SlideShare a Scribd company logo

Securing information system (Management Information System)

Download as PPTX, PDF
M
Masudur Rahman

The document is a presentation on securing information systems, highlighting the need for protection against increasing security threats due to technological advancements and human errors. It discusses vulnerabilities such as unauthorized access, hardware and software issues, loss of portable devices, and types of malware. The objectives of securing information systems focus on ensuring data integrity, availability, and confidentiality for authorized personnel only.

Education
1 of 21
Downloaded 16 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
Presentation On Securing Information Systems Submitted To Submitted By Bushra Humyra Esha Masudur Rahman Date: ID#2017-1-10-089
 An Information System (IS) is a combination of hardware, software, infrastructure and trained personnel organized to facilitate planning, control, coordination and decision making in an organization. What is Information System
What is Information System for Information System is A networks of hardware and software that people and organizations use to collect, filter, process, create and also distribute data. Collect Filter Process Create Distribute DATA
Factors Increasing the Threats to Information Security • Today’s interconnected, interdependent, wirelessly networked business environment • Government legislation • Smaller, faster, cheaper computers and storage devices • Decreasing skills necessary to be a computer hacker • International organized crime turning to cybercrime • Downstream liability • Increased employee use of unmanaged devices • Lack of management support
Why systems are vulnerable • Human errors. • Hardware problems . • Software problems. • Use of networks/computers outside of firm’s control • Loss and theft of portable devices • Malware (malicious software) • Disaster.
Human Errors • Shoulder Surfing
Human Errors • Human Resource & MIS Department Employees These employee hold all the confidential information of an organization.
Hardware Problem • Hardware problems occurs due to breakdowns, configuration errors, damage from improper use or crime.
Software Problem • Software problems may occur from programming errors, installation errors, unauthorized changes)
Unauthorized access • Accessing Organization's resource without permission from outside.
Loss of portable device • If portable device containing organization information and lost then information may insecure.
Malware (malicious software) Viruses  Rogue software program that attaches itself to other software programs or data files in order to be executed.
Malware (malicious software) Worms: Independent computer programs that copy themselves from one computer to other computers over a network.
Malware (malicious software) Trojan horses: Software program that appears to be benign but then does something other than expected.
Malware (malicious software) Spyware: Programs install themselves surreptitiously on computers to monitor user Web surfing activity and serve up advertising.
Other issues which can affect information Disaster: because of disaster information can lost too.
Objective of Securing Information System • The goal of security management is the accuracy, integrity, and safety of all information system processes and resources in organization.
Objective of Securing Information System Integrity Models : keep data pure and trustworthy by protecting system data from intentional or accidental changes. Integrity models have three goals: • Prevent unauthorized users from making modifications to data or programs. • Prevent authorized users from making improper or unauthorized modifications. • Maintain internal and external consistency of data and programs.
Objective of Securing Information System Availability Models : keep data and resources available for authorized use, especially during emergencies or disasters. Information security professionals usually address three common challenges to availability: • Denial of service (DoS) due to intentional attacks or because of undiscovered flaws in implementation (for example, a program written by a programmer who is unaware of a flaw that could crash the program if a certain unexpected input is encountered) • Loss of information system capabilities because of natural disasters (fires, floods, storms, or earthquakes) or human actions • Equipment failures during normal use
Objective of Securing Information System Confidentiality Models Confidentiality model preserve confidentiality integrity and availability only for authorize personal .
THANK YOU

More Related Content

PPTX
Securing information system
Tanjim Rasul
 
PPTX
System Security-Chapter 1
Vamsee Krishna Kiran
 
DOC
System Security Threats and Risks)
BPalmer13
 
PPTX
Computer security concepts
Prachi Gulihar
 
PPTX
Information security threats
complianceonline123
 
PPTX
Threats to Information Resources - MIS - Shimna
Chinnu Shimna
 
PPTX
Threats to information security
arun alfie
 
PPTX
System security
sommerville-videos
 
Securing information system
Tanjim Rasul
 
System Security-Chapter 1
Vamsee Krishna Kiran
 
System Security Threats and Risks)
BPalmer13
 
Computer security concepts
Prachi Gulihar
 
Information security threats
complianceonline123
 
Threats to Information Resources - MIS - Shimna
Chinnu Shimna
 
Threats to information security
arun alfie
 
System security
sommerville-videos
 

What's hot (20)

