Hello and welcome back to Sai Berries. 2019. Cop Tia Security Plus Certification Preparation Course.
We're going to continue our discussion off Marginal of five and the top of discussions domain five Risk management.
this is a continuation from the previous video, where we begin the process of highlighting 5.1 with simply states explain the importance of policies, plans and procedures. Relate to organization of security
here again under objectives which encompasses this particular objective.
We go began by first taking a look at role base awareness training
and some topics which we're gonna highlight is the data owner
system administrator system owner, user,
Indy A or non disclosure agreement on boarding,
acceptable use policies and rules of behavior, and, lastly, adverse actions. So, without further, let's begin by taking a look at Roe Base awareness training
training you provide to your users should be customized to their job roles.
In this presentation, you learn about the various corporate and user rose, associate it with an application instant,
so without further, let's take a look at role base of wearing his training.
The 1st 1 holiday, it's called your data owner.
The data owner is an individual who is accountable for a data asset.
This is typically an executable that goes to the department teams
or business unit. There owns a data asset.
Then we have our system administrator. Assistant at Man is a person who is responsible for the upkeep, configuration and reliable operation computer system, especially multi user computers such as your servers.
Then we have our system owner. The infants and system owner is an organizational official responsible for the procurement,
development, integration, modification,
operation and maintenance and disposal of information system.
A user is a person or thing that uses something such as a place, facility, product or machine.
We have a privileged user, which again is a private account is a user account that has more privileged than or Mary. Users
continue on taking a look at executive user. This is a business executive is a person responsible for running
an organization, although the exact nature the role varies depending on the organization.
A non disclosure agreement India is a legal contract between two or more parties that signifies a calm potential relationship exists between them.
The term or boarding is the action or prices of integrating a new employees into an organization or familiarise a new customer or client with one's products or services.
An adverse action is a native action report to an individual or business was Julie pertains to the denial of credit, employment, insurance, other benefits,
continuing education courses that let you develop your knowledge and skills in a specific area.
Except I use policy or rules of behavior is a simple uses. Posit or fair use policy is in fact, a set of rules applied by their owner, creator order, administrator of a network website, or service. That risk rips the ways in which the network
Web study system may be used and sets guidelines as to how it should be used.
An adverse action is any inappropriate behavior that employees engaged in that violates the ownership rules and regulations and a policy procedures. Additionally, any adverse action that can potentially affect its business operation
up to include the business reputation, this action to be described in that simply use policy or a U. P or your security policy.
This brings us to a brand new objective which encompasses is 5.1, where we had to explain the importance of policies, plans and procedures relate to your organization of security. Won't take a look at general security policies. Such a social media network, an application and lastly email
turn our attention toward the discussion general security policies that general security policies are developed to address security concerns regarding all electron information within an organization.
We have our social media networks and application. A social media policy also called a social network, and policy is a corporate conduct. Other words. 1/4 conduct that provides guidelines for employees who post content on the Internet, either as part of the job
or as a private person.
You're person email basically is an effective personnel,
and open is this email policy would in fact encouraged positive, productive communication while protecting the company from legal liability, reputation, damage and security breaches.
At this point time, we have a post assessment question, which in fact, is a true off false statement,
and it reads as follows.
Separates of duties can best be described as a concept of having more than one person required to complete a task.
Is this true or false?
In this case, if you said let the true you're absolutely correct
at this point time. We have a key takeaways from this particular video presentation, and they are as follows.
We learned that a data owner is an individual who is accountable for a data asset. This is typically an executable that goes to department, team or business unit that owns a data asset.
We learned it. A system administrator or system at men is a person who is responsible for the upkeep, configuration and reliable operation of your computer systems, especially your multi user computers such as your servers.
We learned that a system owner basic, this information system owner is an organization official response for the procurement, development, integration, modification, operation, maintenance and disposal often information system.
We learned that a user is a person or thing that you this something such as a place,
facility, product or machine.
We learned that a previous user, which is basically a private account, is a user counter, has more privileges than ordinary users.
In our upcoming video, we'll be taking a look at 5.2 objective what we have to summarize Bennis impact analysis concepts, and again, I look forward to seeing, you know, very next video