CYS$403$

Assignment $2$: Risk Register

Group of $2$ members

Plagarism more than $5\%$ will deduct half of the total marks.

Assignment $1$

You need to choose any application, product, vendor, operating system, or any sources that have vulnerabilities. Write the introduction$/$description of the title that you choose. Based on the example given, come out with your own risk register. Your input data must be logic, reasonable and justifiable. Write minimum $10$ risks.

You can refer

CVEdetails.com$/$ OWASP to find the vulnerabilities$/$ risks for your application.

$\backslash$table$[[$ID$,$Date raised,Risk description,$\backslash$table$[[$Likelihood$],[$of the risk$],[$occuring$]],\backslash$table$[[$Impact if$],[$the risk$],[$occurs$]],\backslash$table$[[$Severity$],[$Rating$],[$based on$],[],[$likelihood$.]],\backslash$table$[[$Owner$],[$Person who$],[$will manoge$],[$the risk.$]],\backslash$table$[[$Mitigating action$],[$Actions to mitigate the risk e$.$g$.$ reduce$],[$the likelihood.$]]],[1,[$enter date$],\backslash$table$[[$Project purpose and need is not well$-],[$defined$.]],$Medium,High,High,$\backslash$table$[[$Project$],[$Sponsor$]],\backslash$table$[[$Complete a business case if not already$],[$provided and ensure purpose is well$],[$defined on Project Charter and PID.$]]],[2,[$enter date$],\backslash$table$[[$Project design and deliverable$],[$definition is incomplete.$]],$Low,High,High,$\backslash$table$[[$Project$],[$Sponsor$]],\backslash$table$[[$Define the scope in detail via design$],[$workshops with input from subject$],[$matter experts.$]]],[3,[$enter date$],\backslash$table$[[$Project schedule is not clearly$],[$defined or understood$]],$Low,Medium,Medium,Project,$],[$Manager$,,\backslash$table$[[$Hold scheduling workshops with the$],[$project team so they understand the$],[$plan and likelihood fo missed tasks is$],[$reduced$.]],,,,,]]$

GOOD LUCK.....