To complete this assignment, review the prompt and grading rubric in the
Project One Guidelines and Rubricdocument
CYB 200 Project One Scenario One Fizza Cola, a popular soda manufacturer, is an international leader in soda production. The company has also been instrumental in developing a lot of the most recent technology used in the bottling industry. However, given the financial growth Fizza Cola has recently experienced, there have been growing concerns surrounding minor security incidents. Recently, Fizza Cola has experienced phishing emails that have resulted in malware being installed onto computer workstations. Executives are most concerned with trade secrets and copyright infringement laws dealing with intellectual property. The executives have already implemented new technology (hardware) to help combat cyber threats in general, and they now want to invest in making their employee training more robust. As part of the information security team, you are being asked to evaluate the organization’s approach to cybersecurity awareness and training. The executives have provided the following list of questions and concerns: The frequency of mandatory security awareness training is currently undefined. The audience of the training is currently undefined. What are the most important areas to focus on in the security awareness training? What areas of the awareness training are missing that, if present, would help limit the security issues the company is currently experiencing? CYB 200 Project One Guidelines and Rubric Overview Establishing a proactive security culture in an organization is key to limiting security risks and limiting the dangers of complacency within the organization. This proactive security mind-set is important to establish from the top of the organization down. Security awareness training is the first line of defense and acts as a foundational component to any well-rounded cybersecurity initiative. If the personnel are not actively aware, your cybersecurity defense structure can fall apart regardless of how much you invest in technology. For this project, you will be answering questions related to a security awareness training case study. This project pulls concepts together from your case study papers and course discussions, and it serves as the foundation for why integrating legal and human factors into a security awareness training program is important. If you would like a refresher on relevant reading, refer to the “What Are You Trying to Protect?” section of Chapter 3 in your course textbook and the “Security Awareness Training” section of Chapter 13. In this assignment, you will demonstrate your mastery of the following course competency: CYB-200-01: Describe the fundamental concepts of legal and human factors in regard to cybersecurity Scenario In a course announcement, your instructor will provide you with a scenario on which you will base your work. Use the scenario to address the critical elements. Prompt Specifically, you must address the critical elements listed below. The codes shown in brackets indicate the course competencies to which the critical elements are aligned. I. Security Awareness Training Case Study A. Identify security gaps or opportunities in training related to human factors. Describe the impact associated with not addressing each gap or opportunity to individuals and the organization. [CYB-200-01] B. Identify security gaps or opportunities in training related to legal factors. Describe the impact associated with not addressing each gap or opportunity to individuals and the organization. Note: You do not need to quote specific laws here; focus on the concepts. [CYB-200-01] C. Explain why a proactive security mind-set is beneficial for all levels of the organization. Provide examples that support your explanation. [CYB- 200-01] Project One Rubric Guidelines for Submission: Your polished, finalized submission should be 1 to 2 pages in length (plus a cover page and references) and should be written in APA format. Use double spacing, 12-point Times New Roman font, and one-inch margins. Include at least one reference, which should be cited according to APA style. Use a file name that includes the course code, the assignment title, and your name—for example, CYB_200_Project_One_Neo_Anderson.docx. Critical Elements Exemplary (100%) Proficient (85%) Needs Improvement (55%) Not Evident (0%) Value Human Factors [CYB-200-01] Meets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative manner Identifies security gaps or opportunities in training related to human factors and describes the impact associated with not addressing each gap or opportunity Addresses “Proficient” criteria, but there are gaps in clarity, logic, or detail Does not address critical element, or response is irrelevant 30 Legal Factors [CYB-200-01] Meets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative manner Identifies security gaps or opportunities in training related to legal factors and describes the impact associated with not addressing each gap or opportunity Addresses “Proficient” criteria, but there are gaps in clarity, logic, or detail Does not address critical element, or response is irrelevant 30 Proactive Security Mind-Set [CYB-200-01] Meets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative manner Explains why a proactive security mind-set is beneficial for all levels of the organization and provides examples that support the explanation Addresses “Proficient” criteria, but there are gaps in clarity, logic, or detail Does not address critical element, or response is irrelevant 30 Articulation of Response Submission is free of errors related to citations, grammar, spelling, and organization and is presented in a professional and easy-to-read format Submission has no major errors related to citations, grammar, spelling, or organization Submission has some errors related to citations, grammar, spelling, or organization that negatively impact readability and articulation of main ideas Submission has critical errors related to citations, grammar, spelling, or organization that prevent understanding of ideas 10 Total 100%