Develop a security survey for the company and identify at least 10 information systems resources and their vulnerabilities.

-List the possible threats to the information systems resources.

-Use the security survey information to perform a gap analysis. Use a scale of 15 to identify the risk to each information resource. Keep in mind they cannot all be fives.

-Explain how you will mitigate each identified risk. If you are implementing a security control, document the security control and explain its purpose.

-Explain how the SOC will evaluate and mitigate internal threats. Include discussion about how internal threats are a component of the security gap analysis.

-Describe the laws that provide U.S. entities the authority and other motivations that may prompt an organization to perform cyber operations.

-List the phases of a well-organized cyber operation and describe the goals and objectives of each phase.

-Identify alternate cyber environments (SCADA, real time systems, critical infrastructures).