PKI and Encryption at Work
Learning Objectives and Outcomes
· Develop a plan to deploy public key infrastructure (PKI) and encryption solutions to protect data and information.
Assignment Requirements
In this assignment, you play the role of chief information technology (IT) security officer for the Quality Medical Company (QMC). QMC is a publicly traded company operating in the pharmaceutical industry.
QMC is expanding its arena of work through an increase in the number of clients and products. The senior management of the company is highly concerned about complying with the multitude of legislative and regulatory laws and issues in place. The company has an internal compliance and risk management team to take care of all the compliance-related issues. The company needs to make important decisions about the bulk of resources they will need to meet the voluminous compliance requirements arising from the multidimensional challenge of expansion.
QMC will be required to conform to the following compliance issues:
· Public-company regulations, such as the Sarbanes-Oxley (SOX) Act
· Regulations affecting financial companies, companies that make loans and charge interest, such as the U.S. Securities and Exchange Commission (SEC) rules and Gramm-Leach-Bliley Act (GLBA)
· Regulations affecting healthcare privacy information, such as Health Insurance Portability and Accountability Act (HIPAA)
· Intellectual Property Law that is important for information asset protection particularly for organizations in the pharmaceutical and technology industry
· Regulations affecting the privacy of information, including personal identification information, such as personally identifiable information (PII) regularly collected from employees, customers, and end users
· Corporate governance policies including disclosures to the board of directors and the auditors and the policies related to human resources, governance, harassment, code of conduct, and ethics
Compliance with regulatory requirements implies encrypting sensitive data at rest (DAR) and allowing access to role-holders in the enterprise who require the access. It also implies that sensitive data in motion (DIM) or data that is being communicated via e-mail, instant message (IM), or even Web e-mail must be suitably protected and sent only to the individuals who have a right to view it. The company is conscious about the loss they may face in terms of penalty and brand damage if they fail to abide by the compliance laws, especially in the online information transfer phase. Therefore, as a dedicated employee, your task is to develop a content monitoring strategy using PKI as a potential solution. You will need to determine a process or method to identify multiple data types, processes, and organizational policies. Incorporate them into a plan, and select a PKI solution that will effectively address the content management needs of your company.
You need to present your PKI solution in the form of a profes.
PKI and Encryption at WorkLearning Objectives and Outcomes· De.docx
1. PKI and Encryption at Work
Learning Objectives and Outcomes
· Develop a plan to deploy public key infrastructure (PKI) and
encryption solutions to protect data and information.
Assignment Requirements
In this assignment, you play the role of chief information
technology (IT) security officer for the Quality Medical
Company (QMC). QMC is a publicly traded company operating
in the pharmaceutical industry.
QMC is expanding its arena of work through an increase in the
number of clients and products. The senior management of the
company is highly concerned about complying with the
multitude of legislative and regulatory laws and issues in place.
The company has an internal compliance and risk management
team to take care of all the compliance-related issues. The
company needs to make important decisions about the bulk of
resources they will need to meet the voluminous compliance
requirements arising from the multidimensional challenge of
expansion.
QMC will be required to conform to the following compliance
issues:
· Public-company regulations, such as the Sarbanes-Oxley
(SOX) Act
· Regulations affecting financial companies, companies that
make loans and charge interest, such as the U.S. Securities and
Exchange Commission (SEC) rules and Gramm-Leach-Bliley
Act (GLBA)
· Regulations affecting healthcare privacy information, such as
Health Insurance Portability and Accountability Act (HIPAA)
· Intellectual Property Law that is important for information
asset protection particularly for organizations in the
2. pharmaceutical and technology industry
· Regulations affecting the privacy of information, including
personal identification information, such as personally
identifiable information (PII) regularly collected from
employees, customers, and end users
· Corporate governance policies including disclosures to the
board of directors and the auditors and the policies related to
human resources, governance, harassment, code of conduct, and
ethics
Compliance with regulatory requirements implies encrypting
sensitive data at rest (DAR) and allowing access to role-holders
in the enterprise who require the access. It also implies that
sensitive data in motion (DIM) or data that is being
communicated via e-mail, instant message (IM), or even Web e-
mail must be suitably protected and sent only to the individuals
who have a right to view it. The company is conscious about the
loss they may face in terms of penalty and brand damage if they
fail to abide by the compliance laws, especially in the online
information transfer phase. Therefore, as a dedicated employee,
your task is to develop a content monitoring strategy using PKI
as a potential solution. You will need to determine a process or
method to identify multiple data types, processes, and
organizational policies. Incorporate them into a plan, and select
a PKI solution that will effectively address the content
management needs of your company.
You need to present your PKI solution in the form of a
professional report to the senior management.
Required Resources
None
Submission Requirements
· Format: Microsoft Word
· Font: Arial, 12-Point, Double-Space
3. · Citation Style: APA
· Length: 1–2 pages
Self-Assessment Checklist
Use the following checklist to support your work on the
assignment:
· I have identified specific data types related to the specific
compliance regulatory requirements.
· I have indicated a solution for sharing data beyond the borders
of the organization.
· I have appropriately selected and developed a PKI solution for
content control.
· I have followed the submission requirements.
1.
_rels/.rels
docProps/core.xml
docProps/app.xml
ppt/presentation.xml
ppt/_rels/presentation.xml.rels
ppt/presProps.xml
ppt/viewProps.xml
6. ppt/slideLayouts/_rels/slideLayout9.xml.rels
ppt/slideLayouts/slideLayout10.xml
标题文本
正文级别 1 正文级别 2 正文级别 3 正文级别 4 正文级别 5
ppt/slideLayouts/_rels/slideLayout10.xml.rels
ppt/notesMasters/notesMaster1.xml
ppt/notesMasters/_rels/notesMaster1.xml.rels
ppt/theme/theme2.xml
ppt/slides/slide1.xml
Strategic Communications Plan Team
Project Uber Strategic Communications
ppt/slides/_rels/slide1.xml.rels
ppt/slides/slide2.xml
Uber vs. NYC Despite it’s
growing success, Uber has faced a number of challenges from
governments and the taxi and limousine industry, who allege
that Uber’s use of unlicensed drivers is unsafe and illegal.
Often, these disputes – and other high profile-problems, such as
passenger safety – continue to damage Uber’s reputation.
In 2015, NYC Mayor Bill de Blasio introduced a city council
initiative that would limit the growth of for-hire vehicle
companies like Uber to 1%, pending a citywide study of traffic
7. patterns. The city has suggested that Uber may be responsible
for slower traffic speeds in Manhattan, noting that the number
of all for-hire vehicles has grown by more than 60%, to about
63,000, since 2011, the year the company debuted.
ppt/slides/_rels/slide2.xml.rels
ppt/slides/slide3.xml
Uber vs. NYC and Newark To
fight back, Uber launched a highly successful strategic
integrated communications campaign against Mayor de Blasio’s
proposal. The results: The 1percent limit was never
implemented. In January 2016, the results of the traffic study
were published and found that vehicles of all types were
responsible for congestion, not just ride sharing services like
Uber and Lyft.
ppt/slides/_rels/slide3.xml.rels
ppt/slides/slide4.xml
Don’t Let Mayor de Blasio Strand New
Yorkers
ppt/slides/_rels/slide4.xml.rels
ppt/slides/slide5.xml
ppt/slides/_rels/slide5.xml.rels
ppt/slides/slide6.xml
Mayor de Blasio’s Proposal Will Destroy
8. 10,000 Jobs
ppt/slides/_rels/slide6.xml.rels
ppt/slides/slide7.xml
Uber, Lyft Banned from Newark Airport
ppt/slides/_rels/slide7.xml.rels
ppt/slides/slide8.xml
Uber vs. Newark While
having won the war in NYC, Uber continues to battle local
governments across the country who have similarly set out to
stop the service from expanding. For example, Newark, NJ,
reached an agreement to allow Uber to operate after the mayor
banned Uber from Newark Airport and Newark Penn Station,
stating their operation violates a city ordinance that requires all
commercial vehicles operating at the venues to obtain licenses.
In a statement, Newark Mayor Ras Baraka said: “It’s an issue of
regulations, compliance and safety.” Further, he said: “Uber
undermines taxi drivers and takes their business away.”
The same bans have occurred in Paris, Washington, D.C.,
Chicago and L.A., though some cities have since lifted the ban
upon having Uber pay an additional fee. In the settlement
with Newark, Uber agreed to pay the city a $10 million fee to
operate at Newark Liberty International Airport over 10 years.
The company also agreed to provide $1.5 million in liability
coverage for all drivers in its network, conduct background
checks of each one, and to install and enforce a zero-tolerance
drug and alcohol abuse policy.
ppt/slides/_rels/slide8.xml.rels
9. ppt/slides/slide9.xml
Your Assignment You
are on a team at one of several integrated marketing and public
relations agencies trying to win a contract to create a strategic
integrated communications plan for Uber to deal with the
coronavirus (COVID-19). Uber wants to know how to handle
the impact of the virus on Uber’s businesses and reputation, as
well as its many stakeholders, including drivers and “corporate”
employees, passengers, and the communities and governments it
serves. The NYC and Newark case study is an example
of what such a campaign might look like. Keeping that in mind,
please create a strategic communications plan for Uber,
incorporating these five strategic elements: SWOT
analysis, considering Uber’s business model, reputation,
revenue sources, employees, as well as any other internal and
external factors; A strategic plan -- state your current
state and future state (objective) and how your strategic plan
will help you achieve your objective; Stakeholder
Identification/Key Messages; Tactical Plan, e.g.
integrated marketing/issues management/crisis management;
Research/Measurement -- How would you measure success?
ppt/slides/_rels/slide9.xml.rels
ppt/slides/slide10.xml
Strategic Plan Analysis Start
with a brief description of Uber: What does it do?
How does it make money? Where does it operate?
How many employee? Discuss (briefly) some of the
internal and external factors you should consider. Answer
the following questions? What is Uber trying to
accomplish? What stakeholders is Uber trying to reach in
this campaign? What PR & marketing tactics should Uber
use as part of this campaign? What are the key messages
being communicated? Current State/Future State – when
10. can you declare victory? Why?
ppt/slides/_rels/slide10.xml.rels
ppt/slides/slide11.xml
Presentations Next Week:
Due Tuesday, April 7 . The team should prepare a
presentation outline and a list of team members and their
assignments. The week Of April 13: The completed
presentation must be submitted by Tuesday, April 14 .
Each student receives a team and an individual grade.
ppt/slides/_rels/slide11.xml.rels
ppt/tableStyles.xml
ppt/media/image1.png
ppt/media/image2.png
ppt/media/image3.png
ppt/media/image4.png
ppt/media/media1.mp4
ppt/media/media2.mp4
ppt/media/media1.mov
[Content_Types].xml