Project 2: Information Security Standards
Information security and risk handling operations are two of the greatest concerns of business management in the modern world (Istikoma, Bt Fakhri, Qurat-ul-Ain, & Ibrahim, 2015). Increasingly, businesses are beginning to regard information security departments as integral and influential entities that can enhance or destroy the business as a whole (Istikoma et al, 2015). The Department of Health and Human Services (HHS) has adopted this view as it pertains to its own strategic planning and development of its information security plan. In assessing the information security program of the HHS which focuses heavily upon privacy incident reporting, prevention, detection, and removal of malware, as well as security for remote access it can be inferred that the standards outlined in FIPS PUB 200 and ISO 27001.