User Account

All Pages

Description of the function and boundaries of the system

Assignment Help Other Subject
Reference no: EM13325141

Description of the function and boundaries of the about theHospital, Inc. InfoSec Training Program system.

Instructions

The objective of a Risk Analysis (aka Certification and Accreditation -C&A) of an Information System is o demonstrate to the accrediting authority that everything possible has been accomplished to reduce risk to the IT system to an acceptable level. To do this, an information security specialist (or team) would conduct a complete risk analysis of the system to include vulnerabilities, threats, controls for mitigation, measurements, and any regulatory or policy requirements (governance) for the system.For this assignment, you are to conduct a risk assessment and document it in a certification package to be presented to the accreditation authority (AA) that the system is acceptable to operate in theOrganization network. Using the information from projects that you have done in this class create C&A packages normally include:

1. Cover Page
2. Executive summary describing the system
3. Description of the function and boundaries of the system
4. An extensive review of the vulnerabilities, threats, and threat sources
5. Annual Loss Expectancy (ALE) for each item in 4
6. Identification of mediating controls for each item in 4
7. Description of appropriate effectiveness measurements for each item in 6
8. Plan of Action and Milestones (POAMs) for any unmediated threat
9. A summary statement making a recommendation to the AA to authorize the system tooperate (or not).
10. A power point presentation you would use to brief the AA about the informationsecurity posture of the system.

In the end, your C&A package will provide proof that your organization exercised due diligence towardprotecting its information assets. You must demonstrate that the system security meets are regulatoryand policy requirements and that any controls in place have mitigated the risk of operating the systemhas been reduced to an acceptable level (or not).

Note: NIST SP 800-37, Rev 1 provides an outline of the entire C&A process. Also use NIST 800-53R3.

Reference no: EM13325141

Questions Cloud

Compute the direction of the electric field : 10-nC point charge is located at the center of a thin spherical shell of radius 8.0 cm carrying -20 nC distributed uniformly over its surface. What is the magnitude of the electric field 2.0 cm from the point charge
Find out the ph of nh3 solution : Determine the pH of (a) a 0.20 M NH3 solution, (b) a solution that is 0.20 M in NH3 and 0.30 M NH4Cl
Contrast their management styles and philosophies : Entrepreneurship has clearly transformed the world economy. Choose three successful entrepreneurs, and use research to compare and contrast their management styles and philosophies. Feel free to use local entrepreneurs—or even family members. If you ..
Motivation method factor in their overall leadership theory : What are some of the best methods when motivating assignees and why are those methods successful? How does a company have selected motivation method factor into their overall leadership theory?
Description of the function and boundaries of the system : Description of the function and boundaries of the about theHospital, Inc. InfoSec Training Program system.
Identify an industry that the internet has transformed : Identify an industry that the Internet has transformed or destroyed. Then think of a new industry that the Internet has created. What are the reasons behind the changes? How do you anticipate that technology will transform business in the future?
Define kilocalories and kilojoules rather then calories : We most often express heat as kilocalories and kilojoules rather then calories and joules. When 1 pound of fat is burned in the body,9.4 kilocalories of energy is produced. Express that as a) calories b)kilojoules
Purpose of the business in terms of the product : Surveys have consistently shown 60% of Americans would like to start their own business, but not nearly as many act on this desire. One of the first things a person who is serious about moving forward on this notion should do is think critically abou..
Define what volumes of 0.150 m acetic acid : What volumes of 0.150 M acetic acid and 0.065 M NaOH solutions must be mixed to prepare 1.00L of a buffer solution of pH 4.50 at 25C.(Show all work for 5 stars)

Reviews

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd