In order to understand the varied aspects of information security, you must know the definitions of certain key InfoSec terms and concepts.
In general, security means being free from danger. To be secure is to be protected from the risk of loss, damage, unwanted modification, or other hazards. Security is often achieved by means of several strategies undertaken simultaneously or used in combination with one another. Many of those strategies will focus on specific areas of security, but they also have man elements in common. It is the role of management to ensure that each strategy is properly planned, organized, staffed, directed, and controlled.
Information security (InfoSec) focuses on the protection of information and the characteristics that give it value, such as confidentiality, integrity, and availability, and includes the technology that houses and transfers that information through a variety of protection mechanisms such as policy, training, and awareness programs, and technology.
For this project, prepare a 2-3 page paper (not counting your title page and references page) that addresses the following:
(a) What is information security?
(b) What essential protections must be in place to protect information systems from danger?
(c) Explain the difference between management of InfoSec projects and other IT projects?