NIST 800-64 rev2 Essay Example | Topics and Well Written Essays - 750 words

NIST 800-64 rev2 - Essay Example The problem I choose to discuss is poor communication between the employers and employees. In managing IT systems and their progress, an Information system security process is put in place to help identify risks, plan and mitigate problems that may arise at the workplace. Implementing a risk management – based approach serves to integrate security systems throughout the agency. However, throughout the system and its working, communication plays a major role in how well everything is understood and implemented in order to ensure high productivity with lesser number of problems. Communication is an indispensable part of any organization because its success or failure depends a lot on it. One of the critical assets of any organization is proper communication between employers and employees as well as among the management and workers. Proper communication helps to instill integrity and solidarity among the workers and helps them to focus better on the goal ahead. System managers c an make use of good communication as a tool to build strong relationships not only among the workers but also the clients that deal with them. Proper communication is a fundamental asset for decision – making, negotiation, implementation and assessment of the whole developmental process. One of the dilemmas that could arise in the workplace is miscommunication that leads to anger, fear, mistrust and lack of understanding among the parties involved. This problem is quite evident especially within a multicultural organization. The five phases such as Initiation, Development, Implementation, Operation and Disposal that contributes towards the smooth working and productivity of the organization could be hampered if there is no proper communication among its staff and workers. In implementing and executing a risk management based approach, it is both crucial and vital to help employees understand the integrated security component of the organization because each of them plays a si gnificant role in its successful achievement. Miscommunication in any one of the areas could bring about heavy losses to the agency or organization. In the Security Considerations in the System Development Lifecycle (SDLC) different individuals play different roles with different responsibilities and in order to ensure the systematic progress and success of the organization, they have to interact with each other during each stage of activity. In such a scenario, effective communication involving security requirements and expectations is inevitable. Every member is accountable in the position they hold responsibility within the organization. Employing an appropriate Information security personnel at the initiation juncture would be the right thing to do, so as to avoid communication mishaps during the process of any project. The individual carrying out this job has a big responsibility since it is a high risk job involving the organizations operations as well as its assets. However, all the other officials and managers each have their own role to play and their own responsibility which is clearly defined and they are accountable for things that go wrong. In such a set up effective communication plays a very important role because it helps to keep the security system in tact and in an effective working order. Since every person is highly responsible and accountable for their actions, it is inevitable that the first thing that should be put into place is a proper