Chat with us, powered by LiveChat Would Like To Have 12 Page Graduae Level Course Work On 'Info SecRisk Assessment Based On NIST 800-30 Of Http://Health.Utah.Gov/ | Writedemy

Would Like To Have 12 Page Graduae Level Course Work On ‘Info SecRisk Assessment Based On NIST 800-30 Of Http://Health.Utah.Gov/

Would Like To Have 12 Page Graduae Level Course Work On ‘Info SecRisk Assessment Based On NIST 800-30 Of Http://Health.Utah.Gov/

Your report should be 12 pages, double-spaced, exclusive of cover, title page, table of contents, endnotes and bibliography. Your paper must use APA formatting with the exception that tables and figures can be inserted at the appropriate location rather than added at the end. Submit the report in your Assignment Folder prior to the submission deadline.

The Risk Assessment Report should be a polished, graduate-level paper. Be sure to carefully cite (using correct APA-Style in-line citations) all sources of information in the report.

 

The objective of this assignment is to develop a Risk Assessment Report for a company, government agency, or other organization (the “subject organization”). The analysis will be conducted using only publicly available information (e.g., information obtainable on the Internet, company reports, news reports, journal articles, etc.) and based on judicious, believable extrapolation of that information. Your risk analysis should consider subject organization information assets (computing and networking infrastructure), their vulnerabilities and legitimate, known threats that can exploit those vulnerabilities. Your assignment is then to derive the risk profile for the subject organization. Your report should also contain recommendations to mitigate the risks.

 

There is a wealth of business-oriented and technical information that can be used to infer likely vulnerabilities and assets for an organization. It is recommended that students select their organizations based at least in part on ease of information gathering, from a public record perspective.

 

Steps to be followed:

 

1. Pick a Subject Organization: Follow these guidelines:

 

a.    No insider or proprietary information. All the information you collect must be readily available for anyone to access. You will describe in your proposal how you intend to collect your information.

b.    You should pick a company or organization that has sufficient publicly available information to support a reasonable risk analysis, particularly including threat and vulnerability identification.

 

2. Develop Subject Organization Information: Examples of relevant information includes:

 

a.    Company/Organization name and location

b.    Company/Organization management or basic organization structure

c.    Company/Organization industry and purpose (i.e., the nature of its business)

d.    Company/Organization profile (financial information, standing in its industry, reputation)

e.    Identification of relevant aspects of the company/organization’s computing and network infrastructure, Note: Do not try to access more information through Social Engineering, or through attempted cyber attacks or intrusion attempts.

 

3. Analyze Risks

 

a.    For the purposes of this assignment, you will follow the standard risk assessment methodology used within the U.S. federal government, as described in NIST Special Publication 800-30 (United States. National Institute of Standards and Technology  (2002). Risk Management Guide for Information Technology Systems (Special Publication 800-30). Retrieved from: http://csrc.nist.gov/publications/nistpubs/800-30/sp800-30.pdf 

b.    In conducting your analysis, focus on identifying threats and vulnerabilities faced by your subject organization.

c.    Based on the threats and vulnerabilities you identify, next determine both the relative likelihood and severity of impact that would occur should each of the threats materialize. This should produce a listing of risks, at least roughly ordered by their significance to the organization.

d.    For the risks you have identified, suggest ways that the subject organization might respond to mitigate the risk.

 

4. Prepare Risk Assessment Report

 

a.    Reports should be 12 pages (exclusive of cover, title page, table of contents, endnotes and bibliography), double-spaced, and should follow a structure generally corresponding to the risk assessment process described in NIST Special Publication 800-30.

b.    The report should be prepared using the APA Style. All sources of information should be indicated via in-line citations and a list of references.

c.    Reports should be submitted via the Assignment Folder.

 

Grading Criteria

 

As previously stated, the Proposal and Annotated Bibliography will constitute 10% of your Risk Assessment Report grade (2.5% of your final grade).  You will demonstrate in the final report your risk assessment subject matter competency and communication and knowledge competencies. The Risk Assessment Report, accounting for 22.5% of the final grade, will be assessed as follows:

 

·         Clear statement of scope to be analyzed and appropriate coverage of that scope: 10%

·         Technical Content (depth and accuracy of information and analysis): 30%

·         Recommendations for risk mitigation or other conclusions supported by research and analysis: 10%

·         Communications competency: 25% (assessed using a graduate school wide rubric)

·         Knowledge competency: 25% (assessed using a graduate school wide rubric)

 

 

 

Our website has a team of professional writers who can help you write any of your homework. They will write your papers from scratch. We also have a team of editors just to make sure all papers are of HIGH QUALITY & PLAGIARISM FREE. To make an Order you only need to click Ask A Question and we will direct you to our Order Page at WriteDemy. Then fill Our Order Form with all your assignment instructions. Select your deadline and pay for your paper. You will get it few hours before your set deadline.

Fill in all the assignment paper details that are required in the order form with the standard information being the page count, deadline, academic level and type of paper. It is advisable to have this information at hand so that you can quickly fill in the necessary information needed in the form for the essay writer to be immediately assigned to your writing project. Make payment for the custom essay order to enable us to assign a suitable writer to your order. Payments are made through Paypal on a secured billing page. Finally, sit back and relax.

Do you need an answer to this or any other questions?

About Writedemy

We are a professional paper writing website. If you have searched a question and bumped into our website just know you are in the right place to get help in your coursework. We offer HIGH QUALITY & PLAGIARISM FREE Papers.

How It Works

To make an Order you only need to click on “Order Now” and we will direct you to our Order Page. Fill Our Order Form with all your assignment instructions. Select your deadline and pay for your paper. You will get it few hours before your set deadline.

Are there Discounts?

All new clients are eligible for 20% off in their first Order. Our payment method is safe and secure.

Hire a tutor today CLICK HERE to make your first order