CYB$-400$ Security Assessment & Auditing

Enterprise Assessment Approach

Overview

This activity further broadens the perspective into the comprehensive approach required for conducting a security assessment at the enterprise level. This encompasses various aspects such as network security, physical security, and employee behavior within the organization, fostering a holistic understanding of security challenges.

When is an enterprise$-$wide security audit necessary? It serves two key purposes: identifying organizational risks and ensuring compliance. This course emphasizes assessing compliance with organizational standards.

Prompt

For this activity, you are part of a team assessing your enterprise.

Enterprise Assessment Approach

A$.$ Explain how you would$$approach$$assessing the enterprise.

B$.$ Explain how you would account for$$people$,$ process, and technology.

C$.$ Describe the information you would need to collect to put the$$big picture$$of enterprise security together.

D$.$ Explain what you see as the biggest$$challenge$$to this effort.

I would appreciate your help. Thank you