Scribd Logo
Upload

Welcome to Scribd!

  • 36 views

    Principles of Security

    Uploaded by

    hacker hacker
    A security officer noticed two security incidents at their company: a manager walked out with papers and an outsider accessed company information and blueprints. The document lists 12 categories of security threats a company may face, such as human error, intellectual property theft, espionage, sabotage, and software or hardware errors. It advises that management must be informed of threats and risks in order to effectively protect information through policy, training, and technology controls.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Principles of Security

    Uploaded by

    hacker hacker
    36 views1 page
    A security officer noticed two security incidents at their company: a manager walked out with papers and an outsider accessed company information and blueprints. The document lists 12 categories of security threats a company may face, such as human error, intellectual property theft, espionage, sabotage, and software or hardware errors. It advises that management must be informed of threats and risks in order to effectively protect information through policy, training, and technology controls.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    A security officer noticed two security incidents at their company: a manager walked out with papers and an outsider accessed company information and blueprints. The document lists 12 categories of security threats a company may face, such as human error, intellectual property theft, espionage, sabotage, and software or hardware errors. It advises that management must be informed of threats and risks in order to effectively protect information through policy, training, and technology controls.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    36 views1 page

    Principles of Security

    Uploaded by

    hacker hacker
    A security officer noticed two security incidents at their company: a manager walked out with papers and an outsider accessed company information and blueprints. The document lists 12 categories of security threats a company may face, such as human error, intellectual property theft, espionage, sabotage, and software or hardware errors. It advises that management must be informed of threats and risks in order to effectively protect information through policy, training, and technology controls.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 1

    Principles of Security - Activity

    You are a security officer working for a medium-sized research company. You have
    been assigned to guard the facility. Two incidents occur. The first, a well-known
    manager walks out with a box of papers. The second, someone believed to be an
    outsider assesses the company information and goes away with the company blue
    prints for the next generation product.

    1. Briefly list all security gaps, vulnerabilities, threats, risks, and exploits.

    Management must be informed of the various kinds of threats facing the organization

    A threat is an object, person, or other entity that represents a constant danger to an asset

    By examining each threat category in turn, management effectively protects its information through
    policy, education and training, and technology controls

    1. Potential Acts of Human Error or Failure

    Accidents, employee mistakes

    2. Compromises to Intellectual Property

    3. Deliberate Acts of Espionage or Trespass

    4. Deliberate Acts of Information Extortion

    5. Deliberate Acts of Sabotage or Vandalism

    6. Deliberate Acts of Theft

    7. Deliberate Software Attacks

    8. Forces of Nature

    9. Potential Deviations in Quality of Service from Service Providers

    10. Technical Hardware Failures or Errors

    11. Technical Software Failures or Errors

    12. Technological Obsolescence

    2. Describe how these incidents can be overcome

    You might also like