A business consulting firm, InfoGather, is interested in create an information security management framework design to meet its security governance objectives. Specifically,
InfoGather is heavily reliant on information gathered and analyzed from various open Internet sources, from websites to social media.
In general, company data consists of 20% database, and 80% unstructured
The business intelligence derived must be securely protected
Possible security risks include email, texting, internal and external chatroom, meetings, and other forms of open communications
Company is subjected to Federal and State security regulations.
Because of the complexity of the data, InfoGather management wants to establish an information security framework with data analytics to be reviewed by the board of directors.
Your task is to come up with a conceptual design that meets the requirements. The design must meet the following requirements:
The project must be considered at enterprise level
The design must be driven by business analysis and risk management
The design must include general description on methodology
The design must recommend tools for implementation
A summary benefit analysis must be included.