CSIA 350 Week 3 COBIT 5 in IT Security Management Risk Essay
More and more hiring actions start with a written essay from job candidates followed by a telephone “screening” interview. For this week’s discussion topic, you will take on the role of an applicant for an internship in a CISO organization. You are at the first stage in the application process — writing the essay. You have been asked to respond to ONE of the following questions:
- Why should a large company (>1000 employees) adopt and use COBIT 5 to manage IT security risks?
- How does compliance with the four Payment Card Industry (PCI) Standards help an e-Commerce company manage IT security risks?
The application review committee is a group of managers (both technical and non-technical) who depend upon IT security to protect their business operations (including intellectual property, company strategic and financial information, and customer data). The purpose of the essay is two fold. First, the review committee is looking for the ability to think critically and analyze a relevant problem. Second, the review committee is looking for applicants who can communicate effectively in writing for both technical and non-technical audiences.