Discussion:
Part I
Based on the reading materials at background section and your own research, prepare a 3-5 page report to address the following questions on ISO standards on information security management:
1. Describe the Plan-Do-Check-Act process.
2. What does this process accomplish?
Part II
Based on the reading materials at background section and your own research, prepare a 3-5 page report to answer the following questions
1. Discuss the difference between law and ethics;
2. Research the Sarbanes-Oxley Act of 2002 and discuss how it has impacted information security in an organization.