Organizational Risk Analysis, including review of emerging threats and trends, third-party assessments, and security metrics.

1. Organizational Risk Analysis, including review of emerging threats and trends, third-party assessments, and security metrics.

The purpose of this assignment is to create an information security risk assessment report for an organization.

Using the company selected for the Topics 5-7 assignments, write a security risk assessment report. Use the outline presented in Chapter 7 of Information Security Risk Assessment Toolkit: Practical Assessments Through Data Collection and Data Analysis, including the sections outlined below. Use information from the Topic 4-7 assignments to create the report.

Executive Summary

Methodology

1. Organizational Assessment
2. System Specific Assessment

Results

1. Organizational Risk Analysis, including review of emerging threats and trends, third-party assessments, and security metrics.
2. System Specific Analysis, including system characterization, threat identification, vulnerability identification, impact analysis, control analysis, likelihood determination, risk determination, control recommendations, and results documentation.

Risk Register

Conclusion

Prepare this assignment according to the guidelines found in the APA Style Guide, located in the Student Success Center. An abstract is not required.

This assignment uses a rubric. Please review the rubric prior to beginning the assignment to become familiar with the expectations for successful completion.

You are required to submit this assignment to LopesWrite. A link to the LopesWrite technical support articles is located in Course Materials if you need assistance. edft