A Risk Management Analyst identifies and analyzes potential issues that could negatively impact a business in order to help the business avoid or mitigate those risks.
Take on the role of Risk Management Analyst for the organization you chose in Week 1.
Using the
Security Risk
Plan Template
, create a 4- to 5.5-page Security Risk Mitigation Plan for the organization you chose.
Research and include the following:
- Security Risk Mitigation Plan:
- Select and document security policies and controls.
- Create password policies.
- Document administrator roles and responsibilities.
- Document user roles and responsibilities.
- Determine authentication strategy.
- Determine intrusion detection and monitoring strategy.
- Determine virus detection strategies and protection.
- Create auditing policies and procedures.
- Develop education plan for employees on security protocols and appropriate use.
- Provide risk response.
- Avoidance
- Transference
- Acceptance
- Address change Management/Version Control.
- Outline acceptable use of organizational assets and data.
- Present employee policies (separation of duties/training).
- Explain incident response.
- Incident types/category definitions
- Roles and responsibilities
- Reporting requirements/escalation
- Cyber-incident response teams
- Discuss the incident response process.
- Preparation
- Identification
- Containment
- Eradication
- Recovery
- Lessons learned
Mitigation
Note: The page assignment length requirement applies to the content of the assignment. Start the assignment with an APA formatted title page and add a reference section with at least two professional references. Use the references in the text of the assignment. For assignments that require use of the template, insert the completed template into the APA document. Delete the assignment instructions from the document. This will improve the originality score from Safe Assign. Make sure to check the SafeAssign originality score.
CMGT/400 v7
Security Risk Mitigation Plan Template
CMGT/400 v7
Page 2 of 2
Security Risk Mitigation Plan Template
Instructions: Replace the information in brackets [ ] with information relevant to your project.
A Risk Management Analyst identifies and analyzes potential issues that could negatively impact a business in order to help the business avoid or mitigate those risks.
Take on the role of Risk Management Analyst for the organization you chose in Week 1. Research the following information about your chosen organization. Create a Security Risk Mitigation Plan using this template.
[Organization Name]
Security Policies and Controls
[Response]
Password Policies
[Response]
Administrator Roles and Responsibilities
[Response]
User Roles and Responsibilities
[Response]
Authentic Strategy
[Response]
Intrusion Detection and Monitoring Strategy
[Response]
Virus Detection Strategies and Protection
[Response]
Auditing Policies and Procedures
[Response]
Education Plan
Develop an education plan for employees on security protocols and appropriate use.
[Response]
Risk Response
Include: Avoidance, Transference, Mitigation, and Acceptance.
[Response]
Change Management/Version Control
[Response]
Acceptable Use of Organization Assets and Data
[Response]
Employee Policies
Explain the separations of duties and training.
[Response]
Incident Response
Document incident types and category definitions, roles and responsibilities, reporting requirements and escalation, and cyber-incident response teams.
[Response]
Incident Response Process
Discuss the incident response process including: preparation, identification, containment, eradication, recovery, and lessons learned.
[Response]
Copyright© 2018 by University of Phoenix. All rights reserved.
Copyright© 2018 by University of Phoenix. All rights reserved.