User Account

All Pages

Describe the response to the risk

Assignment Help Computer Engineering
Reference no: EM132464372

Assignment: Implement a security framework to identify and close gaps between an organization's current cybersecurity status and its target (future) cybersecurity status. Make sure to align to an appropriate regulation (e.g., PCI DSS, HIPAA, SOX, GLBA). In CYB-650, the NIST Cybersecurity Framework was utilized, and therefore it cannot be utilized for this assignment.

Develop a report that addresses the following:

Organizational Objectives and Priorities

Question 1. Current Framework Compliance Status: Describe the current cybersecurity environment, such as processes, information, and systems directly involved in the delivery of services. Describe the current risk management practices, threat environment, legal and regulatory requirements, business/mission objectives, and organizational constraints using the framework identified. Include a diagram related to the common workflow of information and decisions at the major levels within the organization.

Question 2. Future Cybersecurity Policy Implementations: Describe the critical cybersecurity needs that should be in place to ensure compliance with the appropriate regulation (e.g., PCI DSS, HIPAA, SOX, GLBA) and then prioritize organizational efforts, business needs, and outcomes.

Operational Compliance and Risk Assessment

Question 1. Cybersecurity Risk Assessment: Describe the likelihood of risks occurring and the resulting impact. Identify threats to, and vulnerabilities of, those systems and assets. Express risks both internally and externally. Determine the acceptable level of risk (risk tolerance). Describe the response to the risk. Describe how identified risks are managed and resolved. Include an Organizational Risk Assessment Chart.

Question 2. Privacy Risk Management: Describe how the business is integrating privacy laws and regulations, prioritizing, and measuring progress.

Question 3. Compliance Gaps: Describe the type of audits that should be performed in order to keep a consistent measure of risk. Determine what type of gap analysis should be performed in order to properly identify the security elements and variables within the environment that pose the most risk. Formulate a cybersecurity governance strategy that establishes mitigation plans to achieve security objectives.

Question 4. Web Portal Diagram: Create a web portal data flow diagram of the hypothetical organization's operational environment using Visio or a similar diagramming software. Within the web portal data flow diagram, students will show how the web portal is compliant. The web portal data flow diagram must:

a) Display the organization's technical requirements (related and unrelated applications, services, and links);

b) display the compliance of associated servers, routers, access-control components, data storage, internal and external data communication, data backup, e-mail servers, and so forth;

c) identify related systems and assets, regulatory requirements, and overall risk approach; and

d) demonstrate each IT task to the next as aligned to regulations/compliance (e.g., start with the user logging in, and then go through each step and how it is validated.

Reference no: EM132464372

Questions Cloud

Hectograms and a standard deviation of hectograms : Assuming that the birth weights are normally distributed, how many weighted between 12 and 24 hectograms?
Type of variable is the number of auto accidents : What type of variable is the number of auto accidents reported in a given month?
Summarize the decision involved in developing an advertising : Summarize the major decisions involved in developing an advertising campaign. How might Qantas have approached its advertising campaign differently?
What is the probability that on any given day : A student walking to school has found that it takes 25 minutes on average. Given that the standard deviation of the trip to school is 3 minutes
Describe the response to the risk : Cybersecurity Risk Assessment: Describe the likelihood of risks occurring and the resulting impact. Identify threats to, and vulnerabilities of, those systems.
Compare and contrast theory x and theory y : Describe each theory before comparing their strengths and weaknesses and Discuss in the context of an example, though be careful not to disclose identifiable
Assess the probable difficulties of the it executives : Assess the probable difficulties of the IT executives at St. Luke's view wireless networking as key lever in their quest to increase clinician productivity.
Determine the decision rule for rejecting null hypothesis : Determine the decision rule for rejecting the null hypothesis, H0.
How are strategic planning used to facilitate organization : How are strategic planning and the analysis process used to facilitate an organization's ability to initiate, formulate and implement strategies?

Reviews

Write a Review

Computer Engineering Questions & Answers

  Write a program to implement a static method

A company uses public Internet to carry its phone service. The voice data will be encrypted before sending to Internet.

  How many function of three variable are there of n variables

There exist four Boolean functions of a single variable and 16 functions of two vari- ables. How many functions of three variables are there? Of n variables?

  Write a program that reads in a sequence of characters

Write a program that reads in a sequence of characters entered by the user and terminated by a period ('.').

  Design a suitable interface between a computer and printer

A printer has an 8-bit parallel Centronics interface that consists of an 8-bit parallel data bus and three control lines. DSTB* is an active-low pulsed data.

  Write a python program to add ded at the end of a given word

Write a Python program to add 'ded' at the end of a given word. If the given string already ends with 'ded' then add 'ing' instead.

  Calculate how many years since person was hired

Your program should be able to list all records or one or more selected records. It should also calculate how many years since person was hired.

  Prove that finding an acceptable arrangement

"Marge may not point her arms up while Ned, Apu, and Smithers point their arms down." Prove that finding an acceptable arrangement of arm positions is NP-hard.

  Build an application that produces non-personalized greeting

Build an application that produces a simple non-personalized greeting to the user. The application must count the number of times it is run.

  Create pivot tables and pivot charts to analyze sales

In this project you will create pivot tables and pivot charts to analyze sales, customer and product data. Cleanse the data- Open Pivot Analysis Raw Data and save it as Pivot Analysis your name completed. Review and interpret the data. Resize and/or ..

  Discuss the current status and future trend

For your term paper, you are required to pick one industry or field and discuss how big data, data mining, business data analytics, business intelligence.

  What are the different classes of ip addresses

What are the different classes of IP addresses? What is the File Transfer Protocol used for? What is the main function of Telnet?

  Questionwhat are this errorsavaiofilenotfoundexception

questionwhat are this errors?ava.io.filenotfoundexception hangmanhangmanhandoutinput.txt the system cannot find path

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd