As the new CISO at a big company, I would have a lot of expectations to fill. Making sure our information is still accessible while protected is key to our success, but also two key components to the CIA Triad. I would utilize a public key cryptography system, Information can be sent in by anyone who has the public key, but the data can only then be opened and viewed by one with a private key. This is a simple step to ensure the accessibility isn’t completely taken away, but that the data is accessible. With the public key as well, it does make it more accessible for workers who need to send information into the database.
Additionally, We would would use very complex keys to break. The longer and more fandoms or complex the key is, the harder it is to break. This is due simply to the fact that the longer time it takes to break a code, the harder it is. With this, we would also be continually updating my our keys and codes, to acknowledge that technology developed faster than we may be able to. I would also ensure that all data is backed up properly. This not only protects the company, but acknowledges there is a chance that stuff still occurs. The data would be backed up on disks and hard drives.