User Account

All Pages

How your team plans to perform the risk assessment

Assignment Help Risk Management
Reference no: EM131303230

Assignment

Successful information assurance programs apply industry standards and best practices to identify security risk and then form dynamic, crossfunctional teams, when required, to develop a plan to address these gaps in a way that is sensitive to the needs of key stakeholders.

To prepare for the Project in this Week, assume that the fictitious organization is large and growing rapidly, with both internal and external IT risks involving employees, customers, business partners, suppliers, and contractors. Clearly state any other assumptions you make.

You have been asked to assess risks associated with access and authorization in your organization. Develop a brief scenario that depicts a threat related to access and authorization. Below are two example use cases for a single scenario to guide you. You will need to develop your own scenario as well as your own use cases.

Use Case 1: Employee Provisioning-There needs to be an enterprise process for employee account provisioning. This should include setting up employees with the correct access rights, based on their role. When employees change roles, their access should be appropriately changed. Today, employees are given access to resources using Active Directory groups. When they go to a new job, the old access rights often are not removed like they should be, and this is a security concern.

Use Case 2: Separation of Duties-Administrators need a high level of access for their jobs. Today, their credentials allow them to administer servers and create accounts locally on the servers and in Active Directory. They can also edit log files and delete accounts and groups in Active Directory. This is a security concern, and roles should be set up so server administrators can do their job but not the job of an Active Directory administrator. The role that is allowed to create accounts should not be able to create new roles, and managers should approve new accounts. Keeping an administrator's access in line with his or her role is a best practice, and it may be required by regulations such as Sarbanes-Oxley.

Please develop at least two others and explain them.

Write a 5- to 7-page paper about the risk assessment process that you plan to perform. Cover the following points:

• Your introduction should include the following background information:
• The country where the headquarters is located
• The nature of the organization's operations
• The general organizational structure
• The country/ies in which the organization operates
• In describing the scenario and the two use cases you created, you should include the following regarding risk assessment planning:
• How your team plans to perform the risk assessment and identify the gap
• What other teams would be involved in a successful risk assessment
• How poor access and authorization management affects security risk and business processes
• Who the stakeholders are and the most important activities they may perform that involve accessing data and resources?

Reference no: EM131303230

Questions Cloud

Why did the fed participate in the bailout of ltcm : What does Lowenstein mean by "individual responsibility"? Connect the idea of individual responsibility to the concept of moral hazard.
The purchase of bear stearns so controversial : Why did Treasury Secretary Paulson want Bear Stearns to sell for such a low price?- Why was the decision by the Fed to orchestrate the purchase of Bear Stearns so controversial?
Compute the design-effective capacity utilization measures : A manufacturer of printed circuit boards has a design capacity of 1000 boards per day. The effective capacity, however, is 700 boards per day. Recently, the production facility has been producing 950 boards per day. Compute the design and effectiv..
What was the change in the unemployment rate : What was the change in the unemployment rate from its low in 2005 to its peak in 2009? How does this compare with Reinhart and Rogoff's average data from post-World War II recessions?
How your team plans to perform the risk assessment : How your team plans to perform the risk assessment and identify the gap? What other teams would be involved in a successful risk assessment?
What are the two most indebted countries : Find the World Factbook, and click on "Guide to Country Comparisons." Select "Public Debt," which ranks countries' debt-to-GDP ratios.
A potential outcome to the problem should also be identified : Identify and discuss the potential problem(s).Incorporate a measurement phase and an analysis phase for that problem.A potential outcome to the problem should also be identified.
Difference between a national bank and a state bank : What is the difference between a national bank and a state bank? Which banks have to be members of the Federal Reserve System?
How verify method can be used to plan out system effectively : Analyze how the verify method can be used to plan out system effectively and ensure that the number of transactions do not produce record-level locking while the database is in operation.

Reviews

Write a Review

Risk Management Questions & Answers

  Determine how much the bank should receive for selling

All rates are continuously compounded. Use the Black model to determine how much the bank should receive for selling this call for every $1 million of notional principal.

  Construct a framework for implementing improvements

Evaluate different managerial approaches used for systematic quality improvement and risk reduction.  Construct a framework for implementing improvements and reducing risk in complex healthcare systems

  Develop an erm framework and strategy for presentation

Develop an ERM Framework and Strategy for presentation to a Government Risk Funding Committee - Determine main reason for failure and devise a strategy to implement certain controls to rectify key areas of ERM failure

  Explain property damage liability

What limits would you choose on the first seven coverages and what deductibles would you choose on the physical damage coverages and explain when you might have a need for life insurance. What type of policy would you choose and why?

  Define diversification and its necessity in risk management

Define diversification and its necessity in risk management. Discuss at least 5 steps to diversify the card business. Please give at least 6 suggestions of how and where funds can be allocated for new investments.

  Why it is important to consider different risk measures

Why it is important to consider different risk measures? Which risk measures would you consider in the analysis of your own portfolio given your preferences as an investor? How many stocks. Based on the article linked above.

  A firm has total assets with a market value of 1500000 it

a firm has total assets with a market value of 1500000. it has one issue of 1000 zero coupon bonds outstanding each

  Determine what the weighted average cost of capital

Determine what the weighted average cost of capital (WACC) is for your chosen company. Determine what, in your opinion, the optimal mix of debt and equity is for your company.

  What is global green books process

What impacts could these requested changes have on the budget - Could these requested changes also impact the schedule? If so, how?

  Which aspects or areas of a project plan

Which aspects or areas of a project plan are more likely to be affected by risk responses? How do risk responses affect the different areas of a project plan? Give an example of a situation in which you believe a highly perceptible risk response plan..

  Define risks to your plan and impact of stakeholders

Your list of the stakeholders whose approval/support will be necessary for your success. Take the time to ensure your list of stakeholders is as complete as possible.

  Discharge planning for stroke patients

An acute care hospital has found that having geriatric nurse specialists take charge of discharge planning for stroke patients reduces length of stay from 5.4 days to 5.2 days.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd