An analysis of four security management mistakes commonly made by businesses and other organizations.

Written in 2009; 2,121 words; 7 sources; APA; $ 66.95

The goal of this paper is to analyze four security management mistakes commonly made by businesses and other organizations: failure to thoroughly investigate new employees, failure to enforce written policy, overemphasized reliance on technology, and ignorance of new vulnerabilities. In line with the comprehensive approach to security management analysis established by P.J. Ortmeier in his book "Security Management: An Introduction", the author of this paper also attempts to address multiple facets of the issue of security. Thus, the first section of the paper, which examines failure to adequately investigate new hires, provides an overview of the legal consequences of this problem, as well as indicates possible causes of this failure and suggests several remedies. The second section, which analyzes organizations' failure to enforce written security policy, also attempts to provide a thorough examination by supplying the rationale for the establishment and enforcement of such policy, as well as a concrete, practical examples. The third part of the paper analyzes organizations' improper reliance on technology by examining how it affects the three facets of security identified by Ortmeier - physical environment, personnel security, and information safety. Finally, the last part of the paper deals with the issue of failing to identify and properly address new vulnerabilities by similarly examining the consequences of this failure for physical, personnel, and information safety. The paper concludes with an assessment of the role of proper security management for the successful operation and growth of businesses and other organizations.

Outline:
Introduction
Security Pitfall #1: Failure to Thoroughly Investigate New Employees
Security Pitfall #2: Failure to Enforce Written Security Policy
Security Pitfall #3: Improper Reliance on Technology
Security Pitfall #4: Failure to Identify and Properly Address New Security Threats
Conclusion

"Proper assessment and investigation of potential employees is a major part of personnel security management (Ortmeier, Ch. 6; Perkins, 2006, p. 15). However, mismanaged personnel hiring can also negatively affect company's legal affairs, information security, and even physical safety. Thus, according to John Bentivoglio, "A well-considered background check policy that can identify potentially dangerous persons before they are hired can serve the dual goals of creating a safer workplace for employees and the public while also shielding (the organization) from liability for negligent hiring" (Bentivoglio, 1995, p.65). In other words, every company should thoroughly screen the backgrounds of all potential hires in order to avoid potential future lawsuits. Such suits can and do arise due to the fact that, in most states, employers can be held liable for negligently hiring workers who pose danger to coworkers or to the public. "

Tags: technology, personnel, written, policy

1. Term Paper # 111388 :: Information Security Management Systems ( 4,687 words; 24 sources; )
2. Essay (General) # 72396 :: Private Company Security ( 1,130 words; 5 sources; )
3. Essay (General) # 38268 :: Information Security Management ( 2,150 words; 8 sources; )
4. Essay (General) # 6570 :: Basics of Management ( 3,035 words; 10 sources; )