Organization B has a formal system and a technical system, but no informal system.
1. What problems would arise in the organization? Why do you think so?
For an organization with only a formal system and a technical system, multiple problems may arise within the institution. It has been discovered that most insecurity cases involving information handling occur from the employees within. Many at times the employees are not aware that they are breaking company policies when they engage in informal communication in a public setting.
Problems that may arise include;
(i) The organization has no control over how much information or the sensitivity of the information being spread to the public. This poses a major threat as the company operates …show more content…
(ii) Failure by the company to allocate enough resources to technical and formal controls in proportion to its criticality.
(iii) Failure by the company to implement non-employee clauses in their employment program such that when an individual cease to be an employee, he/she cannot discuss information about the organization.
2. What breaches of security could occur as a result of the missing system? Give at least two examples of security breaches in this context.
An informal system is designed to ensure that the formal system works. People unconsciously engage in informal communication and might end up slipping information that is not meant for the public ear. This kind of information breach may aid certain individuals to bypass the underlying security mechanisms in the organization and access unauthorized data among other vulnerabilities and sensitive data.
Examples of breaches:
(i) Unauthorized access to sensitive data by un-cleared personnel. This poses major threats to the organization.
(ii) Un-cleared personnel my alter sensitive data and this causes inconsistency with the information held within the organization's
1. What problems would arise in the organization? Why do you think so?
For an organization with only a formal system and a technical system, multiple problems may arise within the institution. It has been discovered that most insecurity cases involving information handling occur from the employees within. Many at times the employees are not aware that they are breaking company policies when they engage in informal communication in a public setting.
Problems that may arise include;
(i) The organization has no control over how much information or the sensitivity of the information being spread to the public. This poses a major threat as the company operates …show more content…
(ii) Failure by the company to allocate enough resources to technical and formal controls in proportion to its criticality.
(iii) Failure by the company to implement non-employee clauses in their employment program such that when an individual cease to be an employee, he/she cannot discuss information about the organization.
2. What breaches of security could occur as a result of the missing system? Give at least two examples of security breaches in this context.
An informal system is designed to ensure that the formal system works. People unconsciously engage in informal communication and might end up slipping information that is not meant for the public ear. This kind of information breach may aid certain individuals to bypass the underlying security mechanisms in the organization and access unauthorized data among other vulnerabilities and sensitive data.
Examples of breaches:
(i) Unauthorized access to sensitive data by un-cleared personnel. This poses major threats to the organization.
(ii) Un-cleared personnel my alter sensitive data and this causes inconsistency with the information held within the organization's