Reference no: EM131180017
In Assignment 1, a videogame development company recently hired you as an Information Security Engineer. After viewing a growing number of reports detailing malicious activity, the CIO requested that you draft a report in which you identify potential malicious attacks and threats specific to your organization. She asked you to include a brief explanation of each item and the potential impact it could have on the organization.
After reviewing your report, the CIO requests that you develop a follow-up plan detailing a strategy for addressing all risks (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance) identified in Assignment 1. Further, your plan should identify controls (i.e., administrative, preventative, detective, and corrective) that the company will use to mitigate each risk previously identified.
Write a four to five (4-5) page paper in which you:
For each of the three (3) or more malicious attacks and / or threats that you identified in Assignment 1, choose a strategy for addressing the associated risk (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance). Explain your rationale.
For each of the three (3) or more malicious attacks and / or threats identified in Assignment 1, develop potential controls (i.e., administrative, preventative, detective, and corrective) that the company could use to mitigate each associated risk.
Explain in detail why you believe the risk management, control identification, and selection processes are so important, specifically in this organization.
Draft a one (1) page Executive Summary that details your strategies and recommendations to the CIO (Note: The Executive Summary is included in the assignment's length requirements).
Use at least three (3) quality resources in this assignment (no more than 2-3 years old) from material outside the textbook. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; references must follow APA or school-specific format. Check with your professor for any additional instructions.
Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required page length.
The specific course learning outcomes associated with this assignment are:
Explain the concepts of information systems security as applied to an IT infrastructure.
Describe the principles of risk management, common response techniques, and issues related to recovery of IT systems.
Describe how malicious attacks, threats, and vulnerabilities impact an IT infrastructure.
Explain the means attackers use to compromise systems and networks, and defenses used by organizations.
Use technology and information resources to research issues in information systems security.
Write clearly and concisely about network security topics using proper writing mechanics and technical style conventions.
|
Describe in words the physical nature of the flow
: Using 2DFlowPlus, investigate the flow pattern resulting by addition of one vortex (K = -0.1) at (X = +3.5, Y = 0) and another (K = +0.1) at (X = +4.5, Y = 0). Describe in words the physical nature of the flow.
|
|
Greatest personal obstacles to obtaining funds
: Assume that you are starting a business for the first time. - What do you belim are the greatest personal obstacles to obtaining funds for the new venture? Why?
|
|
Counting variable by a factor of two in cycle
: Write a for loop that prints the values 1 2 4 8 16 32 64 by increasing the value of a counting variable by a factor of two in each cycle.
|
|
Different predictions of income development
: What impact would the different predictions of income development, inflation rate development and tariff rate development have on the potential demand of Schmeckt Gut?
|
|
Explain the concepts of information systems security
: Describe the principles of risk management, common response techniques, and issues related to recovery of IT systems. Describe how malicious attacks, threats, and vulnerabilities impact an IT infrastructure.
|
|
Which it swaps variable rate payments of libor plus
: Argus Equipment Corp. has just issued fixed rate debt at 9.75 percent. Yet, it prefers to convert its financing to incur a floating rate on its debt. It engages in a three-year interest rate swap in which it swaps variable rate payments of LIBOR plus..
|
|
Explain whether this policy a good idea
: Hughes Paint is considering enacting a policy that will forbid all but security analysts to posses and use security tools such as scanning tools, password crackers, disassemblers, sniffers, and code analyzers.
|
|
Determine how nearly into the wind the rotorship could sail
: Two 15-m high rotors 3 m in diameter are used to propel a ship. Estimate the total longitudinal force exerted upon the rotors when the relative wind velocity is 25 knots, the angular velocity of the rotors is 220 revolutions per minute and the win..
|
|
Assuming the expected cash flows and cost of capital
: Assuming the expected cash flows and cost of capital you use in arriving at your estimate of the maximum value of the company is accurate, do you think a foreign investor should use the same cash flows and cost of capital?
|