Question:What is the role of the Chief Information Officer?

What is the role of the CIO?

The CIO drives technology for the company’s benefit, such as improving efficiency, customer service and competitive differentiation. My role includes understanding where the company wants to go and positioning technology to help get us ther...

What are the roles of a chief information officer?

To source information for the company Arrange information for the people to follow

Is the role of the Chief information Officer (CIO) declining??

Short answer as to decline - No. 20 years ago most companies could still operate with major systems down. Now, it is literally impossible for many, not just because of the complex and inter-related nature of systems, but because they have t...

1. What are the company’s major information security threats?

Q: 1. What are the company’s major information securitythreats?2. Develop a security awareness training plan for employeesand franchisees.3. Which Internet-based data backup plans should beused?4. Review data retention requirements for various types ofrecords.impact of security, disaster planning, and data retention:Meredith (President and Owner) “I neverrealized that security and disaster planning involvedeveryone in the company. I thought I could leave it all toAbe, but now I see that everyone needs to be aware of ourplans, which might impact multiple departments.”Suzanne (VP of Studios) “I now know that weneed to focus on the role of our employees in handlingdisasters.”Leda (VP of Franchises) “Our franchisees arealways calling me for information. I usually never questionthe identity of the person at the other end of the line.Now I am implementing a method for verifying that theperson is an actual franchisee.”Mitch (VP of Bead Bar on Board) “I use passwordsto protect my notebook computer and PDA. In thepast I always used my birthday and I never changed mypassword. Now my password is complicated, using letters,numbers, and punctuation.”Julia (Chief Financial Officer) “We areincreasingly relying on information systems to processfinancial data. As the CFO, I need to work with Abe toensure our data retention requirements are met.”Miriam (VP of Marketing and Sales) “Mydepartment regularly gives out marketing information toother managers and studio employees. We need todevelop a system to ensure that only people who shouldhave access to this information, get this information.”Rachel (VP of Operations and Purchasing) “Iam in the process of working with Abe to develop a comprehensivedisaster recovery plan. He will handle thecomputer systems aspect, but I need to determine whateach of our employees should do in the event of a disaster.I am also working to ensure that we have multiplevendors for all our important products. Finally, physicalsecurity is part of my responsibility. So I am reviewing ourphysical access controls.”Jim (Director of Human Resources) “Mymain objective is to develop a security and disaster recoverytraining plan for our employees. In addition, Racheland Abe would like me to work with temporary companiesto fill key positions in the event of a disaster. Abe hasalso asked me to implement specific policies as theyrelate to security and disaster recovery.”Abe (Chief Information Officer) “I’m workingon an information security plan that includes technical,procedural, and educational approaches. This planwill touch multiple departments. I need to work with Juliaon data retention, Rachel on disaster recovery, and Jim on

A: OK to answer question No.1 I would say that information leaking is one of the biggest problems in any company. Second, the loose of the data, or in other words, the destruction by natural disaster or intentional from inside of the company or outside. Third, the reputation of the company between customers, shareholders and the public (Also the media).To question No 2. I would say that as Security Administrator you have to implement a policy in which you make the rules for the use of Intra net, Internet and all point access that you have for employees, vendors, and customers, etc.And also audit your policy that way you are in compliance (Sarbanes-Oxley Act).For answer question 3. It sounds that your company is from medium to big, I would implement a hot backup disaster recovery plan, for sure. That way you don't have to wait to long for get all you data.Good Luck