OCU ISCAP A Week 01 Lesson 02 Discussion

Viewing 1 reply thread
  • Author
    • #91477
      Manny Varela

      Explain how information security management plays a key role in the success of a company.  Be sure to discuss at least 3 of the following:  challenges, key factors, goals, expectations, components, controls, the ownership chain, policy, maintenance, human resources, and the Triad. Use at least 3 terms from this chapter making sure to present the definition as well.  Use the text and video in this discussion response.

    • #91742
      Aaron Elliott

      Information security management is valuable to a company since security needs to be owned and well-structured to be effective, and an effective security protects important business assets. The AIC Triad policy ensures three measurable understandings of security, these features include availability of assets, be it all the time or at specific times, as determined by management. Integrity ensures that the asset is not tampered or altered. Confidential concept ensures that data is not compromised or leaked to bad actors. The triad is a good example of core values of security.

      Human resources aids in security management by evaluating and onboarding one of the biggest risks to security, which are internal associates. By creating policy and accountability for failures to uphold security, human resources give security teams options to handle bad actors. Also, the screening of people during interviews helps maintain security.

      Ownership is important to security as someone needs to own the security program or nothing will get done. Top management needs to agree with what needs protected and assign a team to own the protection of those assets. A chain of different levels of responsibility is constructed from management down to the user level with access controls applied and duties.

      • #91816

        Hi Aaron. This is so true. Nothing will get done if ownership isn’t there.

Viewing 1 reply thread
  • You must be logged in to reply to this topic.


Please Note:

The support ticket system is for technical questions and post-sale issues.


If you have pre-sale questions please use our chat feature or email .

Cybersecurity Certifications for Today's INFOSEC Careers

Mile2 Cybersecurity Certifications is a world-leader in providing accredited education, training, and certifications for INFOSEC professionals. We strive to deliver the best course ware, the strongest Cyber Range, and the most user-friendly exam system in the market.


Our training courses follow our role-based Certification Roadmap. Plus, many of our classes include hands-on skill development in our Cyber Range.  We train students in penetration testing,disaster recovery, incident handling, and network forensics.  Additionally, our Information Assurance training certification meets military, government, private sector and institutional specifications.  



We've developed training for...

Canada Army Navy Airforce

The Canadian Department of National Defense


The United States Air Force

Defense Logistics Agency

A United States Counterintelligence Agency

Texas Workforce Commission

Texas Workforce Commission

error: Alert: Content is protected !!