Hey guys! Use the services of Experts Mind, when you stuck for assignment you will get assured help from Experts Mind. Exact help you will be getting from them.

Impact Analysis Assess your business processes Determine which areas are vulnerable What are the potential losses if those processes go down for a day, a few days or a week This involves six general steps: Identify the scope of the plan. Identify key business areas. Identify critical functions. Identify dependencies between various business areas and functions. Determine acceptable downtime for each critical function. Create a plan to maintain operations

1. Introduction a. why choose the company b. background of the company 2. Risk identification a. use ERM approach(eg. timing, effect on company's borrowing power) b. the goal, like what parts of the company would be affected the most c. probability (normal distribution, binomial model) and how is the impact (e.g how much loss per day, calculated by profit/365 days in a year) d. PPRR model: 1. Prevention 2. Preparedness 3.Response 4. recovery 3. Business Continuity Planning : 1. Program 2. People 3. Process 4. Premises 5. Provider 6. profile 7. performance

Issues to consider Risk and Consequences - Brainstorm What risks can be associated with the business? Will the risks affect the operation, resourcing or revenue? Probability - the table should contain a probability of the risk occurring. This can be a percentage or a number. Impact - what is the impact to the business if the risk should occur? Build a scale appropriate for the project - smaller projects can use a simple impact of 1-5 (minimal to major) whereas larger projects may want a more formal scale. Mitigation Response - a brief overview of mitigation steps to eliminate or reduce the risk.

1. The assignment is not describing theories but to apply theories on practical case 2. Choose a company and explain why choose this company on cyber risk 3. how to use corporate risk management theory to prevent and solve the cyber risk 4. business continuity planning 5. need to add a table of risk probability, explain and analyse something like expected loss. probability can use normal distribution / binomial model, can use some virtual numbers to explain

The PPRR model consists of four parts: Prevention - take actions to reduce or eliminate the likelihood or effects of an incident. Preparedness - take steps before an incident to ensure effective response and recovery. Response - contain, control or minimise the impacts of an incident. (incident response team) Recovery - take steps to minimise disruption and recovery times after an incident (recovery plan)

While this refers to the UK the threat of a cyber risk is global. Therefore to reassure the senior management you are required to identify the cyber risk facing your organisation and develop a risk management plan including business continuity planning for your organisation to enable the organisation to continue trading in the event of the risk occurring. "to identify the cyber risk facing your organisation" 1. specific organization is required 2. identify the cyber risk is required 3. and develop a risk management plan including business continuity planning for your organisation to enable the organisation to continue trading in the event of the risk occurring.

29551680_10854e7df-f514-4900-a48d-777512c55965.jpg 29551623_2CRM hint 1.ppt 29551623_3hint 2.pptx

Risk Management Plan risk identification – pre incident risk assessment – during incident risk resolution – post incident and recovery

Websites that will provide relevant material to support assignment (Word Count 1700 words approximately) Marking criteria >70% All the points have been well addressed; appropriate and clear use of references; well supported argument with evidence; appropriate use of examples; Good presentation and clear logical discussion at each of the three stages of the plan; 69% - 60% All the required points have been fully addressed; clear use of references; argument are supported by evidence; appropriate use of examples; Risk Management plan to cover all the stages involved. Good clear presentation 59% - 50% All the required points have been addressed; some reference used; argument are supported by some relevant evidence; there are some examples but not fully discussed. 49% - 40% Some points has not been addressed; little reference used; some relevant examples used; argument is not well supported by relevant evidence; 39% - 30% Little reference used; no relevant examples used; argument are not supported by relevant evidence; <30% No reference used; no relevant examples used; argument are not supported by relevant evidence;