Information Security Assurance

Assignment:

1. What is an Information Security Assurance?
   The management and protection of knowledge, information and data. Information Security assurance which focuses on ensuring the availability, integrity, authentication, confidentiality and non-repudiation of information and system.

2 Components Information Security Assurance?
•People- Organization staff
•Process- Business Process
•Technology- Technology used by organisation

1. Differentiate the certification programs to Common body language?
   -Learn the range of nonverbal behaviours tha compromise the body language. certification program is a defined set of components or training programs offered by your organization to members to prove that they have achieved a measured level of knowledge within a designated timeline.

2. Differentiate the Governance and Risk management?
   -Governance, or corporate governance, is the overall system of rules, practices, and standards that guide a business. Risk, or enterprise risk management, is the process of identifying potential hazards to the business and acting to reduce or eliminate their financial impact.

3. Different between Security Architecture to Design?
   -Security Architecture is assign of resources and components of a security system that allow it to function. Design refers to the techniques and methods that position those hardware and software elements to facilitate security.

6.Different between Business Continuity Planning to D-i-s-a-s-t-e-r Recovery Planning?
-Business Continuity Planning is a strategy. It ensures continuity of operations with minimal service outrage or downtime. Disaster recovery plan can restore data and critical applications in the event of your systems are destroyed when disaster strikes. Losing all or some of your data could halt your operations.

1. What is Physical Security Control?
   -Physical Security Control is the implementation of security measures in a defined structure used to deter or prevent unauthorized acess to sensitive material.

2. What is Operations Security?
   -Operation Security is a process that identifies critical information to determine if friendly actions can be observed by enemy intelligence, determines if information obtained by adversaries could be interpreted to be useful to them, and then executes selected measures that eliminate or reduce adversary exploitation of friendly critical information.

3. What is Law?
   -A binding custom or practice of a community : a rule of conduct or action prescribed (see PRESCRIBE sense 1a) or formally recognized as binding or enforced by a controlling authority.

4. What is Investigation?
   -To observe or study by close examination and systematic inquiry.

5. What is Ethics?
   -The discipline dealing with what is good and bad and with moral duty and obligation.

6. What is Information Security?
   -The quality or state of being secure to be free from danger.
   -Security is achieve using several stratigies.
   -Security is achieve using several stratigies simultaneously or used in combination with one another.
   -Security is recognize as essential to protect vital processes and the systems that provide those processes.
   -Security is not something you buy, it is something you do.