During the last SLP report on information security management the concerns of the organization VPN were discussed. However, in this module we would like to use a big brush and with the use of wide strokes examine the impact of continuous monitoring pertaining to information security systems. While the VPN issues are important it actually points to a bigger concern for the organization. This article will focus on two areas of information security system which are “continuous monitoring” and “security awareness”. It is widely accepted that in order to fix a problem there first must be acknowledgement that a problem exist. This is certainly not the case with this organization in which we speak of. It could be seen as the blind leading the blind when it comes to various areas of information security. So, then the question is how can one address the challenges and still build a proper information security program considering the concepts of continuous monitoring and security awareness.
The Issue
Looking …show more content…
The solution of the problem of lacking security awareness is contained in employing a sound continuous monitoring program which is the second problem. Therefore, in one process both security system problems are solved. One of the many benefits found in the concept of continuous monitoring is that an organization must ensure that security measures meet the regulatory requirements. The reporting procedure also points to ensuring the information security system is covered on the enterprising level. This means that each entity of the organization has a role in the information security system program. The bottom line is that having a system that is unchecked is just as bad as having one that does not work properly. The key solution for the organization is to ensure that through the system of continuous monitoring that the organization spreads security