The purpose of this assignment is to develop a risk model, define the risk program goals, and communicate the program implementation strategy. Using the company selected for the Topic 5 and Topic 6 assignments, establish a comprehensive security risk program for the organization. Write a 750-1,000 word executive summary that contains the following information. (company selected for the Topic 5 and Topic 6 assignments was CVS Health Corporation) Introduction 1) Summarize the company security profile developed for the Topic 5 assignment. 2) Identify the regulatory compliance and control standards to which the company must adhere. Risk Management Framework 1) Justify the selected risk management framework (e.g., NIST 800-37, OCTAVE Allegro, FAIR, FRAAP, NIST 800-30). 2) Define the steps within the risk management framework being adopted. 3) Include a workflow diagram (created from MS Vision, OpenDraw, or other drawing software) that illustrates how management will make effective decisions for each stage. 4) Describe how architecture and system updates will be selected and applied. Risk Management Program 1) Explain how the SRR and TVM integrate into the framework (i.e. which steps are they integrated within, or which step do they follow after). 2) Discuss the life cycle for the program, including activities such as vulnerability management, risk identification, risk rating/prioritization, security risk review, architecture changes audits, etc. Conclusion 1) Summarize the benefits of applying the framework for the company. Prepare this assignment according to the guidelines found in the APA Style Guide, located in the Student Success Center. An abstract is not required. You are required to submit this assignment to LopesWrite. Refer to the LopesWrite Technical Support articles for assistance. Benchmark Information This benchmark assignment assesses the following programmatic competencies: MS Information Technology Management 3.3: Evaluate the components of IT governance frameworks to ensure regulatory compliance within organizations. MS Information Assurance and Cybersecurity 1.4: Evaluate the components of IT governance frameworks to ensure regulatory compliances within organizations. Attempt Start Date: 15-Jul-2021 at 12:00:00 AM Due Date: 20-Jul-2021 at 11:59:59 PM Maximum Points: 110.0

Found something interesting ?

• On-time delivery guarantee
• PhD-level professional writers
• Free Plagiarism Report

• 100% money-back guarantee
• Absolute Privacy & Confidentiality
• High Quality custom-written papers

Related Model Questions

Feel free to peruse our college and university model questions. If any our our assignment tasks interests you, click to place your order. Every paper is written by our professional essay writers from scratch to avoid plagiarism. We guarantee highest quality of work besides delivering your paper on time.

Grab your Discount!

25% Coupon Code: SAVE25
get 25% !!