Reference no: EM132980229 , Length: word count:1600
CIS8710 Human Factors in Cyber Security - University of Southern Queensland
The task is three inter-related sections. To complete these sections, you are expected to participate in weekly zoom sessions (for building section 3) as these tasks are expected to be progressively constructed.
You are to play in the role of a senior cyber security engineer at a company. You may choose the company (either fictional, your employer, or an example from industry). You are strongly encouraged to contextualise your response to the company and industry.
Section 1:
You must write a business memo to the CEO, requesting approval for the roll out of a "phishing simulation and education program" system across your organisation. This should have a strong argument backed with recent statistics from three key phishing incidents from the published materials (2020 - 2021) and academic references from 2020 - 2021. The memo should be clear, concise and of a type that is appropriate to present to a company executive. You have a high degree of flexibility in the presentation, but it should support a desired outcome of being approved and reinforcing executive confidence in you as a cyber-security professional. It should be persuasive and of a quality expected by a CEO.
The maximum length is 3 pages, so clarity of message and being concise is important. The memo will be of one page in length, with the other two pages providing argument to justify the rollout.
Section 2:
As a one-page appendix to section 1, you must present an example of a targeted phishing email that presents and demonstrates the risk to your company, which supports your argument.
Section 3:
You are required to provide a one-page self-critique of your memo and appendix, highlighting the behavioural elements you have used, demonstrating the linkages to the course content, and any further self-study undertaken. This is a reflective exercise to develop your self-awareness and improve your submission. This reflection will occur in the weekly zoom sessions, you will attach a journal of activities to the assignment.
Learning objective:
1. Apply specialised knowledge relating to the roles that humans play in causing, enabling and mitigating cyber security risks.
2. Analyse critically, reflect on and synthesise complex issues, information, problems, concepts and theories relating to the role that people play in cyber security, and how this relates to process, technology and policy.
3. Examine and then apply specialist knowledge and skills in managing human factors and behaviour to counter cyber threats.
4. Research and review sources of specialist human behavioural knowledge relating to cyber security knowledge, and how these can be applied towards improved cyber security controls.
5. Interpret, articulate and communicate complex issues relating to human factors in cyber security to achieve targeted outcomes.
Attachment:- Human Factors in Cyber Security.rar