Inscrivez-vous ou connectez-vous pour rejoindre votre communauté professionnelle.
Confidentiality, Integrity, and Availability are the main aspects of information security for sure. But knowing that is not good enough!
As the question regards “information security projects”, I would like to add the fact that includes security considerations in every phase of a project, PMs have the opportunity to deliver more secure systems in a more secure manner. Here is an example of what I mean by that: “Considering a simple development life cycle”
0.0 Initiating
0.1 Security Impact assessment completed
0.2 …
1.0 Planning
1.1 Management plan
1.1.1 Secure communication plan Completed
1.2 Requirements gathering
1.2.1 Security Requirements collected
…
2.0 Executing
2.1 …
3.0 Closing
3.1 Security experienced from the project recorded(for future reference education and training)
IT security projects warrant special consideration for maintaining information security. To really develop a good security project, developer team has to understand the Security Architecture of their enterprise.
“Security Architecture is the set of tangible and intangible assets representing security controls and mechanisms within the Enterprise Architecture. Security Architecture is integrated throughout the four Enterprise Architecture components. Furthermore, it is integrated into the architecture development cycle and results in additional requirements being identified during each stage of the development”
I hope that make sense
Aziz