Question: Topic 2: Risk Assessment Risk assessment is a complex, yet necessary, process. Generally speaking, risk assessment follows this formula: risk = asset value threat vulnerability.

Topic 2: Risk Assessment Risk assessment is a complex, yet necessary, process. Generally speaking, risk assessment follows this formula: risk = asset value threat vulnerability. As a security manager, in order to perform an adequate risk assessment, you will need to determine the business focus, which will in turn give you the value of the IT assets, what the possible threats are for those assets, and how vulnerable the assets might be to attack. Given the scenario of a medium-sized retail company with 2000 users, you might determine that assets, such as customer information or business strategy documents, have a high value to the business. What would be the most likely threats to those assets? What would be the most likely vulnerabilities that might expose those assets to attack? Determine a minimum of three likely threats and three likely vulnerabilities, and then provide an overview of the probable risk

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Finance Questions!

Information Security Risk Management ITC6315 Assignment 2 Assignment For this exercise, read the provided case study about AcmeHealth, and rate the risk exposure for each finding related to the...

Purpose: The purpose of this assignment is to assess the students understanding on identifying the risks, vulnerabilities and awareness of current industry and research trends in the field of...

He want us to identify the 18 vulnerabilities. template is attach. Case No. 2000-02: Recreation, Inc. 1 AICPA Case Development Program RECREATION, INC. AN INFORMATION TECHNOLOGY RISK ASSESSMENT CASE...

Your end-of-semester assignment is as follows: (a) (i) read the two Economist articles entitled ?Debt is Good for You? (dated 01/25/2001) and ?Debtors? Prison? (dated 02/09/2009), which discuss the...

i need help from section 3 part A I have already posted this and you asked me to post under advanced option Assignment Tier 1 Financial Planning (Tier1FPPA_AS_v1A3) Page 2 of 92 Student...

Im having trouble with question 3 part A of the attached file. I know and understand her needs but im not sure if im filling out the table correctly ? Assignment Tier 1 Financial Planning...

I need help with Section 4 part A please look at the case study Assignment Tier 1 Financial Planning (Tier1FPPA_AS_v1A3) Page 2 of 92 Student identification (student to complete) Please complete the...

Case Study: Information Security Risk Assessment In this case study assignment, you will perform a quantitative risk analysis for the company network shown below. Write your answers on the Case Study...

Research Paper: Topic: Why did the traditional financial risk approaches, methods, and tools fail in the financial market meltdown of 2008 - 2009? Discuss questions DQ #1: How has fair value...

Suppose you want to use a model to predict the final scores for a NBA team for the 2017-18 regular season. Also suppose that the scores a team can get each night follows a normal distribution. By...

Why should the discount rate not be adjusted for political risk?

The star hash ( Subsets 1 , 2 , 3 ) It should also check the star magic number ( first byte ) of each star, and emit an error if it is incorrect. HINT: space _ main.c calls the function check _...

cost and benefit of holding cash

b. Explain how you initially felt about the communication.

3. Identify the methods used within each of the three approaches.

a. When did your ancestors come to the United States?