Information Security

1. How should threat identification be performed within an organization, should every threat be planned for. Why or why not?

Threat identification should be performed systematically within an organization. The goal of threat identification is to establish vulnerabilities within the IT system resulting from insufficient security controls (Gupta & Sharma, 2010). When an organization is performing threat identification, all the team members should all be involved. The process must also be well-documented and recorded. The team should have the skills, knowledge, and expertise needed to identify possible threats and vulnerabilities (Whitman & Mattord, 2010). As part of threat identification, the team should establish threat sources and include them during risk assessment (Virtue & Rainey, 2015). It must not be repeated during an individual risk assessment when information is classified as a threat during the identification process. After the threats are identified, they are classified in terms of high, medium, and low impact. Risks classified as high likelihood and high impact have high occurrence rates, and necessary measures must be put into place.

Threats are either planned or unplanned. In most cases, security threats are scheduled because organizations undertake risk assessments early in advance and point out possible security threats. Therefore, security threats are planned because organizations, when identifying threats, take preemptive actions early in advance.

2. Which is more important to the information asset classification scheme: that it be comprehensive or that it be mutually exclusive? In your opinion why?

Information Asset classification entails the categorization of information using a level of sensitivity. A comprehensive is more critical than mutually exclusive to the information asset

PART I 1. How should threat identification be performed within an...