Scribd
Upload
1 views3 pages

CaseStudy - Sesi 2 20242025

The document outlines a case study for a cybersecurity fundamentals assessment focused on Information Assurance Management at DIT Corporation. It details the responsibilities of the newly appointed Information Assurance Manager, including risk identification and management, and the application of the PDCA model for continuous improvement. Additionally, it requires students to discuss compliance with relevant laws and regulations related to information assurance.

Uploaded by

Siva Kumar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
1 views3 pages

CaseStudy - Sesi 2 20242025

The document outlines a case study for a cybersecurity fundamentals assessment focused on Information Assurance Management at DIT Corporation. It details the responsibilities of the newly appointed Information Assurance Manager, including risk identification and management, and the application of the PDCA model for continuous improvement. Additionally, it requires students to discuss compliance with relevant laws and regulations related to information assurance.

Uploaded by

Siva Kumar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

JABATAN TEKNOLOGI MAKLUMAT DAN KOMUNIKASI

DFC20313 CYBERSECURITY FUNDAMENTALS

LECTURER NAME

TYPE OF ASSESSMENT CASE STUDY

TOPIC INFORMATION ASSURANCE MANAGEMENT

DURATION 5.0 HOURS

DATE OF ASSESSMENT

NAME REGISTRATION NO.

STUDENT
INFORMATION

TOTAL MARKS CLO3 /40


DFC20313 CYBERSECURITY FUNDAMENTALS

CASE STUDY
Practice professional codes of Commit to professional and ethical
ethics to adapt the real practices in executing instructions
CLO3 PLO11
challenges in security related to the job and organizational
environment. (A3, PLO11) functions.

Case Study: Information Assurance Management at DIT Corporation


Background:

DIT Corporation is a mid-sized company specializing in software development and IT services.


Recently, the company has been expanding rapidly, which has led to increased concerns about
the security and assurance of its information systems. The management has decided to
implement a robust Information Assurance (IA) strategy to mitigate risks and ensure the
security of its assets.

Scenario:

As the newly appointed Information Assurance Manager, you are tasked with developing and
implementing an IA strategy for DIT Corporation. Your responsibilities include identifying and
managing risks, ensuring compliance with relevant laws and regulations, and establishing a
continuous improvement process for information security.

Questions:

PART 1: Risk Identification and Management:

a) Explain the difference between Information Assurance and Information Security.


Why is it important for DIT Corporation to understand this distinction?
b) Identify and describe the process of risk identification at DIT Corporation.
Include the following:

I. Asset Identification
II. Risk Identification
III. Threat Identification
IV. Vulnerability Identification

PART 2 : Methodology in Information Assurance:

Describe how you would apply the Plan-Do-Check-Act (PDCA) model to ensure continuous
improvement in the IA strategy in DIT Corporation.

Part 3 : Practices, Regulations, and Strategy Planning:


Outline the key practices and regulations that DIT Corporation must comply with to ensure
effective Information Assurance. Adapt your explanation based on the following laws and
regulations (Choose only 2):

a) Computer Laws
b) Intellectual Property Laws
c) Privacy Laws
d) International Laws and Acts

PREPARED BY:

……………………………
(Course Lecturer) 01/10/2024
Date:28/2/2025
Date: 28/02/2025 Date:28/02/2025

You might also like