In your Lab Report file, organize the qualitative risk assessment data according to the following:
• Organize all of the critical “1” risks, threats, and vulnerabilities identified throughout the seven domains of a typical IT infrastructure.
See attachment- I completed one a few weeks ago you can tweak it, if you need to
6. On your local computer, open a new Internet browser window.
7. In the address box of your Internet browser, type the URL http://www.mitre.org/publications/systems-engineer… and press Enter to open the Web site.
8. Read the article titled “Risk Impact Assessment and Prioritization.”
9. In your Lab Report file, describe the purpose of prioritizing the risks prior to creating a risk-mitigation plan.
10. In your Lab Report file, describe the elements of an IT risk-mitigation plan outline by covering the following major topics:
• Executive summary
• Prioritization of identified risks, threats, and vulnerabilities organized into the seven domains
• Critical “1” risks, threats, and vulnerabilities identified throughout the IT infrastructure
• Short-term remediation steps for critical “1” risks, threats, and vulnerabilities
• Long-term remediation steps for major “2” and minor “3” risks, threats, and vulnerabilities
• Ongoing IT risk-mitigation steps for the seven domains of a typical IT infrastructure
• Cost magnitude estimates for work effort and security solutions
• Implementation plans for remediation
Create a detailed IT risk-mitigation plan outline by inserting appropriate subtopics and sub-bullets.
0 comments