PLEASE USE AS MANY WORDS AS YOU CAN TO ANSWER. You are an entrepreneur looking to start a new online business. As part o

Business, Finance, Economics, Accounting, Operations Management, Computer Science, Electrical Engineering, Mechanical Engineering, Civil Engineering, Chemical Engineering, Algebra, Precalculus, Statistics and Probabilty, Advanced Math, Physics, Chemistry, Biology, Nursing, Psychology, Certifications, Tests, Prep, and more.
Post Reply
answerhappygod
Site Admin
Posts: 899604
Joined: Mon Aug 02, 2021 8:13 am

PLEASE USE AS MANY WORDS AS YOU CAN TO ANSWER. You are an entrepreneur looking to start a new online business. As part o

Post by answerhappygod »

PLEASE USE AS MANY WORDS AS YOU CAN TO
ANSWER.
You are an entrepreneur looking to start a new online business.
As part of registering your new venture and applying for small
business funding, you are required to develop and submit a
cybersecurity risk management plan. The purpose of such a plan is
to demonstrate how you will protect your intellectual property and
financial data, both to satisfy your bank and to create confidence
for your future clients. Your plan should be easy to understand,
but also dynamic such that you can adapt to changes within the
business systems in the coming years.
1. Preparation for risk analysis (20 marks)
a. Describe the goals of the business and the focus of the risk
assessment (10 marks)
b. Describe the scope of its technology environment (use a
logical diagram showing the interactions between users and systems)
(10 marks)
2. High level threat analysis (20 marks)
a. Identify all actors (10 marks)
b. Identify all information assets (10 marks)
3. Threat assessment (20 marks)
a. Create bow tie diagrams which describe two or three key
adverse events that may occur, showing both the potential causes
and consequences of each (20 marks)
4. Risk assessment and ratings (30 marks)
a. Create or source appropriate qualitative risk assessment
tables/matrices that describe likelihood, impact, and overall risk
rating (5 marks)
b. Articulate at least six information risks derived from your
threat assessment in a format that describes all important facets
of the risk (actor, asset, threat, vulnerability, impact) (15
marks)
c. Give each risk a realistic rating, using your risk assessment
tables/matrices (10 marks)
Assignment guidance Read the CANSO case study on LMS as a guide
for risk assessment presentation. You should use approximately 1000
words in total to answer these questions. This assignment is
weighed 20% of the overall subject marks. The marking rubric is
given below. You should use tables where appropriate to present
your information. Tables do not contribute towards your word count.
Aside from the supplied CANSO presentation, perform your own
research into how to assess and present risks to a business
audience. Be sure to reference any material you use to create this
assignment. Referencing and citation should use APA format. You
should research other information from reputable online resources
such as standards’ bodies like NIST, government reports that
address risks or independent technology working groups like OWASP.
Referencing and citation should use APA format. You should research
other sources of information from reputable online resources such
as malware research groups, security vendors, security journalists
and academic papers if possible.
Join a community of subject matter experts. Register for FREE to view solutions, replies, and use search function. Request answer by replying!
Top
Post Reply

Return to “Archived Questions & Answers”