PPT
Security & control in management information system
Online
 
PPT
Iss lecture 1
Ali Habeeb
 
PPTX
Introduction to Information Security
Shreedevi Tharanidharan
 
PPTX
Security and control in Management Information System
Satya P. Joshi
 
PPTX
06. security concept
Muhammad Ahad
 
PPT
Chapter2 the need to security
Dhani Ahmad
 
PPTX
Data Security
AkNirojan
 
PPTX
Threats to information security
swapneel07
 
PPT
Computer security overview
CAS
 
PPTX
Cyber Security # Lec 3
Kabul Education University
 
PPTX
Security and Control Issues in Information System
Daryl Conson
 
PPTX
SECURITY & CONTROL OF INFORMATION SYSTEM (Management Information System)
Biswajit Bhattacharjee
 
PPT
22 need-for-security
Al Balqa Applied University
 
PPT
Threats to an information system
Nimisha Walecha
 
PPTX
Introduction to information security
KATHEESKUMAR S
 
PPTX
Network Security Goals
Kabul Education University
 
PPT
MIS-CH08: Securing Information Systems
Sukanya Ben
 
PPTX
Basic Security Concepts of Computer
Faizan Janjua
 
PPTX
Introduction to information security
jayashri kolekar
 
PPT
Information Technology Security A Brief Overview 2001
Donald E. Hester
 
Security & control in management information system
Online
 
Iss lecture 1
Ali Habeeb
 
Introduction to Information Security
Shreedevi Tharanidharan
 
Security and control in Management Information System
Satya P. Joshi
 
06. security concept
Muhammad Ahad
 
Chapter2 the need to security
Dhani Ahmad
 
Data Security
AkNirojan
 
Threats to information security
swapneel07
 
Computer security overview
CAS
 
Cyber Security # Lec 3
Kabul Education University
 
Security and Control Issues in Information System
Daryl Conson
 
SECURITY & CONTROL OF INFORMATION SYSTEM (Management Information System)
Biswajit Bhattacharjee
 
22 need-for-security
Al Balqa Applied University
 
Threats to an information system
Nimisha Walecha
 
Introduction to information security
KATHEESKUMAR S
 
Network Security Goals
Kabul Education University
 
MIS-CH08: Securing Information Systems
Sukanya Ben
 
Basic Security Concepts of Computer
Faizan Janjua
 
Introduction to information security
jayashri kolekar
 
Information Technology Security A Brief Overview 2001
Donald E. Hester
 
Ad

Similar to Securing information system (Management Information System) (20)

PDF
Security.pdf
Karthick Panneerselvam
 
PPTX
Cyber Security Briefing
Marshall Frett Jr.
 
PPTX
sec.This includes policy settings that prevent unauthorized people
JuliusECatipon
 
PPTX
Computer security
Shashi Chandra
 
PPTX
What is Cyber & information security.pptx
amnamahfooz615
 
PPTX
Chapter-2 (1).pptx
PaulaRodalynMateo1
 
PDF
Introduction to cyber security i
Emmanuel Gbenga Dada (BSc, MSc, PhD)
 
DOCX
It seminar isr
ASNA p.a
 
PPTX
Unit 1.pptx
MsVaishaliKumar
 
PPTX
Cyber Security awareness of cyber security
BabaBoss5
 
PPT
Security & ethical challenges
Louie Medinaceli
 
PPTX
Information-security and best pracrices tools for the enhanced security of s...
SamyaGufoor
 
PPTX
Chapter 13
bodo-con
 
PDF
Mis 1
Rohit Garg
 
PPTX
Cyber Sequrity.pptx is life of cyber security
perweeng31
 
PPTX
Cyber security
vishakha bhagwat
 
PPTX
Cyber Security and data Security for all.pptx
RajagopalKeshavan
 
PPT
Securityandethicalchallengesofinfornationtechnology 090902132631-phpapp02
anjalee990
 
PDF
Security Attacks in Stand-Alone Computer and Cloud Computing: An Analysis
dadkhah077
 
PPTX
Introduction to Cyber-Security beginners.pptx
ThirumalaiTrendchase
 
Security.pdf
Karthick Panneerselvam
 
Cyber Security Briefing
Marshall Frett Jr.
 
sec.This includes policy settings that prevent unauthorized people
JuliusECatipon
 
Computer security
Shashi Chandra
 
What is Cyber & information security.pptx
amnamahfooz615
 
Chapter-2 (1).pptx
PaulaRodalynMateo1
 
Introduction to cyber security i
Emmanuel Gbenga Dada (BSc, MSc, PhD)
 
It seminar isr
ASNA p.a
 
Unit 1.pptx
MsVaishaliKumar
 
Cyber Security awareness of cyber security
BabaBoss5
 
Security & ethical challenges
Louie Medinaceli
 
Information-security and best pracrices tools for the enhanced security of s...
SamyaGufoor
 
Chapter 13
bodo-con
 
Mis 1
Rohit Garg
 
Cyber Sequrity.pptx is life of cyber security
perweeng31
 
Cyber security
vishakha bhagwat
 
Cyber Security and data Security for all.pptx
RajagopalKeshavan
 
Securityandethicalchallengesofinfornationtechnology 090902132631-phpapp02
anjalee990
 
Security Attacks in Stand-Alone Computer and Cloud Computing: An Analysis
dadkhah077
 
Introduction to Cyber-Security beginners.pptx
ThirumalaiTrendchase
 
Ad

Recently uploaded (20)

PDF
Empowerment Technology for Senior High School Guide
solthereseamericandr
 
PPTX
Tissue processing ( HISTOPATHOLOGICAL TECHNIQUE
mathiasmelwyn7
 
PPTX
Introduction to Building Materials
Mrunali Vasava
 
PPTX
Onco Emergencies - Spinal cord compression Superior vena cava syndrome Febr...
Medpopz
 
PDF
ChatGPT for Dummies - Pam Baker Ccesa007.pdf
Demetrio Ccesa Rayme
 
PPTX
Digestion and Absorption of Carbohydrates, Proteina and Fats
rekhapositivity
 
PPTX
Introduction-to-Literarature-and-Literary-Studies-week-Prelim-coverage.pptx
EricaRamos80
 
PDF
LNK 2025 (2).pdf MWEHEHEHEHEHEHEHEHEHEHE
NielDestora
 
PDF
RMMM.pdf make it easy to upload and study
sajedul2
 
PDF
Paper A Mock Exam 9_ Attempt review.pdf.
SameeraNaveed2
 
PPTX
A powerpoint presentation on the Revised K-10 Science Shaping Paper
JericEstaco2
 
PPTX
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
PPTX
Lesson notes of climatology university.
sgladness67
 
PPTX
1st Inaugural Professorial Lecture held on 19th February 2020 (Governance and...
kawisojames10
 
PDF
Practical Manual AGRO-233 Principles and Practices of Natural Farming
MilindKhedekar2
 
PDF
Hazard Identification & Risk Assessment .pdf
estagiarioprotegesms
 
PDF
IGGE1 Understanding the Self1234567891011
rhea22labucay
 
PDF
Classroom Observation Tools for Teachers
Nicaramirez
 
PPTX
Chinmaya Tiranga Azadi Quiz (Class 7-8 )
Nitin Suresh
 
PPTX
UV-Visible spectroscopy..pptx UV-Visible Spectroscopy – Electronic Transition...
Samruddhi Khonde
 
Empowerment Technology for Senior High School Guide
solthereseamericandr
 
Tissue processing ( HISTOPATHOLOGICAL TECHNIQUE
mathiasmelwyn7
 
Introduction to Building Materials
Mrunali Vasava
 
Onco Emergencies - Spinal cord compression Superior vena cava syndrome Febr...
Medpopz
 
ChatGPT for Dummies - Pam Baker Ccesa007.pdf
Demetrio Ccesa Rayme
 
Digestion and Absorption of Carbohydrates, Proteina and Fats
rekhapositivity
 
Introduction-to-Literarature-and-Literary-Studies-week-Prelim-coverage.pptx
EricaRamos80
 
LNK 2025 (2).pdf MWEHEHEHEHEHEHEHEHEHEHE
NielDestora
 
RMMM.pdf make it easy to upload and study
sajedul2
 
Paper A Mock Exam 9_ Attempt review.pdf.
SameeraNaveed2
 
A powerpoint presentation on the Revised K-10 Science Shaping Paper
JericEstaco2
 
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
Lesson notes of climatology university.
sgladness67
 
1st Inaugural Professorial Lecture held on 19th February 2020 (Governance and...
kawisojames10
 
Practical Manual AGRO-233 Principles and Practices of Natural Farming
MilindKhedekar2
 
Hazard Identification & Risk Assessment .pdf
estagiarioprotegesms
 
IGGE1 Understanding the Self1234567891011
rhea22labucay
 
Classroom Observation Tools for Teachers
Nicaramirez
 
Chinmaya Tiranga Azadi Quiz (Class 7-8 )
Nitin Suresh
 
UV-Visible spectroscopy..pptx UV-Visible Spectroscopy – Electronic Transition...
Samruddhi Khonde
 

Securing information system (Management Information System)

  • 1. Presentation On Securing Information Systems Submitted To Submitted By Bushra Humyra Esha Masudur Rahman Date: ID#2017-1-10-089
  • 2.  An Information System (IS) is a combination of hardware, software, infrastructure and trained personnel organized to facilitate planning, control, coordination and decision making in an organization. What is Information System
  • 3. What is Information System for Information System is A networks of hardware and software that people and organizations use to collect, filter, process, create and also distribute data. Collect Filter Process Create Distribute DATA
  • 4. Factors Increasing the Threats to Information Security • Today’s interconnected, interdependent, wirelessly networked business environment • Government legislation • Smaller, faster, cheaper computers and storage devices • Decreasing skills necessary to be a computer hacker • International organized crime turning to cybercrime • Downstream liability • Increased employee use of unmanaged devices • Lack of management support
  • 5. Why systems are vulnerable • Human errors. • Hardware problems . • Software problems. • Use of networks/computers outside of firm’s control • Loss and theft of portable devices • Malware (malicious software) • Disaster.
  • 7. Human Errors • Human Resource & MIS Department Employees These employee hold all the confidential information of an organization.
  • 8. Hardware Problem • Hardware problems occurs due to breakdowns, configuration errors, damage from improper use or crime.
  • 9. Software Problem • Software problems may occur from programming errors, installation errors, unauthorized changes)
  • 10. Unauthorized access • Accessing Organization's resource without permission from outside.
  • 11. Loss of portable device • If portable device containing organization information and lost then information may insecure.
  • 12. Malware (malicious software) Viruses  Rogue software program that attaches itself to other software programs or data files in order to be executed.
  • 13. Malware (malicious software) Worms: Independent computer programs that copy themselves from one computer to other computers over a network.
  • 14. Malware (malicious software) Trojan horses: Software program that appears to be benign but then does something other than expected.
  • 15. Malware (malicious software) Spyware: Programs install themselves surreptitiously on computers to monitor user Web surfing activity and serve up advertising.
  • 16. Other issues which can affect information Disaster: because of disaster information can lost too.
  • 17. Objective of Securing Information System • The goal of security management is the accuracy, integrity, and safety of all information system processes and resources in organization.
  • 18. Objective of Securing Information System Integrity Models : keep data pure and trustworthy by protecting system data from intentional or accidental changes. Integrity models have three goals: • Prevent unauthorized users from making modifications to data or programs. • Prevent authorized users from making improper or unauthorized modifications. • Maintain internal and external consistency of data and programs.
  • 19. Objective of Securing Information System Availability Models : keep data and resources available for authorized use, especially during emergencies or disasters. Information security professionals usually address three common challenges to availability: • Denial of service (DoS) due to intentional attacks or because of undiscovered flaws in implementation (for example, a program written by a programmer who is unaware of a flaw that could crash the program if a certain unexpected input is encountered) • Loss of information system capabilities because of natural disasters (fires, floods, storms, or earthquakes) or human actions • Equipment failures during normal use
  • 20. Objective of Securing Information System Confidentiality Models Confidentiality model preserve confidentiality integrity and availability only for authorize personal .