Law and Policy Case Study Example | Topics and Well Written Essays - 750 words - 2

Law and Policy - Case Study ExampleInformation security in an organization involves ensuring that only citizenry with rights to read, change, broadcast and use it have addition to it. Different organizations have their own policies which guide the implementation of any new system. Policies in an organization need employees to stick with with them. Policies describe the rules and procedures for organization employ to comply with (Kiefer, Wu, Wilson & Sabett 2004). The need for tuition security is to primarily protect information from any unauthorized party. Several threats can set out to make information insecure. There is a need to ensure information is secure while ensuring that the policies and legal guidelines of the organization and the surrounding environment are adhered with (Kiefer, Wu, Wilson & Sabett 2004). organisation and organizational policies dictate the implementation of an information security system. The government policies are determined and issued to organiza tions depending on the type or kind of governing environment at heart the organizations operation. The government can be federal, state, local or tribal. The on the type of the business industry, the government policies act as a manikin for organizations administration or management to comply with in order to secure information and information systems (Straub, Goodman & Baskerville 2008). The need for government policies is to control and regulate the germane(predicate) mart in order to avoid conflicts which might arise among the industry players. The government policies give a procedure and guidelines for organizational governments to follow when implementing information security systems. scheme policies are devised by the organization as a guideline when implementing a new system. The policies are devised to ensure that laws, regulations and policies are complied to. The policies provide a framework for relevant restrictions and privileges for use of information for every empl oy. The organization policies strive to ensure that people and information are protected (Straub, Goodman & Baskerville 2008). This is normally accomplished by setting the rules for glide path of information for each and every employee use of information (Straub, Goodman & Baskerville 2008). Organizational policies assists the organization in complying with governmental policies in order to avoid violation of the latters policies. The policies include the rules which control the actions of information users and management. The policies include authorization privileges for use of information, need for probe, monitoring and investigation on the use of information. The policies also include information irreverence consequences, the information security baseline position by the organization. The policies restrict users from accessing what they are not supposed to in order to reduce risk and tampering of information (Straub, Goodman & Baskerville 2008). Organizations need information s ecurity policies in order to eradicate or minimize any looming risks associated with the use of information. The eminent risks can be unauthorized access to organization information either internally or externally. The policies set the laws required before the use of any information or implementation of