Ethical Issues In Information Security

Marques Underwood INSS 391 Security and the Future With the transition of companies leaning towards advancing through the usage of big data, cybersecurity and the trends in technology are creating an increase in threats. The goal is to protect the databases and devices used at these companies before they are hacked and compromised for unwanted reasons. We’ll see the general concerns with security in the IT field, and steps that specific companies are taking to prevent and adopt to the landscape of the future in security. Devices are increasing at a rapid pace these days, meaning the more data is being expanding.

FISMA act gives a great importance to risk based rules that helps in defining cost-effective security solutions to the organization. FISMA standard should be executed with the help of senior security officials, chief information security officers and security director who can help to conduct different annual reviews of the organization`s information security program and produce the report in front of management about its findings. The management will use this data in order to identify different security loopholes and apply the proper security measures in order to make the organization security compliant. It`s

APPENDIX C HIM 6018 – E-HEALTHCARE ETHICS – CASE STUDY ACTIVITIES TEMPLATE Name: Bayo Oshunlalu Unit #: 7 Unit Title: New Kid on the Block Qu. 1. How does the American Information Management Association Code of Ethics address the situations presented in this case? Insert your response to Qu. 1. ………… ……………… AHIMA addresses this particular case by compelling HIM professionals to ensure that their workplace environment is consistence and promotes compliance with the AHIMA code of ethics, and engaging in activities that deters organization’s behavior that will violate compliance of federal, state and professional code of ethics.

Nowadays, “privacy” is becoming a popular conversation topic. Many people believe that if they do not do anything wrong in the face of technology and security, then they have nothing to hide. Professor Daniel J. Solove of George Washington University Law School, an internationally known expert in privacy law, wrote the article Why Privacy Matters Even if You Have ‘Nothing to Hide’, published in The Chronicle of Higher Education in May of 2011. Solove explains what privacy is and the value of privacy, and he insists that the ‘nothing to hide’ argument is wrong in this article. In the article, “Why Privacy Matters Even if You Have ‘Nothing to Hide’”, Daniel J. Solove uses ethos, pathos, and logos effectively by using strong sources, using

Acceptable Use Policy Policy Statement: This policy covers Internet/Intranet-related systems, including but not limited to computer equipment, software, operating systems, storage media, are the property of ABC Technologies. These systems are to be used for business purposes only. Purpose/Objectives:

• Deployment of intrusion detection system (IDS): as cited by Carasik and Shinder (2003), An Intrusion Detection System (IDS) is the high-tech equivalent of a burglar alarm—a burglar alarm configured to monitor access points, hostile activities, and known intruders. Though there was a firewall in the network architecture, but the present of a network intrusion detection device prevents unauthorized traffic to the network hosts. • Establishing an information security management system (ISMS): According to Iso.org, (2014), An ISMS is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process.

Cichonski, P., Millar, T., Grance, T., & Scarfone, K. (2013). Computer security incident handling guide. International Journal of Computer Research, 20(4), 459. Wang, P., González, M. C., Menezes, R., & Barabási, A. L. (2013).

The Information Security Manager reports in their capacity to the CEO. Company officers, executives, directors, employees, contractors and third party service providers cooperate and work with the Information Security Manager to ensure the protection of customer’s non-public information and Licensee’s Information Assets. Policies, such as Enterprise Antivirus Program, Network Access, Software Development Security Standards, Physical Security, Vendor Manangmenet Ativirus, Mobile Computing/Remote Access, Inromation Security Risk Assessment, Social Media, Data Loss Prevention, and Secuiryt Incident Response Policies have been implemented to protect customer’s non-public personal information and company Information

For operational purposes, the company collects and stores confidential information about their customers, employees, suppliers, and vendors. For purposes of their rewards program, the company collects sensitive and confidential consumer information. Although security measures and information technology systems have been put in place to ensure secure transmission and storage of confidential information, security breaches, computer viruses, or even human error can occur. Any of these events could cause data to be lost or stolen, as well as disclosed and used with malicious intent. Such occurrence could lead to litigation, fines, increased security costs, and damage to

Ethical issues The different ethical issues are as following: - Ethical Hacking: With hacking one of the ethical issue which comes is “ethical hacking.” For the sake of informing the content owner they try to compromise computer systems they are nothing but ethical hackers or white hat hackers. So it becomes possible for them to fix the problem. So there is no ethical issue, since the target company is aware of and is paying for this service, some security professionals do this for a living.

First, before I start this analysis, I would like to provide definitions of the theories and perspective, I am about to mention in this paper. Starting with the first dominant ethical theory, utilitarianism that states that your set of actions right or wrong evaluated through morality that can produce their own consequences. For example, the moral theory focuses on the consequences of the action of the United States dropping the atomic bomb on Hiroshima and Nagasaki during World War 2. Henceforth, the action, as a result, the United States dropping the atomic bomb nearly wiped out Japanese towns ' populations entirely causing to end Japan’s quest for world domination. Next, the second dominant ethical theory, deontology that states the right

Though case law is splinted, employees tend not to have genuine privacy expectations in connection with the companys’ computer which store data. During 11th September 2001 when there was a trade canter attack in the pentagon and general in the whole world, the president came up with electronic surveillance policy to strengthen the searches program. This patriotic act was mainly created to increase the capability of enforcement of law thus searching telephonic communication, emails and any financial record would be easier to access. The law permitted   search warranty which permitted access to voicemails hence obtaining the relevant information needed. The procedures of getting such warranties were made minimal hence making it very easier to obtain them.

07 Code of Ethics Acceptable Use of Electronic Mail The e-mail system is provided for the use of staff and other authorized users for corporate related business.

Review of Literature Unethical behavior can tarnish a company’s image and reputation. If a company is unethical, they may have to spend additional money to improve their public image, as well as gain back as many customers as possible. The reason I have chosen to use articles that are quite a few years old and that are not so recent is because I feel that they are very good examples of what I am trying to prove in the terms of ethical behaviour within companies and these specific articles relate well to my chosen topic.

Ethical and Social Issues faced by Management Information System Technology can be a double-edged sword. It can be the origin of many advantages but it can also produce latest opportunities for invading your privacy, and enabling the reckless use of that information in a range of decisions about you. Ethics refers to the principles of right and wrong that individuals, acting as free moral agents, use to make choices to guide their behaviors. 4.1 Five Moral Dimensions of the Information Age The major ethical, social, and political issues raised by information systems include the following moral dimensions: • Information rights and obligations: What information rights do individuals and organizations possess with respect to themselves?