Order ID | 53563633773 |
Type | Essay |
Writer Level | Masters |
Style | APA |
Sources/References | 4 |
Perfect Number of Pages to Order | 5-10 Pages |
DISSERTATION PROPOSAL FORM
Please Type in the appropriate spaces. Boxes will expand as you type.
Name | Student Number | ||
Course | MSc in Information Systems Management |
Provisional Title of Your Dissertation.
Effectiveness of Cybersecurity Awareness Training Program within a US Government Agency and contractors doing business with the government. |
Describe the topic(s) or issue(s) you wish to investigate for your Dissertation.
These must relate to the subjects that comprise your programme of study, and must clearly indicate what your aims /objectives / research questions will be.
CIA (Confidentiality, Integrity and Availability) of the organization’s assets are paramount to any organization. CIA becomes even more important for Unites States Government systems where its reputation is also at stake if an attacker is successful in penetrating the systems with various attacks, especially the phishing and social engineering attack among other. I would like to analyze if the required Cybersecurity Awareness Training is effective in preventing external and internal threats to US Government Agency’s information systems. Following will be my major questions:
|
What facts or information will you need to gather? How will you access these?
I will be documenting why United States Government’s FISMA (Federal Information Security Management Act of 2002 and Federal Information Security Modernization Act of 2014) law requires that all employees must complete Cybersecurity Awareness Training at least annually. Certain organizations contracting with the United States Government has more stringent awareness training requirements (either monthly or quarterly training). Cybersecurity Awareness Training is a great tool to educate employees of ways to recognize phishing and social engineering attack, importance and complex password and safeguarding the password. The training further educates employees in protecting information of the organization and the its clients (consumers). Furthermore, I would like to analyse if this requirement is being effective to prevent threats to Agency’s information system or if it is just an exercise where employees take the training just for the sake of meeting the requirement and do not follow through what they have learned. I will be reviewing literature and analysing different methods and different levels of training. I will be gathering actual data from the US government agency for this purpose (I may have to redact certain information or even substitute name of the actual agency) and will be interviewing and sending out survey questioners to employees. |
To which subject area(s) is this proposal – in your view – most strongly related?
My proposal is directly related to “Information Systems Management” as safeguarding information systems assets are important part of the subject. |