Reason why Cia Triad can be good
There will always be issues when it comes to CIA Triad which can be like update problems taking too long to come out or there can be data that needs to be changed, regulated, or limited when it comes to businesses because of technology evolving over the years. My position on this is that CIA Triad can be good Businesses even if there can be negative in it.
First, I want to talk about how the CIA Triad can change cyber policies for the good of business. When it comes to the business standards, they manage to create different frameworks that the business could use here example of what they said: “These three foundational pillars create the framework for a large portion of the most popular compliance certifications such as NIST, HIPAA, or PCI-DSS compliance.” (CIA Triad Importance Cybersecurity Compliance | Cobalt, n.d.). When it comes to these three frameworks, they happen to be using the CIA Triad when they made sense they are the pillar and the business may use these frameworks. The reason it can change the cyber policies is because the CIA Triad can evolve if it needs to when it comes to new technology and threats.
Second, I want to talk about the different frameworks that can work for different companies. These three main frameworks that use the CIA Triad are NIST, HIPAA, and PCI-DSS. Let’s start with NIST as this one mainly aims at all companies of all kinds. The reason for this is that NIST is mainly the main framework that has five important cores and they are Identify, protect, detection, response, and recovery. This helps give the CIA Triad more details which companies can use during that time. The only downside is that it can be robust and be too much for some businesses. The second framework is HIPAA as this one is pointed to the medical companies. HIPAA’s core goal is to protect the sensitive data that medical companies would want since they need to protect their providers and insurance companies that use their medical data. The last one is PCI-DSS, and this framework is pointed to credit card data. The reason for this is that when it comes to credit card data, I believe companies need a way to protect themselves when it comes to people buying goods and services online and this one would help protect the people. I learned that it does help reduce fraud which normally would cause moral panic with people.
Third, I want to talk about how the CIA Triad comes when it comes to predictive knowledge. As we know it is that technology will keep evolving around us so the problem is that CIA Triad will take time for it to keep up with technology. This is a concern because when the CIA Triad framework is outdated it can lead to problems for the businesses around the world that use the CIA Triad. If one of the three is compromised, then that will lead to the whole structure being endangered. Here is an ideal picture if CIA Triad integrity is compromised then still would happen “Financial institution, maintaining the integrity of transaction data is crucial. If the integrity of the data is compromised, the financial records might be manipulated, resulting in significant losses or legal implications.” (Kiteworks, 2024). This explanation on this website does show the problem CIA Triad can have if you don’t keep it updated but again updates do take time to make so as a result there can be a compromise. A way you can fix this is by having a Recovery plan and training the employees to look for anomalies in the system during the time it can’t be patched until there is an update. This is a reason why it is a concern because it can lead to data being stolen, lost, changed, or corrupted. The reason for this is that they can stop the hacker for now so they can protect their information or data. This line explains how training employees can help “This involves teaching employees about the value of data confidentiality, which requires that information is accessed only by authorized individuals, and data integrity, which ensures that information remains accurate and reliable over its entire lifecycle.” (Kiteworks, 2024). Here is another example when it comes to protecting a business “Audits are a powerful tool that can help businesses detect any anomalies in their data patterns. These anomalies can sometimes be warning signs of cyber threats or breaches, which, if not promptly addressed, can lead to substantial data loss or damage.” (Kiteworks, 2024). Audits are a great way to help businesses because it useful tools that will help detect anomalies faster than a human can.
In conclusion, this is the reason why I believe that the CIA Triad is good for business. I was able to point out how the CIA Triad did have a different framework that businesses can use. Then I explained the downsides when it came to using the CIA Triad like how they can go outdated or they get hacked in some type of way, but I also gave points on how to combat the problems that are shown. There is still more that can be proven when it comes to the CIA Triad that can be negative but there can be positives too when it comes to it, but I believe research is needed when it comes to picking a Framework that works for a business. With my analysis, I did believe I’m for the Cia Triad because They show that there can be different frameworks that work for a business that just depends on your business. As for against it there can be scary moments I believe which as the CIA Triad going outdated or being hacked since there can be a chance of lost data, stolen data, or corrupted data at times. But For people that are in between it may just be a chance to take when you use it as there is always a chance no matter what when it comes to CIA Triad because in the world technology is always evolving and all we can do is try to keep up with it.
Word Cited (APA)
CIA Triad Importance Cybersecurity Compliance | Cobalt. (n.d.). Www.cobalt.io. https://www.cobalt.io/blog/cia-triad-importance-in-compliance-certification
Kiteworks. (2024). What is the CIA Triad? Kiteworks | Your Private Content Network. https://www.kiteworks.com/risk-compliance-glossary/cia-triad/