Information technology director security plan - Coursework Example

Security Plan Security is not primarily a technical or technological issue but is a management issue as the incidents of lax security and bank failures due to redundancies and other management errors have increased. For instance, even if a company has implemented a classy application to manage customers’ identities, management failure to follow on-board and off-board employees may lead to many backdoor security threats. The continuous redundancies are another threat that arises from poor management and endangers banks and other financial institutions.

Another example is that poor management of data access control, when the authorized person loses authorization, can lead to data insecurity. Security professionals report such security breaches to senior management staff and the HR department. If I was an information technology director, I would: Ensure the protection and management of information technology resources. Ensure access control. Write down a formal security plan with all security vulnerabilities, authorizations and the security plan.

Arrange a project team which would keep a check on security. Ensure purchase and implementation of virus protection, spam-filtering software, firewalls, updates, passwords and physical security. Keep and review regular backup of data. Data should be stored on the server or copied before making backups. A complete backup should go off the location regularly. Keep a check on network intrusion and data theft. Log serial numbers. Lock all networks and servers in a secured room. Provide cheap printers to the HR department and the security directors to take printouts of important data regularly.