User Account

All Pages

Determining the likelihood and impact of occurrence

Assignment Help Business Management
Reference no: EM13307095

Case Study: Determining the Likelihood and Impact of Occurrence

One of the most challenging aspects of a risk assessment is determining the likelihood of occurrence and impact. NIST SP 800-30 defines the likelihood of occurrence as follows: A weighted risk factor based on an analysis of the probability that a given threat source is capable of exploiting a given vulnerability (or set of vulnerabilities). For adversarial threats, an assessment of likelihood of occurrence is typically based on: (i) adversary intent; (ii) adversary capability; and (iii) adversary targeting. For other than adversarial threat events, the likelihood of occurrence is estimated using historical evidence, empirical data, or other factors. Organizations typically employ a three-step process to determine the overall likelihood of threat events:

Image Organizations assess the likelihood that threat events will be initiated (for adversarial threat events) or will occur (for non-adversarial threat events).

Image Organizations assess the likelihood that the threat events, once initiated or occurring, will result in adverse impacts or harm to organizational operations and assets, individuals, other organizations, or the nation.

Image Organizations assess the overall likelihood as a combination of likelihood of initiation/occurrence and likelihood of resulting in adverse impact.

Identify two threat sources-one adversarial and one non-adversarial-that could exploit a vulnerability at your school or workplace and would result in disruption of service. An adversarial event is the intentional exploitation of a vulnerability by criminal groups, terrorists, bot-net operators, or disgruntled employees. A non-adversarial event is the accidental exploit of a vulnerability, such as an undocumented process, a severe storm, or accidental or unintentional behavior.

1. For each (using your best judgment), answer the following questions:

a) What is the threat?

b) What is the threat source?

c) Is the source adversarial or non-adversarial?

d) What vulnerability could be exploited?

e) How likely is the threat source to be successful and why?

f) If the threat source is successful, what is the extent of the damage caused?

2. Risk assessments are rarely conducted by one individual working alone. If you were hosting a workshop to answer the preceding questions, who would you invite and why?

Reference no: EM13307095

Questions Cloud

Department of health and human services : The United States Department of Health and Human Services (DHHS) is absolutely huge, representing an $879 billion budget and 300 separate programs. DHHS carries out these programs through eleven public health service operating divisions. Select any t..
Analyze the situation using hofstede''s original four dimen : 1.Individually: Select a situation that is currently in the news that involves two or more cultures. Analyze the situation using Hofstede's original four dimensions, plus the universalism/particularism and task/relationship dimensions.
Write a program that requests a person weight and height : Write a program that requests a person's weight and height as input and displays the person's body mass index.
Compute the difference in design curve lenghts for designs : The curve is to be redesigned for a 70 mph design speed in the year of 2025. Vehicle braking technology has advanced so that the recommended design deceleration rate is 25% greater that the 2011 value used to develop
Determining the likelihood and impact of occurrence : Case Study: Determining the Likelihood and Impact of Occurrence
Determine how many unique combinations can be formed : A. List of all possible resistance combinations that can be formed with these springs. indicate drawings and calculation of each unique configuration. B. How many unique combinations can be formed
What is the rise in water surface : A cylindrical container filled with water having a cross section 0.04 m^2 is placed on a scale, What is the rise in water surface after the ball is put in the water compared to before
Prepare an er diagram for the database : Prepare an ER diagram for the database described below(using crows foot notation). Be sure to identify all required entities, attributes, and relationships (including cardinalities). State any assumptions you make, and indicate a primary key for e..
What is a predefined control event : What is a predefined control event? Discuss its usage in programming.

Reviews

Write a Review

Business Management Questions & Answers

  Product supplied by a hospital organization

Explain what is the service or product supplied by a hospital organization and what is the market structure for the market in which this firm supplies this product

  Analytical discussion of legal issues

A detailed description of the topic-An analytical discussion of the legal issues that are involved. This would entail examining the issue from different viewpoints.

  Resolving conflict

List some of the ways leaders resolve conflict in organizations and which of these ways have you found to be most effective?

  Types of unemployment

What are the different types of unemployment and how do they affect the economy? What is inflation?

  Discuss the wars of german unification

The 3rd and final phase of what are known as German Wars of Unification came to an abrupt end. Paris had fallen in January; and German states had proclaimed their union under Prussian Kaiser,

  Characteristics of a transformational leader

Should a manager use all three of these styles situationally? What challenges might a manager, trying to meet the expectations of each style, expect to encounter?

  Personal learning style evaluation example

expalin one or two types of multiple intelligences you feel are strongest for you and tell how these strengths have enriched your life

  Equilibrium analysis

Do you think the chances are better or worse for achieving an equilibrium outcome if the two players know each other and explain. Do you think it matters whether the two players have played the game before

  Define what the various objectives of a business

Do you approve with the statement that- the attendant of its purposes is the principal reason for the reason of a business? If therefore define what the various objectives of a business in the private sector might be and describe the roles

  Situational and contingency theories

Clearly explain Robert Nardelli's leadership style in terms of Leadership Theory, incorporating the following theories within your paper ?Trait Theory ?Behavioral Theory ?Situational and Contingency Theories

  Illustrate what happens if the data entered is wrong

Illustrate what happens if the data entered is wrong? Analytical tools suffer from the GIGO (garbage in, garbage out) weaknesses and thus an analysis based on these numbers can be flawed.

  Political risk factors

Determine the main political risk factors that could jeopardize business operations?

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd