1

Information security management involves challenges that are essentially unique due to the combination of technical and organizational constraints. Identify two such challenges and discuss in depth how these can affect the way information security management is performed within an organization.

I have an essay to write on the above. Can anyone spare some ideas on how I can tackle this? In the terms of technical and organizational constraints?

I think technical limitation refers to things that you have to do that are system based, but that you are unable to achieve due to some reason?

Organisation should be like, for example, your CEO requesting for information that he has no access to and demands that he has access granted?

Please enlighten me if I'm wrong.

S.L. Barth
  • 5,486
  • 8
  • 38
  • 47
Jonovan
  • 11
  • 1
  • 1
    We don't do your homework around here. – Lucas Kauffman Dec 09 '16 at 06:54
  • I'm voting to close this question as off-topic because homework – Lucas Kauffman Dec 09 '16 at 06:55
  • I understand that Lucas, not asking for help to write on my behalf. I just need some idea on what does it mean by technical and organizational constraints? Like maybe an example so i have an idea. – Jonovan Dec 09 '16 at 06:57
  • 1
    @LucasKauffman Homework questions are perfectly ok here *if the OP shows that they understand the question and provides their attempt to answer it.* – schroeder Dec 09 '16 at 07:52
  • 2
    @jonovan This question is too undefined. Can you refine it and provide your own thoughts? – schroeder Dec 09 '16 at 07:52
  • Agree. @Jonovan, if you could break out some ideas you've already had we might be able to provide input in terms of our experience. – Julian Knight Dec 09 '16 at 08:06
  • From my point of view, i think technical limitation refers to the something that you have to do that is system base but unable to achieve due to some reason? Organisation should be like, for example, your CEO request for information that he has no access to and demands that he has access granted? Please enlighten me if i'm wrong. Many thanks for all that have replied – Jonovan Dec 09 '16 at 08:10
  • I just need a correct example of the 2 above to get me started. I don't wish to be writing on something when i got the concept wrong. Anyone who can provide me with an example of the above would be great so i know if i am on the right track. – Jonovan Dec 09 '16 at 08:25
  • I have edited your comment into the question. I think the question is now specific enough to keep it open. – S.L. Barth Dec 09 '16 at 08:42

1 Answers1

0

In my opinion the main problem is that most of the technical solutions reduce the comfort or efficiency of the users. So you have a strong organisational support from the top-level managment. You can only reach good acceptance of information security if all users understand the importance of information security.

mucki
  • 1
  • 3