SPG Unit 1-1

Maximizing business profits

Protection of information and its characteristics like confidentiality, integrity, and availability

Developing new technologies

Increasing IT infrastructure spending

Physical security

Operations security

Economic security

Communications security

Protecting the organization’s information assets

Supporting IT needs of the organization

Articulating policies, communicating objectives, and allocating resources

Managing the data center

Financial models for IT security investments

A 3D model addressing information characteristics, location, and security control categories

The design of computer networks

Employee roles in an organization

IT community

Information security community

General business community

Executive management

Network security is unrelated to cybersecurity.

Cybersecurity is a subset of network security.

Network security is a subset of cybersecurity.

Both are completely independent fields.

It is outdated and irrelevant to modern InfoSec practices.

It does not address guidelines and policies for implementing controls.

It does not consider technology as a dimension.

It focuses only on financial security.

Technology, management, and customers

IT, InfoSec, and the general business community

Marketing, IT, and HR

IT, sales, and executive management

Achieving maximum productivity

Being free from danger, risk of loss, or unwanted modification

Implementing the latest technology

Limiting access to all information

IT systems have become cheaper.

Technology now permeates every facet of business environments.

Employees lack the technical knowledge required.

Managers focus only on financial performance.