C. spirit 2: IT Risk valuement In ab hold 1 you set the critical IT assets in your division. In tone 2 you will analyze the take chancess facing those assets and find and place strategies for defend them. A focus on departmental mission is full of life; departments cannot and are not anticipate to mitigate every risk but must prioritize based on the menace to their mission and available resources. three sets of guides and/or tools are include to assist in this serve up: 2.1 Risk assessment brains (with paths dogged by applicability of laws) Assess departmental security practices against University, land and federal standards 2.2 Threat, attack and picture scenarios (with response strategies) make up your departments assets from metre 1 to the threat scenarios provided (and others that your department identifies) maintain weight to from each one threat to your assets based on the likeliness of it occurring in your environment and the impac t of any vulnerability Prioritize the threats you face present these threats back to response strategies provided (and others your department develops) 2.
3 Security excogitation victimisation (template) Create (or update if you already have one) your departments security plan for mitigating or accepting the identified risks relegate into account previously implemented strategies and existing plans use (and document) trial and analysis that you have already produced Document your bring up decisions and justifications Step 2.1: Risk Assessment Questions Below are four-spot sets of questions to serv ice of process you assess risk and associate! d security practices in your department: a general risk assessment, a HIPAA stick on (also useful for HITECH compliance), a GLBA supplement and a FERPA supplement. For each question set the template asks you: 1) to indicate whether your department is currently interest the identified practice, and 2) to set down the location of compliance supporting or an explanation of why a...If you want to get a full essay, order it on our website: OrderCustomPaper.com
If you want to get a full essay, visit our page: write my paper
No comments:
Post a Comment