Information Technology Risk Management
Chapters:
Chapter 4: Information Security Incident Management-Ucertify
Book:
Information systems security & assurance series
Jones & Barlett Learning
Managing Risk in Information Systems – Darril Gibson-second edition
Please list all references.
Cover page is not needed.
Number of pages needed: 11
Please see attached word document for more instructions
Thank you
Term Paper: Managing Organizational Risk
No longer than a decade ago, IT security professionals had to work hard to persuade organizational leaders about the importance of developing effective risk management plans. Nowadays, due to the plethora of cautionary tales that organizations history provide, business leaders are informed on the need to manage risk and understand the crucial role of an organization’s IT infrastructure on its ability to perform business.
A computer incident response team (CIRT) plan can help prepare organizations for incidents that might occur.
- Describe the objectives and main elements of a CIRT plan.
- Analyze the manner in which a CIRT plan fits into the overall risk management approach of an organization and how it supports other risk management plans.
- Provide at least two (2) examples of how CIRT plans define the who, what, when, where, and why of the response effort.
- Analyze the manner in which the development of a CIRT plan enables management to adopt a more proactive approach to risk management. Include recommendations for remaining proactive in the continual improvement and update of CIRT plans.
- Infer on the evolution of threats over the last decade that organizations must now consider.
- Predict the evolution of regulatory requirements mandating risk management processes and plans.
- Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
- Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
- Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
- Create a Computer Incident Response Team (CIRT) plan for an organization in a given scenario.
- Use technology and information resources to research issues in IT risk management.
- Write clearly and concisely about topics related to IT risk management using proper writing mechanics and technical style conventions
Reference material:
Risk-Taking Leaders.
Transcript of the video
– In the world of business, the term risk has been held hostage in the world of corporate finance. It seems that if you take risks, it gives the impression that you’re the maverick going rogue. Someone who is upstaging or even defying authority. But to me, taking risks is simply the difference between the possibility of living an extraordinary life versus an ordinary one. So why is it? Why don’t the majority of leaders take risks? And the answer’s quite simple.
Because it feels unsafe. And security, for most people, is more important than anything else. Hi, my name is Deborah Perry Piscione and I’m the author of The Risk Factor. And through my company, Vorto Consulting, I work with organizations to talk about how risk taking can enable innovation. So who is this course for? It’s for those of you who have desired to plant new seeds. And for those who crave exploration of their organization’s open spaces.
It’s also for those leaders who want to stand up for what is right, even if the personal and professional cost is seemingly devastating. Finally, it’s for those who are looking to act on their inner voice, who wish to blaze a new path, redefine the rules, and even change the world for the greater good.
