1. Given their respective jobs within the company, discuss how Fred, Gladys, and Charlie might perceive the scope and scale of the new information security effort? How might each of them measure success?
2. Discuss how the various steps of the SecSDLC life cycle model would apply to the new systems security effort at SLS and what you might expect to occur at each step.
3. Explain how the system security plan serves business needs while maintaining the confidentiality, integrity, and availability of system resources.
4. Which of the threats discussed in Chapter 2 of your text should receive Charlie's attention early in his planning process.
5. Briefly discuss the key laws and ethical considerations that shape the field of information security and explain how Charlie, Gladys, and Fred should account for legal and ethical concerns within the organization's information security plan.
Sample Solution