Impact Analysis Part 3: Prevention and Response Strategies
Prior to or when security measures fail, it is essential to have in place several response strategies. In 1,250-1,500 words:
Impact Analysis for
an Educational Services Company partnered with a College or University, service the whole community.
4 Academic resources
1. Explain how negotiations with accreditors on compliance should be dealt with. Provide an example.
2. Present appropriate response strategies that can be put into action (i.e., breach notification policies).
3. Present employee training recommendations for creating awareness of the organization's security measurements.
4. Explain how to obtain feedback on the effectiveness of security policies from stakeholders. Provide an example.
5. Explain how to identify new threats, vulnerabilities, or any countermeasures that may not have been present/available when the initial security measures were first implemented. What mechanisms could be in place to catch any oversights? Explain how this would be reported/communicated. Example, an IT professional explains why a specific device is configured, why if it is compliant it will NOT work, or why if it is NOT compliant it does work.
6. Explain how operational managers, stakeholders, and/or individuals affected will be notified. Provide examples for each.
7. Identify organization management techniques to respond quickly to new challenges. Explain with supporting details.
Performance Level Ratings
Meets Expectations
|
Performance consistently met expectations in all essential areas of
the assignment criteria, at times possibly exceeding expectations, and the quality of work overall was very good. The most critical goals were met.
|
Near Expectations
|
Performance did not consistently meet expectations. Performance failed to meet expectations in one or more essential areas of the assignment criteria, one or more of the most critical goals were not met.
|
Below Expectations
|
Performance was consistently below expectations in most essential areas of the assignment criteria, reasonable progress toward critical goals was not made. Significant improvement is needed in one or more important areas.
|
Criteria
|
Below Expectations
|
Near Expectations
|
Meets Expectations
|
Earned
|
The student comprehensively explains how negotiations with accreditors on compliance should be dealt with. Example is present.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student clearly presents appropriate response strategies that can be put into action.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student clearly presents employee training recommendations for creating awareness of the organization's security measurements
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student comprehensively explains how to obtain feedback on the effectiveness of security policies from stakeholders. Example is present.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student comprehensively explains how to identify new threats, vulnerabilities, or any countermeasures that may not have been present/available when the initial security measures were first implemented, including mechanisms to catch any oversights and the reporting process.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student comprehensively explains how operational managers, stakeholders, and/or individuals affected will be notified. Example is present for each.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
The student comprehensively explains organization management techniques to respond quickly to new challenges with supporting details.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
Industry standard technical writing is correct and utilized throughout.
|
0 pts – 9 pts
|
10 pts – 14 pts
|
15 pts
|
|
TOTAL
|
|
|
|
/120
|
Instructor Feedback
|