliance
requirements: 1. The Quality Assurance Team that reviews
application codes 2. The software development team that
accesses the basic code for previous versions of the application
as well as the current version code to review the old code when
adding new features.
The most important information assets for the company are
1. the blockchain server because it contains many important
information such as location, battery level, time, end user, etc.
2. Developers to improve the user interface in the application
and create a smooth and easy experience for end users and
provide them with many new features for the special
application Company