User Account

All Pages

Describe the process of performing a risk assessment

Assignment Help Computer Engineering
Reference no: EM132067921

Assignment 2: Organizational Risk Appetite and Risk Assessment

Imagine that a software development company has just appointed you to lead a risk assessment project. The Chief Information Officer (CIO) of the organization has seen reports of malicious activity on the rise and has become extremely concerned with the protection of the intellectual property and highly sensitive data maintained by your organization. The CIO has asked you to prepare a short document before your team begins working. She would like for you to provide an overview of what the term "risk appetite" means and a suggested process for determining the risk appetite for the company. Also, she would like for you to provide some information about the method(s) you intend to use in performing a risk assessment.

Write a two to three page paper in which you:

1. Analyze the term "risk appetite". Then, suggest at least one practical example in which it applies.

2. Recommend the key method(s) for determining the risk appetite of the company.

3. Describe the process of performing a risk assessment.

4. Elaborate on the approach you will use when performing the risk assessment.

5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

• Describe the components and basic requirements for creating an audit plan to support business and system considerations.

• Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.

• Use technology and information resources to research issues in security strategy and policy formation.

• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.

Reference no: EM132067921

Questions Cloud

Opposing objectives on the project : Discuss possible ramifications of these opposing objectives on the project. What would you do if you were the manager?
Factors that influence monopoly power : Based on the monopoly power factors and the factors that influence monopoly power (see course slides), what are the challenges
Propose a method to address the difficulties you identified : Per the text, audit findings focus on four areas: criteria, circumstance, cause, and impact. Determine the area that you believe might be the most difficult.
Explain what would you say in the policy : The policy should encourage the use of IM and chat while also providing useful guidance to avoid potential problems. What would you say in the policy?
Describe the process of performing a risk assessment : Imagine that a software development company has just appointed you to lead a risk assessment project. The Chief Information Officer (CIO).
List three authentication questions : List three authentication questions (but not the answers) your credit card company could ask to authenticate you over the phone.
Why the team performed so well or so poorly : Discuss the team dynamics for a highly effective or ineffective team of which you were a member. Can you explain why the team performed so well or so poorly?
Gain the trust of the department heads by offering a clear : Write a memo to the department heads of Pegasus to describe the goals of the change initiative, which is the reorganization.
How the use of log management systems could be a legitimate : Imagine you have just taken over the manager position for your organization's incident response team, after coming from another division in the company.

Reviews

Write a Review

Computer Engineering Questions & Answers

  What might be significant about the sheffer stroke

What might be significant about the Sheffer Stroke for the designer of a computer or other digital electronic hardware?

  Make table to be a pointer to pointer of type double

make table to be a pointer to pointer of type double.

  How usability and software quality are related to each other

how usability and software quality are related to each other. What do you feel are some of the main design issues as related to the human factors characteristics of a GUI.

  Design a user interface that integrates the above outputs

Design at least one of the following outputs for the Equipment Check-Out System: transaction (external/turnaround), detail report (internal), summary report (internal), and exception report (internal).

  Definition of method dashedline

Write down the definition of the method dashedLine , with one parameter, an int. If parameter is negative or zero, method does nothing.

  What are the advantages of using erp

As an IT manager, discuss how your company will use Enterprise Resource Planning (ERP) to integrate the various functions of an entity.

  Explain how users interact with a virtual scene displayed

Also explain how users interact with a virtual scene displayed with diC ferent output devices, such as two-dimensional and stereoscopic monitors.

  Construct the class association diagram for the requirements

ICT205e Systems Modelling in Object-Oriented Design & Analysis Assignment. Construct the class association diagram for the requirements.  It is not necessarily to include attributes. Ensure that you do not include any derived or redundant associati..

  Questionusing python programming 3 do not use many built in

questionusing python programming 3 do not use many built in functions mainly loops and list manipulations i.e. slicing

  Program to perform a series of complicated calculation

An engineer needed a program to perform a series of complicated calculations. He found a computer programmer capable of writing the program

  Discuss employ firewalls to mitigate insider threats

How would you employ firewalls to mitigate insider threats, Why would your approach work

  Main differences between selection and switch structure

What do you need to analyze when directing flow of information in each case? Give code examples for if/else structure and switch structure that produce the same result.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd