Get Instant Help From 5000+ Experts For
question

Writing: Get your essay and assignment written from scratch by PhD expert

Rewriting: Paraphrase or rewrite your friend's essay with similar meaning at reduced cost

Editing:Proofread your work by experts and improve grade at Lowest cost

And Improve Your Grades
myassignmenthelp.com
loader
Phone no. Missing!

Enter phone no. to receive critical updates and urgent messages !

Attach file

Error goes here

Files Missing!

Please upload all relevant files for quick & complete assistance.

Guaranteed Higher Grade!
Free Quote
wave
CYB 690 Cybersecurity Program Development
Answered

Question:

Performance consistently met expectations in all essential areas of the assignment criteria, at times possibly exceeding expectations, and the quality of work overall was very good. The most critical goals were met.

Performance did not consistently meet expectations. Performance failed to meet expectations in one or more essential areas of the assignment criteria, one or more of the most critical goals were not met.

Performance was consistently below expectations in most essential areas of the assignment criteria, reasonable progress toward critical goals was not made. Significant improvement is needed in one or more important areas.

The student accurately implements a cybersecurity framework to:
Comprehensively describe the current framework compliance status to include:
  • The cybersecurity environment, such as processes, information, and systems directly involved in the delivery of services
  • The current risk management practices, threat environment, legal and regulatory requirements, business/mission objectives, and organizational constraints
  • A diagram of the common workflow of information and decisions at the major levels within the organization
Comprehensively describe the future cybersecurity policy implementations to include:
  • The critical cybersecurity needs that should be in place to ensure compliance with the appropriate regulation (e.g., PCI DSS, HIPAA, SOX, GLBA)
  • The prioritized organizational efforts, business needs, and outcomes
Comprehensively describe the organization's cybersecurity risk assessment to include:
  • The likelihood of risks occurring and the resulting impact
  • Threats to, and vulnerabilities of, those systems and assets
  • The risks internally and externally
  • The acceptable level of risk (risk tolerance), response, management, and resolution
  • An Organizational Risk Assessment Chart
Comprehensively describe how the business is integrating privacy laws and regulations, prioritizing, and measuring progress Comprehensively describe compliance gaps to include:
  • The type of audits that should be performed in order to keep a consistent measure of risk
  • The type of gap analysis to be performed A cybersecurity governance strategy that establishes mitigation plans to achieve security objectives
Create a web portal data flow diagram of the hypothetical organization's operational environment The web portal data flow diagram must:
  • Display the organization's technical requirements (related and unrelated applications, services, and links).
  • Display the compliance of associated servers, routers, access-control components, data storage, internal and external data communication, data backup, e-mail servers, and so forth
  • Identify related systems and assets, regulatory requirements, and overall risk approach.
  • Demonstrate each IT task to the next as aligned to regulations/compliance.

Answer
Answers:

Cybersecurity risk assessment is the process of identifying, analyzing, and evaluating potential cybersecurity risks faced by an organization. This is an essential step in developing an effective cybersecurity strategy. Here are the key steps involved in an organization's cybersecurity risk assessment:

  1. Define the scope: Identify the systems, applications, and data that need to be assessed.

  2. Identify the assets: Determine what information, data, and systems are critical to the organization and need to be protected.

  3. Identify the threats: Analyze the potential threats to the organization's assets, including external threats such as hackers, viruses, and malware, as well as internal threats such as unauthorized access and human error.

  4. Identify the vulnerabilities: Determine the weaknesses in the organization's systems and processes that could be exploited by cyber attackers.

support
close