Situational Approaches: Consistency And Leadership

The security controls, policies, procedures, and guidelines were tested using the security testing plan that was evaluated by a security team to correct and report flaws in the system design. The only major flaw doesn’t relate to the network or the physical system itself, but instead policies and procedures seem to be at the highest risk. Policies and procedures explain that the chain of custody during media transportation and disposal should be logged and tracked impeccably. I believe putting stronger controls in place for the transportation of media would lower the risk of exposed confidentiality tremendously. I believe each device used to transport should be trackable at any given time, rather than just by logs.

In addition, the business data will be stored on these devices, being or not protected only by the individual security awareness of each employee. Therefore, it is likely that the confidentiality of corporate data will be compromised if an employee’s device is lost or stolen. Take Godiva, a chocolate manufacturer, as an example. On November 25, 2014, they notified employees of the company of a data breach when a Human Resources employee, who was traveling to retail sites, had a briefcase stolen from a car. The briefcase contained a laptop that had employee information on it.

Moreover, management should conduct privacy protocol training, so everyone is on the same page. The policy needs to state clearly the company’s rules about protecting customer’s personal data. Also, staff needs to know that there will be monitoring of phone calls and well as computer activity and emphasizes that per Muhl, (2003) “an employee’s personal use of an employer’s e-mail system and Internet access is not protected under the law.” Hence, organizations can encounter legal troubles due the inappropriate use of the system. The privacy of customer is important, and it needs protection.

An employee discovers a loophole in the security whereby the access to personnel records of other employees in the company is open. The personnel records include employee names, addresses, social security numbers, disciplinary actions, annual reviews, and salary information. Busy working on a time sensitive project, the IT administrator do not fix the problem for two weeks. While fixing the problem, it is discovered that several employees have accessed personnel records using the loophole.

Information that the company has on any service users, staff or other professionals (private contact numbers or information in client files relating to third party) is confidential information and should not be shared with anyone as it comes under the data protection act. All information regarding any staff member or service user that the company has is confidential information and cannot be shared outside of the company unless consent to share by the individual is provided. The company has many procedures that have to be followed in order to keep all this information confidential. Managers have locked cabinets with staff files and information such as contact details, supervision notes and emergency contact details, service users have their files and information stored in lockable cabinets and can only be accessed by staff. All information retaining to employees and service users remains

This also incorporates rules to protect the employee and the company. This also protects the computer systems and the networks from virus attacks, compromise of network. In order to better protect the PHI, we should also have an ‘email policy’. This policy makes sure the email system is used properly and users are alerted of what

The Information Security Manager reports in their capacity to the CEO. Company officers, executives, directors, employees, contractors and third party service providers cooperate and work with the Information Security Manager to ensure the protection of customer’s non-public information and Licensee’s Information Assets. Policies, such as Enterprise Antivirus Program, Network Access, Software Development Security Standards, Physical Security, Vendor Manangmenet Ativirus, Mobile Computing/Remote Access, Inromation Security Risk Assessment, Social Media, Data Loss Prevention, and Secuiryt Incident Response Policies have been implemented to protect customer’s non-public personal information and company Information

Often, the way we perceive something is altered or controlled by someone/something. Like mentioned earlier, we have our more ordinary influences, like social norms/expectations. But in many cases our perception is tailored. In Brave New World, the Government had complete control over the society's perception. The Government did this by only allowing people to see what they wanted them to see, and not really supporting personal perception.

Hacktivism The world is full of brilliant minds. Because of people’s fascination in discovering new things and ideas, technology is given birth. From then one, the ways of humanity has changed. One of the results brought about by technology is the existence of computers. Computers are now regarded as a necessity because of its various functions.

For operational purposes, the company collects and stores confidential information about their customers, employees, suppliers, and vendors. For purposes of their rewards program, the company collects sensitive and confidential consumer information. Although security measures and information technology systems have been put in place to ensure secure transmission and storage of confidential information, security breaches, computer viruses, or even human error can occur. Any of these events could cause data to be lost or stolen, as well as disclosed and used with malicious intent. Such occurrence could lead to litigation, fines, increased security costs, and damage to

A company’s database can be attacked from outside using so many methods hence information protection should take precedent in all decision making. Companies should take pride in making sure its database is protected from external breaches at all costs, otherwise the cost of tracking a breach is more expensive. Firstly, hacker are examples of a company been breached from outside, a hacker is a computer programmer who can at any given time combine his/her intelligence, curiosity, knowledge, creativity and smartness to do something as stupid as hacking for the fun of it or for ransom. Hackers meet their objectives by passing or interfering with the company’s computer’s security, software or database.

P8.4. a. Preventive controls such as authentication so anyone trying accessing the system has to provide credentials and verify their identity, encryption so sensitive information cannot be accessed, and have a strong internal environment that educates employees on security measures. Detective controls such as log analysis could be used to show determine if someone is trying to log on to a system and is unsuccessful. Corrective controls such as having an effective CIRT that can access the laptop and block or delete important information so the theft cannot access the laptop.

Transactional Leadership Frequently referred to as a managerial approach to leadership, the transactional leadership style is centered on improving efficiencies within an organization or team (McShane & Von Glinow, 2015). Leaders practicing the transactional approach focus on the details of the step by step processes and workflows using a reward and punishment system to encourage workgroup production (Dartey-Baah, 2015). As errors and inconsistent results are part of the expected norm, transactional leaders succumb to the belief that employees require ongoing monitoring and supervision to ensure compliance with the expected work practices. When used with an experienced high performing staff, the constant supervision and punitive nature of the transactional leadership style can be counterproductive, causing a decrease in production and satisfaction among some groups. In contrast, when used with newly formed production units, the transactional style has been known to improve employee engagement and response (Breevaart et al., 2014).

The leader will use different powers kept the follows on topic and engage to the goal. The leader/follower situation framework contains the elements: leader, follower, and situation. The framework lays out a way for leaders to learn their role because the leader need to gain power and hold

This essay will discuss the statement by William James, “-whilst part of what we perceive comes through our senses but another part (and it may be the larger part) always comes out of our head.” (James, 1890). This excerpt relates to the topic of perception, which can be defined as the acquisition and processing of sensory information to see, hear, taste, or feel objects, whilst guiding an organism’s actions with respect to those objects (Sekuler & Blake, 2002). Every theory of perception begins with the question of what features of the surrounding environment can be apprehended through direct pickup (Runeson et al. 2000). Is it only vague elemental cues that are available, and development and expansion through cognitive processes is required