Scribd Logo
Upload

Welcome to Scribd!

  • A Recent Risk Assessment Highlighted The Need For Red Clay

    Uploaded by

    write4
    11 views1 page
    The CISO at Red Clay has proposed a plan to formalize security measures and develop system security plans using NIST guidance. The CISO asked for a two-page briefing paper for the IT Governance Board and Board of Directors introducing security control classes and families related to Red Clay's risks. The paper must include an introduction, descriptions of the managerial, operational, and technical control classes and how three will protect Red Clay's IT infrastructure, one example family control from each class with how each will protect the infrastructure, and two sub-family control examples for each family control relating to Red Clay.

    Original Description:

    Original Title

    A recent risk assessment highlighted the need for Red Clay.docx

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The CISO at Red Clay has proposed a plan to formalize security measures and develop system security plans using NIST guidance. The CISO asked for a two-page briefing paper for the IT Governance Board and Board of Directors introducing security control classes and families related to Red Clay's risks. The paper must include an introduction, descriptions of the managerial, operational, and technical control classes and how three will protect Red Clay's IT infrastructure, one example family control from each class with how each will protect the infrastructure, and two sub-family control examples for each family control relating to Red Clay.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    11 views1 page

    A Recent Risk Assessment Highlighted The Need For Red Clay

    Uploaded by

    write4
    The CISO at Red Clay has proposed a plan to formalize security measures and develop system security plans using NIST guidance. The CISO asked for a two-page briefing paper for the IT Governance Board and Board of Directors introducing security control classes and families related to Red Clay's risks. The paper must include an introduction, descriptions of the managerial, operational, and technical control classes and how three will protect Red Clay's IT infrastructure, one example family control from each class with how each will protect the infrastructure, and two sub-family control examples for each family control relating to Red Clay.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 1

    A recent risk assessment highlighted the need for Red Clay to formalize

    the secu
    A recent risk assessment highlighted the need for Red Clay to formalize the security
    measures required to protect information, information systems, and the information
    infrastructures for the company’s headquarters and field offices. The CISO has proposed a
    plan of action which includes developing system security plans using guidance from NIST
    SP-800-18 Guide for Developing Security Plans for Federal Information Systems.The CISO
    asked you to prepare a two page, publish briefing paper (5-7 paragraphs) for the IT
    Governance Board and Red Clay Renovations Board of Directors that introduces Security
    Control Classes and Security Control Families related to Red Clay risks.This audience is
    familiar with financial controls but has not yet been introduced to the use of controls in the
    context of IT security. You should leverage their knowledge in your explanations of the
    control classes and families. If necessary, research “financial controls” as well as IT security
    controls before writing this briefing paper.Your publish briefing paper MUST include the
    following items:1. An introduction telling the IT Governance Board and the Red Clay Board
    of Directors the purpose of the publish briefing paper. 2. A description of each control class
    (managerial, operation, and technical). THEN, write a descriptive paragraph explaining how
    three these specific control classes will work together to protect the Red Clay Renovations
    IT Infrastructure for the Wilmington, DE Offices (Headquarters).3. From the below table,
    choose one family control from each of the management, operational, and technical control
    classes.4. Write a description of each family control, THEN write a descriptive paragraph
    explaining how each family control will work to protect Red Clay’s IT infrastructure.5.
    Select two sub-family controls (i.e., AC1 and AC6) from each family control. THEN, write a
    descriptive example of how this sub-family-control will protect the Red Clay infrastructure.
    Your examples should relate to the Red Clay case study.Family Control and Control Chart is
    attached in the files.Provide in-text citations and references for 3 or more authoritative
    sources. Put the reference list at the end of your posting.

    You might also like