User Account

All Pages

How your team plans to perform the risk assessment

Assignment Help Risk Management
Reference no: EM131303230

Assignment

Successful information assurance programs apply industry standards and best practices to identify security risk and then form dynamic, crossfunctional teams, when required, to develop a plan to address these gaps in a way that is sensitive to the needs of key stakeholders.

To prepare for the Project in this Week, assume that the fictitious organization is large and growing rapidly, with both internal and external IT risks involving employees, customers, business partners, suppliers, and contractors. Clearly state any other assumptions you make.

You have been asked to assess risks associated with access and authorization in your organization. Develop a brief scenario that depicts a threat related to access and authorization. Below are two example use cases for a single scenario to guide you. You will need to develop your own scenario as well as your own use cases.

Use Case 1: Employee Provisioning-There needs to be an enterprise process for employee account provisioning. This should include setting up employees with the correct access rights, based on their role. When employees change roles, their access should be appropriately changed. Today, employees are given access to resources using Active Directory groups. When they go to a new job, the old access rights often are not removed like they should be, and this is a security concern.

Use Case 2: Separation of Duties-Administrators need a high level of access for their jobs. Today, their credentials allow them to administer servers and create accounts locally on the servers and in Active Directory. They can also edit log files and delete accounts and groups in Active Directory. This is a security concern, and roles should be set up so server administrators can do their job but not the job of an Active Directory administrator. The role that is allowed to create accounts should not be able to create new roles, and managers should approve new accounts. Keeping an administrator's access in line with his or her role is a best practice, and it may be required by regulations such as Sarbanes-Oxley.

Please develop at least two others and explain them.

Write a 5- to 7-page paper about the risk assessment process that you plan to perform. Cover the following points:

• Your introduction should include the following background information:
• The country where the headquarters is located
• The nature of the organization's operations
• The general organizational structure
• The country/ies in which the organization operates
• In describing the scenario and the two use cases you created, you should include the following regarding risk assessment planning:
• How your team plans to perform the risk assessment and identify the gap
• What other teams would be involved in a successful risk assessment
• How poor access and authorization management affects security risk and business processes
• Who the stakeholders are and the most important activities they may perform that involve accessing data and resources?

Reference no: EM131303230

Questions Cloud

Why did the fed participate in the bailout of ltcm : What does Lowenstein mean by "individual responsibility"? Connect the idea of individual responsibility to the concept of moral hazard.
The purchase of bear stearns so controversial : Why did Treasury Secretary Paulson want Bear Stearns to sell for such a low price?- Why was the decision by the Fed to orchestrate the purchase of Bear Stearns so controversial?
Compute the design-effective capacity utilization measures : A manufacturer of printed circuit boards has a design capacity of 1000 boards per day. The effective capacity, however, is 700 boards per day. Recently, the production facility has been producing 950 boards per day. Compute the design and effectiv..
What was the change in the unemployment rate : What was the change in the unemployment rate from its low in 2005 to its peak in 2009? How does this compare with Reinhart and Rogoff's average data from post-World War II recessions?
How your team plans to perform the risk assessment : How your team plans to perform the risk assessment and identify the gap? What other teams would be involved in a successful risk assessment?
What are the two most indebted countries : Find the World Factbook, and click on "Guide to Country Comparisons." Select "Public Debt," which ranks countries' debt-to-GDP ratios.
A potential outcome to the problem should also be identified : Identify and discuss the potential problem(s).Incorporate a measurement phase and an analysis phase for that problem.A potential outcome to the problem should also be identified.
Difference between a national bank and a state bank : What is the difference between a national bank and a state bank? Which banks have to be members of the Federal Reserve System?
How verify method can be used to plan out system effectively : Analyze how the verify method can be used to plan out system effectively and ensure that the number of transactions do not produce record-level locking while the database is in operation.

Reviews

Write a Review

Risk Management Questions & Answers

  Preferred method of calculating a contingency reserve

What is the preferred method of calculating a contingency reserve

  How to deal with dementia condition

How to deal with dementia condition.

  1 why is it important to consider cannibalization in

1 why is it important to consider cannibalization in situations where a company is considering adding substitute

  Explain why a chooser option is less expensive than straddle

For each outcome at t, there are two possible outcomes at T, ST 2" X or ST X. Explain why a chooser option is less expensive than a straddle.

  Slope of the budget line and the indifference curve

Explain and include a graph in your answer. (Hint: use the slope of the budget line and the indifference curve.) c. If instead, P-apples=$2, might Bill buy any oranges? Explain and include a graph.

  Define risk profile and cumulative risk profile for strategy

Develop risk profile and cumulative risk profile for each strategy Indicate which strategy dominate the others and explain why. Indicate type of the dominance

  Identify the reasons for difference in interest rate charged

Investigate and identify the reasons for the difference in interest rates charged by various banks and financial institutions. Do you believe that tight control on overheads will enable a bank or a financial institution to be price competitive?

  Risk tolerance and factors in setting risk tolerance

Define risk tolerance and factors in setting risk tolerance and define limitations in risk tolerance and potential outcomes.

  Discuss the key legal investigations

Discuss the key legal investigations that may involve a healthcare facility and its staff. Be sure to include the concepts of subpoena duces tecum and subpoena ad testificandum in your answer.

  Calculate the first net payment on the swap

Determine the fixed rate on the swap. Calculate the first net payment on the swap. Assume that it is now 30 days into the life of the swap. The new term structure of LIBOR is as follows:

  Rrsp is currently valued at 200000 his asset allocation is

rrsp is currently valued at 200000. his asset allocation is 10 liquid 40 fixed income 50 equity. for every change in

  Analyze all the risks associated with a given option

Risk is measured by considering the potential amount of loss and the probability of the loss occurring. A manager will identify and analyze all the risks associated with a given option being considered.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd