UOP CMGT400 Week 4 Assignment Security Risk Mitigation Plan

CMGT400 Intro to Information Assurance & Security

Week 4 Assignment

Security Risk Mitigation Plan

A Risk Management Analyst identifies and analyzes potential issues that could negatively impact a business in order to help the business avoid or mitigate those risks.

Take on the role of Risk Management Analyst for the organization you chose in Week 1.

Complete the Security Risk Mitigation Plan Template for the organization you chose.

Submit the assignment.

Security Policies and Controls

[Response]

Password Policies

[Response]

Administrator Roles and Responsibilities

[Response]

User Roles and Responsibilities

[Response]

Authentic Strategy

[Response]

Intrusion Detection and Monitoring Strategy

[Response]

Virus Detection Strategies and Protection

[Response]

Auditing Policies and Procedures

[Response]

Education Plan

Develop an education plan for employees on security protocols and appropriate use.

[Response]

Risk Response

Include: Avoidance, Transference, Mitigation, and Acceptance.

[Response]

Change Management/Version Control

[Response]

Acceptable Use of Organization Assets and Data

[Response]

Employee Policies

Explain the separations of duties and training.

[Response]

Incident Response

Document incident types and category definitions, roles and responsibilities, reporting requirements and escalation, and cyber-incident response teams.

[Response]

Incident Response Process

Discuss the incident response process including: preparation, identification, containment, eradication, recovery, and lessons learned.

[Response]