User Account

All Pages

Develop a system security plan for an information system

Assignment Help Computer Network Security
Reference no: EM13778298

Every organization must create a cybersecurity profile (system security plan (SSP)) for all of its major and minor information systems. The cybersecurity profile documents the current and planned controls for the system and addresses security concerns that may affect the system's operating environment. The cybersecurity profile includes security categorizations and security controls, and is included in the certification and accreditation package. For this project, you will create a sample cybersecurity profile describing the security posture of your selected organization.
Learning Objectives

After completing this project, students will be able to

Select and incorporate appropriate management, technical, and operational security controls into a system security plan.

Integrate and evaluate management, technical, and operational controls in the context of an information security program.

Develop a sample System Security Plan for an information system.

Deliverable

Your sample cybersecurity profile should be at least five full pages, double spaced, 1-inch margins, in New Times Roman 12-pitch font, with a cover page (name, course number, date, title of paper) and a reference page. The cover page and reference page are not included in the five-page minimum. Papers not meeting the five full-page minimum will lose points. You must have at least three sources, correctly formatted per APA guidelines. Submit your research paper to the appropriate TurnItIn assignment area by the due date.
Detailed Description of Learning Activity

Read NIST Special Publication 800-53 Rev 4 Guide for Assessing the Security Controls in Federal Information Systems and Organizations, Building Effective Security Assessment Plans.

Review the sample System Security Plan template in the Project Description area of the classroom.

Select one management, one technical, and one operational control from the eighteen family controls that apply to your selected organization (i.e., AU - Audit and Accountability).

Describe each family control. Include why these controls are required.

For each family control, select two associated family identifiers (i.e., AU-3 Content of Audit Records).

Describe each associated family identifier, describe the implementation status as it relates to your selected organization's security program, and describe how your selected organization implements the family identifer.

Write your sample cybersecurity profile. At a minimum, the profile should include

1. an Introduction that includes the purpose of your paper and introduces security profiles as they relate to your selected organization.

2. an Analysis section that includes Items 3-6 above.

3. a Conclusion that summarizes what you wrote.

Reference no: EM13778298

Questions Cloud

The responsibility of the cio : Do we really need a major change in the way the IS function is structured...are the necessary changes just minor modifications to accommodate normal growth in computer uses...what are your thoughts / research in this regard?
Communication and negotiation strategy : What cultural and ethnic considerations should steer your team's communication and negotiation strategy? How would you integrate those considerations into your negotiation?
Define a function procedure named reverse name : Define a function procedure named GenerateInvoiceNumber that will generate and return an invoice number consisting of the capitalized - Define a function procedure named Reverse Name that will reverse the customer name.
Rationale for and potential bias in qualitative research : A rationale for using qualitative research methods instead of quantitative research. A statement of how the worldviews and paradigms of the researcher may create bias when applying qualitative research to the given scenario.
Develop a system security plan for an information system : Develop a sample System Security Plan for an information system. Select and incorporate appropriate management, technical, and operational security controls into a system security plan.
Sympathetic division of the autonomic nervous : A work-related accident left Bob with a paralyzed left arm and an inability to recognize the left side of his visual field. Bob's condition is called:
Develop the flow diagram : Develop the flow diagram of the information and any control elements needed to ensure proper access for the information.Submit a draft PowerPoint presentation with the following elements
What are the pros and cons of a learning center for students : What are the pros and cons of a learning center for students who struggle with math? Defend your response with references.
Advantages of a database management to file processing : How will wireless information appliances and services affect the business use of the Internet and the Web? Explain.

Reviews

Write a Review

Computer Network Security Questions & Answers

  Creating a switchboard design with control buttons

Construct a detail report that will display all courses in alphabetical order, with course name and instructor name in a group header; the Social Security number, name, and telephone number

  To ensure the security of the files used by the new web site

To ensure the security of the files used by the new Web site, files need to access controls that limit which users can view and execute them. To further your understanding of file permissions, describe in detail these 5 file listings, explain a..

  Primary steps to database design

We explored the 2-primary steps to database design - conceptual design and physical design. We discussed importance of having representatives from all key stakeholders in conceptual design to ensure accuracy of the design.

  Discussion on training

This issue of training is specific to each company, so there is no one size fits all plan. I do believe in training staff just before a new system is deployed,

  Organizations security policies and procedures

Analyze the chosen organization's security policies and procedures, and provide an opinion of whether or not its policies and procedures are strong from an information security standpoint

  Represent the encryption of plaintext

Let DES(x, K) represent the encryption of plaintext x with key K using the DES cryptosystem. Suppose y = DES(x, K) and y' = DES(c(x), c(K)), where c(·) denotes the bitwise complement of its argument

  Total cost of ownership return on investment

Total Cost of Ownership Return on Investment. Explain each of these approaches, state your preference, and analyze the advantages and disadvantages of each with a focus on IT investments.

  Why are scada systems particularly vulnerable to cyber treat

Why are SCADA systems particularly vulnerable to cyber treats? C. Using the X.805 security framework as a reference, discuss the SCADA security requirements for an electric, water or oil refinery enterprise.

  Groups of people involved with computer security

What are the many groups of people who are involved with computer security? Name the groups and elaborate on their functions.

  Find information about threats and malware active today

From the first e-Activity, analyze the selected two (2) resources that are available for security professionals to find information about threats and / or malware active today

  What is the ciphertext generated by encryption of character

What is the ciphertext (in binary form) generated by the encryption of character D? How is plaintext for this encrypted D recovered?

  How many fiu webpages contain admin in the url

Search to find how many FIU webpages contain admin in the URL (hint: must combine multiple directives) Record how many hits found and explain why this would be valuable in conducting reconnaissance, what do we learn or find out? Try

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd