There are ample resources available regarding standards and guidelines pertaining to
information security that Techfite could have followed or utilized
... [Show More] to design an effective
information security program. Using points from any of the hundreds of cybersecurity
asscociations including the Information Systems Security Association (ISSA) code of ethics, as
well as the Strategic and Competitive Intelligence Professionals (SCIP) code of ethics would
have prevented the criminal acts and negligence done by a specific group of TechFite employees.
ISSA’s primary goal is to ensure that the main goals of information security (confidentiality,
availability, and integrity) are upheld, conforming to both the law and to the highest ethical
principles. According to the ISSA code of ethics, one of the prerequisites for membership or
association is to “maintain appropriate confidentiality of proprietary or otherwise sensitive
information encountered in the course of professional activities” (ISSA Code of Ethics, n.d.)
TechFite’s business intelligence team failed to uphold this standard by penetrating and obtaining
data from other organization’s networks with the intention of obtaining trade secrets to sell to
competitors for capital gain. Another segment of ISSA’s code of ethics states that an ISSA
member will “discharge professional responsibilities with diligence and honesty” (ISSA Code of
Ethics, n.d.). Nadia Johnson failed to comply with this prerequisite by excluding several
significant details about the on-going activity within TechFite’s internal departments in her
security reports, which resulted in the business intelligence team’s criminal activities to go
unnoticed for an extended period of time.
SCIP’s code of ethics states that the member will remain: always in compliance,
transparent, conflict-free, strategically aligned, and honest (SCIP Code of Ethics, 2017). Jack
Hudson, a current member of SCIP, has failed to uphold any of these standards by participating
the in the illicit activities conducted by the business intelligence team.
A1a. Justify your reasoning and cite examples of relevant ethical guideli [Show Less]