Q1. Explain the process of presenting the need for implemented management and best practices necessary in an organization to upper management. Provide rationale for each point. (150 – 200 words) Q2. What are the objectives of information security management? What are the best practices of information security management? There are many best practices. Some are based on international standards such as ISO 27001. Some are based on industry standards or personal experience. Both are necessary when you define your organizational security plan. It is important to see all aspects. Please explain (150 – 200 words) Q3. Absent fully qualified candidates for cybersecurity positions, explain the steps taken to ensure the requirements of the job are still accomplished. Provide rationale for each step. (150 – 200 words) Q4. Understanding the complexities of administration enterprise, discuss how an uncaring or unprepared administrator can cripple business operations or customer interactions by “just following orders of policy.” (150 – 200 words) Q5. Discuss the ethics of implementing policy that you know will cause harm to users or customers. How can policies be updated to be relevant as the technology landscape changes? Explain. (150 – 200 words) Please add at least one reference (preferably scholarly) to each question.