IT-FP4076 Assess External Risk

Part 1: Create a 3–5 page document in which you address the following: Evaluate the role of the risk management framework presented in NIST 800-37 rev 2 [PDF] and NIST Special Publication 800-30 r1: Guide for Conducting Risk Assessments in assessing and managing internal risk. Describe the internal risks to an organization resulting from employee use of social media and other digital communication channels. Describe the internal risks to an organization resulting from employee use of non-company devices such as smartphones and tablets. Part 2: Create a 3–5 page document that applies the foundational information on assessing internal risk within the context of the hospital. Analyze how the presence of multiple systems and integrated data sources complicates an internal organizational risk assessment. Explain the role that formal policies, procedures, and guidelines play in the work of assessing internal risk at the hospital. Explain the organizational roles and why these roles should participate in assessing internal risk to the information assets of the hospital. Additional Requirements Written communication: Written communication is free of errors that detract from the overall message. APA formatting: Resources and citations are formatted according to current APA style and formatting. Length of paper: Create a 3–5 page foundational document covering internal risk assessment and threat analysis and a 3–5 page document that applies that information within the context of the hospital. Font and font size: Times New Roman, 12 point.