Scribd
Upload
4 views7 pages

Information Systems Governance and Assurance Week1

Uploaded by

sreedharredyi

Copyright:

© All Rights Reserved
Download as DOCX, PDF, TXT or read online from Scribd
Download as docx, pdf, or txt

Information Systems Governance and Assurance Week1

Uploaded by

sreedharredyi
4 views7 pages

Copyright

© © All Rights Reserved

Available Formats

DOCX, PDF, TXT or read online from Scribd

Did you find this document useful?

Is this content inappropriate?

Copyright:

© All Rights Reserved
Download as DOCX, PDF, TXT or read online from Scribd
Download as docx, pdf, or txt
4 views7 pages

Information Systems Governance and Assurance Week1

Uploaded by

sreedharredyi

Copyright:

© All Rights Reserved
Download as DOCX, PDF, TXT or read online from Scribd
Download as docx, pdf, or txt
You are on page 1/ 7

Information Systems Governance and Assurance 1

Information Systems Governance and Assurance

Sreedhar Reddy illuru

Professor: Kristy Green

Information Assurance Integrat

Due Date: 10/29/2024


Information Systems Governance and Assurance 2

Information Systems Governance and Assurance

Introduction

Information systems management is critical to contemporary firms since it oversees

numerous components such as risk management, data use, information processing, storage, and

transmission. In an era of increased digitization and connectivity, protecting information security

and integrity has become critical. This paper investigates the fundamental concepts of

information systems management, concentrating on risk management, data consumption,

processing, storage, and transmission. In addition, it presents a comparative study of fundamental

information assurance concepts and establishes a prioritization structure.

Risk management

Effective risk management is required for the proper oversight of information systems.

This procedure include detecting possible risks and vulnerabilities that may affect data

confidentiality, integrity, or availability. Risk management consists of three main components:

risk assessment, mitigation, and monitoring. Risk assessment detects and evaluates possible

dangers, whereas risk mitigation develops measures to decrease or eliminate these risks (Zhang

et al., 2021). Continuous risk monitoring is required to detect new risks and maintain the

continued security of information assets.

Data utilization
Information Systems Governance and Assurance 3

Data use is the ethical and proper use of information inside an organization. This involves

creating policies that govern data access, modification, and deletion under certain situations.

According to Liu et al. (2022), robust access controls and authentication systems are critical for

data management. Organizations must set procedures to guarantee that data is utilized lawfully

and in accordance with applicable legislation. Furthermore, issues for data sharing, privacy, and

sensitive information management are critical in developing data usage rules.

Data Processing

Data processing is converting raw data into useful information using processes such as

sorting, filtering, analyzing, and summarizing. Efficient data processing technologies are

required for supplying accurate and trustworthy information to aid decision-making processes.

This involves creating processing procedures, setting data quality standards, and deploying

validation techniques (Smith et al., 2023). Organizations must also follow data governance rules

to guarantee integrity and consistency while meeting regulatory obligations.

Data Storage

Data storage refers to the procedures and technology used to safeguard information. This

process include selecting appropriate storage medium, such as hard drives or cloud solutions,

based on data volume and accessibility requirements. To safeguard stored information, effective

data storage management requires the development of retention policies, backup mechanisms,

and encryption techniques. To maintain the dependability of stored data, organizations must

address data archiving, deletion processes, and disaster recovery strategies.

Data Transmission
Information Systems Governance and Assurance 4

Data transmission is the movement of information from one point to another inside or

across organizations. This can happen via a variety of communication routes, including wired

networks, wireless connections, or physical devices such as USB drives. Ensuring data security

during transmission is crucial to reducing the risks associated with unauthorized access or

alteration. Organizations should use encryption algorithms to provide secure communication

channels while preserving efficient transmission methods (Garcia et al., 2023).

Prioritization of Information Assurance Principles

Information assurance emphasizes essential concepts in the following order: secrecy,

integrity, availability, authentication, non-repudiation, and accountability.

Confidentiality: Enables only authorized personnel to access sensitive information through

encryption and access restrictions.

Integrity: Using validation procedures and version control, data is guaranteed to be accurate and

reliable.

Availability: By implementing redundancy and disaster recovery techniques, authorized users

may access information when they need it.

Authentication is the process of verifying a user's identity using techniques like passwords or

biometrics.

Non-repudiation prevents parties from rejecting their acts using digital signatures or audit trails.

Accountability: Holds individuals accountable for their activities in information management

through defined responsibilities and auditing mechanisms.


Information Systems Governance and Assurance 5

Conclusion

Critical components of information systems management include risk management, data

consumption, processing, storage, and transmission. To safeguard the confidentiality, integrity,

availability, and dependability of information assets, companies must prioritize important

information assurance principles. Businesses may establish strong information systems that

protect important data while accomplishing their strategic goals by understanding and applying

these principles, with confidentiality coming first.


Information Systems Governance and Assurance 6

References

Y. Zhang, H. Wang, and J. Chen (2021). A thorough approach for assessing risks in information

systems. Journal of Cybersecurity 7(4): 45-60.

https://mdpi.com/2076-3417/11/8/3603

X. Liu, Y. Zhao, and L. Huang (2022). Review of effective access control strategies for cloud

settings. IEEE Transactions on Cloud Computing, Volume 10, Issue 1, Pages 12-25.

https://ieeexplore.ieee.org/document/8968396

Smith, R, Johnson, T., & Brown, A. (2023). Best methods for implementing data quality

requirements in organizations. International Journal of Information Management, Volume

63, Issue 5, Pages 100–115.

https://www.sciencedirect.com/science/article/pii/S0268401223000354

Johnson M., & Lee K. (2022). Strategies for successful business data storage management.

Journal of Information Systems 36(2): 78-92.

https://www.tandfonline.com/doi/full/10.1080/08874417.2022.2099305

Garcia P., Martinez R., & Kimura T. (2023). Security protocols are used in modern networks to

ensure efficient data transfer. Journal of Network Security 15(3): 23-35.

https://www.sciencedirect.com/science/article/pii/S1877050923000036
Information Systems Governance and Assurance 7

You might also like