Reference no: EM132475217 , Length: 2000 Words
ITC596 IT Risk Management Assignment - Charles Sturt University, Australia
Learning Outcomes - This assessment task will assess the following learning outcome's:
Be able to justify the goals and various key terms used in risk management and assess IT risk in business terms.
Be able to apply both quantitative and qualitative risk management approaches and to compare and contrast the advantages of each approach.
Be able to critically analyse the various approaches for mitigating security risk, including when to use insurance to transfer IT risk.
Be able to critically evaluate IT security risks in terms of vulnerabilities targeted by hackers and the benefits of using intrusion detection systems, firewalls and vulnerability scanners to reduce risk.
Assessment Task - The assignment involves you producing a comprehensive risk report for ABC Fitness Gym given a particular scenario as below. You will be required to offer professional views based on a well established research.
Technical Risk Analysis
Consider you have been hired by the ABC Fitness Gym to analyse the technology environment and conduct a technical risk analysis. You are to prepare a management report applying everything you learnt in the subject. The report should include at a minimum:
An Executive Summary at the beginning of the report which provides a clear statement of the technology project that is being assessed, and an overview of your recommendations to management as to the merits of the project based on your risk assessment.
A risk assessment based on assets, threats, vulnerabilities and consequences derived from an IT control framework and any existing industry risk recommendations for the project. Identify and discuss the key threats. What could be done to mitigate the risks and their impact on the organisation?
Provide a brief summary of the protection mechanisms you would employ whether they be people, culture or technology.
Identify any gaps which you believe require further analysis and offer a rationale as to why.
Note - Report should be no more than 6 pages.
Attachment:- IT Risk Management Assignment File.rar