The purpose of this project is to investigate and resolve problems related to the implementation of the security policy in Marang District Council. Furthermore, the ICT Security Policy System is to be designed, developed in order to assist the Information Technology Department (BTM). In addition, these documents must be compliant to the ISO 27001 standard and the Information Technology Security and Communication Policies for the Public Sector which is developed by MAMPU. The ICT Security Policy System is a web based system. All results would be presented and discussed.
ICT Security Policy is a common topic that is being discussed in the public sector, because security incidents happen to organizations that offer online services to the public.
These problems or incidents are also affecting the IT Department (BTM) at Marang District Council (MDM), as we also provide computer and internet facilities to our users. Based on the research findings, including inputs gathered from the respondents from Marang District Council, these problems can be reduced by providing a computerized ICT Policy document guideline, creating user awareness programs and by enforcing these ICT Policies.
Inhaltsverzeichnis (Table of Contents)
- Introduction
- Problem Statement
- Project Goals
- Project Objectives
- Project Scope
- Literature review
- Issues Raised
- Methodology
- System Design
- Database Design
- Program Code
- Benefits of the System
- General Benefits of MDM and Local Authorities
- Conclusion
Zielsetzung und Themenschwerpunkte (Objectives and Key Themes)
This project investigates the implementation of a comprehensive ICT Security Policy System at the Marang District Council (MDM) in Malaysia, focusing on compliance with ISO 27001 standards and MAMPU guidelines. The project aims to address security concerns and vulnerabilities within MDM's ICT infrastructure by designing, developing, and implementing a robust ICT Security Policy System.
- ICT Security Policy Implementation
- Compliance with ISO 27001 Standards
- Information Security Management System (ISMS)
- Cybersecurity Threats and Vulnerabilities
- Web-based System Design and Development
Zusammenfassung der Kapitel (Chapter Summaries)
- Introduction: This chapter introduces the importance of ICT security in today's interconnected world, particularly for government organizations like MDM. It highlights the vulnerabilities and risks associated with ICT systems and the need for a comprehensive security policy to protect sensitive information and assets. It also presents the problem statement, outlining the challenges faced by MDM in implementing ICT security policies.
- Project Goals: This chapter outlines the project's primary goals, which are to implement a system that will help MDM comply with ICT security policies, based on ISO 27001 standards and MAMPU guidelines. It also specifies the objectives and scope of the project, including the research methodologies, target audience, and development tools.
- Literature review: This chapter provides a review of relevant literature on ICT security, highlighting key issues related to information security management systems, cybersecurity threats, and existing practices in the public sector. It also explores the challenges faced by organizations in implementing and maintaining ICT security policies.
- Methodology: This chapter explains the methodology used in developing the ICT Security Policy System, focusing on the Rapid Application Development (RAD) strategy. It details the involvement of users, analysis, design phases, and the development tools used in the system's creation.
- System Design: This chapter presents the detailed design of the ICT Security Policy System, covering database design, program code, and system architecture. It illustrates the data flow, user roles, and key functionalities of the system.
- Benefits of the System: This chapter explores the numerous benefits of implementing the ICT Security Policy System for MDM and other local authorities. It outlines the system's contributions to improving security, compliance, access control, and reporting mechanisms.
Schlüsselwörter (Keywords)
The key focus topics of this text include ICT security policy, implementation, system design, ISO 27001 standards, MAMPU guidelines, information security management, cybersecurity threats, web-based applications, local authorities, and government organizations.
- Quote paper
- Mohd Farizul Mat Ghani (Author), 2015, System ICT Security Policy and the Implementation by Local Authorities in Malaysia, Munich, GRIN Verlag, https://www.grin.com/document/312614