Assignment: This project requires you to identify, compare and contrast information security standards for your organization. If your organization has already selected and implemented a security standard, you may use that as one of your choices and compare and contrast that standard to another possible standard. Your submission should not exceed 3 to 4 pages.
Detailed Description of Project 2
1. Review your organization’s information security program documentation and determine what standard(s) the organization used to create the program.
2. Select one standard used by your selected organization and select another standard (similar in content) not used by your selected organization. For example, your organization may have used FIPS 200 to determine minimum security requirements. ISO/IEC 27002:2005 is another standard covering security requirements.
3. Identify three to five points of analysis from your selected organization’s standard (i.e., FIPS 200) that you will compare and contrast against the second standard (i.e., ISO/IEC 27002:2005).
4. Research the security issues related to or solved by the three to five items you selected in #3. Make sure that you check to see what type of security control each item addresses (use NIST Security Controls catalog SP-800-53).