During a table top exercise, it is determined that a security analyst is required to ensure patching and scan reports are available during an incident, as well as documentation of all critical systems. To which of the following stakeholders should the analyst provide the reports?
A Management
B Affected Vendors
C Security Operations
D Legal
He must provide the reports to security operatiobs.
##That is all about your answer........please uvote my answer.......please.........
During a table top exercise, it is determined that a security analyst is required to ensure...
A hospital’s security team recently determined its network was breached and patient data was accessed by an external entity. The Chief Information Security Officer (CISO) of the hospital approaches the executive management team with this information, reports the vulnerability that led to the breach has already been remediated, and explains the team is continuing to follow the appropriate incident response plan. The executive team is concerned about the hospital’s brand reputation and asks the CISO when the incident should be...
The discussion: 150 -200 words. Auditing We know that computer security audits are important in business. However, let’s think about the types of audits that need to be performed and the frequency of these audits. Create a timeline that occurs during the fiscal year of audits that should occur and “who” should conduct the audits? Are they internal individuals, system administrators, internal accountants, external accountants, or others? Let me start you: (my timeline is wrong but you should use some...
Which role has the PRIMARY responsibility for the documentation of control implementation? Systems security engineer Control assessor Information System Owner (ISO) Information Owner/Steward When making determinations regarding the adequacy of common controls for their respective systems, Information System Owner (ISO) refer to the Common Control Providers’ (CCP) Privacy Impact Assessment (PIA) Business Impact Analysis (BIA) Authorization Packages Vulnerability Scans An organization-wide approach to identifying common controls early in the Risk Management Framework (RMF) process does which of the following? Considers...
!!!Only Project 2 need to be answered!!! Project Report 1 Once the business case has been approved, you need to make a project plan showing each task. Assume you are a project manager to lead your team to acquire an additional delivery van for the company. Please find the details below. The current month is January. Activity (What is to be done?) Objective (Why will we do it?) Resources (Where will it be done?) Procedures (How will it be done?)...
Risk management in Information Security today Everyday information security professionals are bombarded with marketing messages around risk and threat management, fostering an environment in which objectives seem clear: manage risk, manage threat, stop attacks, identify attackers. These objectives aren't wrong, but they are fundamentally misleading.In this session we'll examine the state of the information security industry in order to understand how the current climate fails to address the true needs of the business. We'll use those lessons as a foundation...
A new version of the operating system is being planned for installation into your department’s production environment. What sort of testing would you recommend is done before your department goes live with the new version? Identify each type of testing and describe what is tested. Explain the rationale for performing each type of testing. [ your answer goes here ] Would the amount of testing and types of testing to be done be different if you were installing a security...
CASE 17: WATSON’S AMBULATORY EHR TRANSITION Major theme: System acquisition Primary care physicians play a key role in the U.S. health care delivery system. These providers integrate internal and external information with their clinical knowledge to determine the patient’s treatment options. An effective ambulatory electronic health record (EHR) is critical to supply physicians with the information they need to provide quality care and maximize their efficiency. This case involves the decision-making process to replace an inadequate EHR system in a...
CASE STUDY 2.1: Who Would You Hire? Worldwide Manufacturing Inc. has just weathered intense scrutiny after it was investigated and fined for violations of improper chemical storage and waste disposal. Worldwide is a special-order manufacturer that makes plastic products in whatever shapes and sizes a customer specifies. In order to do so, it makes special molds for each project for pouring and shaping the plastic into the forms requested by customers. Each order takes retooling and reorganizing of the manufacturing...
Task back to top Read the DTGOV Case Study before you attempt this assignment DTGOV want to migrate some of their webservers to an IaaS instance in AWS to test their strategy. They understand that they need to do a full migration plan first, but they want to determine what sort of architecture would be required to support their web services. The web services are considered essential by both DTGOV and their users, so any web services must be: Readily...
Please help writing a well structured document using the below Agile Runbook - Our Overall Delivery Process How do we initiate a Project? Any project is a response to a pain point or desire expressed by either customers, internal stakeholders, employees, or regulatory authorities. In short, a project is a time bound and specific goal oriented task-system that is born out of an ask from any stakeholder. Project initiation is laying down a new project by defining its goals, objectives,...