CSIA 360 UMGC Project 5: Compare / Contrast Two State Government IT Security Policies

CSIA 360 UMGC Project 5: Compare / Contrast Two State Government IT Security Policies

Cybersecurity in Government Organizations: Compare / Contrast Two State Government IT Security Policies

For this research-based report, you will perform a comparative analysis that examines the strengths and weaknesses of two existing IT Security Policies published by state governments (agencies and offices of the executive branch under the leadership of the state governors). You may choose any two states’ IT Security Policies from the list published by the Multi-State Information Sharing and Analysis Center (MSISAC). (See item #1 under Research.)

Your analysis must include consideration of best practices and other recommendations for improving cybersecurity for state government information technology operations (state agencies and offices). Your paper should also address the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices?

ORDER THE SOLUTION NOW!

“Place your order now for any assignment and have exceptional work written by our team of experts, guaranteeing you A+ results.”

Get Your Same Assignment Done from Scratch.

Click HERE to order!

Research:

  1. Select two state government IT Security Policies from the list below.
State IT Security Policy
Illinois https://www2.illinois.gov/sites/doit/support/policies/Documents/Overarching%20Enterprise%20Information%20Security%20Policy.pdf
Massachusetts https://www.mass.gov/policy-advisory/enterprise-information-security-policy
Michigan https://www.michigan.gov/documents/dmb/1340_193162_7.pdf
Minnesota https://mn.gov/mnit/government/policies/security/#/list/appId//filterType//filterValue//page/1/sort//order/
Nebraska https://nitc.nebraska.gov/standards/8-Chapter.pdf
North Carolina https://files.nc.gov/ncdit/documents/Statewide_Policies/Statewide-Information_Security_Manual.pdf
Oklahoma https://www.ok.gov/cio/documents/InfoSecPPG.pdf
South Dakota https://bit.sd.gov/docs/Information%20Technology%20Security%20Policy%20-%20Contractor.pdf
Virginia https://www.vita.virginia.gov/media/vitavirginiagov/it-governance/psgs/pdf/InformationsecuritypolicySEC51900.pdf

2.Download and review your selected state governments’ IT Security Policy documents.

3. Develop five or more points that are common across the two documents. (Similarities)

4. Identify and review at least three unique items in each document. (Differences)

5. Research best practices for IT Security and/or IT Security Policies for state governments. Here are several sources which you may find helpful:

    1. https://www.nist.gov/cyberframework/perspectives/state-local-tribal-and-territorial-perspectives
    2. https://www2.deloitte.com/insights/us/en/industry/public-sector/nascio-survey-government-cybersecurity-strategies.html
    3. https://www2.deloitte.com/content/dam/insights/us/articles/4751_2018-Deloitte-NASCIO-Cybersecurity-Study/DI_2018-Deloitte-NASCIO-Cybersecurity-Study.pdf

6. Using your research and your comparison of the two policy documents, develop an answer to the question: Why should every state government have an IT security policy for state agencies and offices under the state’s executive branch?

Write:

Write a three- to five- page research-based report in which you summarize your research and discuss the similarities and differences between the two IT security policy documents. You should focus upon clarity and conciseness more than length when determining what content to include in your paper. At a minimum, your report must include the following:

  1. An introduction or overview of IT Security Policies for the executive branch of state governments (covering state agencies and offices in the executive branch including the governor’s office). Explain the purpose of an IT security policy and how states use security policies. Answer the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices? (Make sure that you address the importance of such strategies to small, resource-poor states as well as to large or wealthy states.)
  2. A separate section in which you discuss and provide five or more specific examples of the common principles and policy sections/statements (similarities) found in both IT security policy documents.
  3. A separate section in which you discuss the unique aspects of the first state’s IT security policy document. Provide five or more the policy document. e specific principles or guidelines or other content that is unique to the policy document.
  4. A separate section in which you discuss the unique aspects of the second state’s IT security policy document. Provide five or more the policy document. e specific principles or guidelines or other content that is unique to the policy document.
  5. A section in which you discuss your evaluation of which state government has the better of the two IT security policy documents. You should also present five or more best practice recommendations for improvements for both IT security policy documents. (Note: you may have different recommendations for the individual policies depending upon the characteristics of each document.) Answer the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices?
  6. A separate section in which you summarize your research and recommendations.