Accession Number : AD1027014

Title :   Auditing Organizational Security

Descriptive Note : Journal Article

Corporate Author : Defense Acquisition University Fort Belvoir United States

Personal Author(s) : Razzetti,Eugine A

Full Text :

Report Date : 01 Jan 2017

Pagination or Media Count : 6

Abstract : Managing organizational security is no different from managing any other of the commands missions. Establish your policies, goals and risk parameters; implement, train, measure and benchmark them. And then audit, audit, audit. Today, more than ever, Organizational Security is an essential component of a robust, responsive military command. And commands that cannot execute their operations in a self-imposed and self-monitored secure environment may, at best, cease to be effective or, at worst, cease to exist. This is the same, certain fate that befalls private enterprises that cannot maintain operational effectiveness, profitability or product superiorityexcept it happens faster in the private sector. Organizations must harden their operations to protect them from either incidental or deliberate attack. Internal (or self-) auditing is essential to the hardening process. Cybersecurity, the concept most frequently promoted these days, is a body of technologies, processes and practices designed to protect networks, computers, programs and data from attack, damage or unauthorized access. Is cybersecurity important and necessary? Of course! However, cybersecurity should not be regarded as independent or standing alone. Cybersecurity is an indispensable element of organizational security, which is the subject of this article.

Descriptors :   information systems , computer security , vulnerability , program management , risk management , auditing , military organizations , data management , training

Subject Categories : Administration and Management

Distribution Statement : APPROVED FOR PUBLIC RELEASE