Policy 5

READ THOROUGHLY BEFORE SENDING HANDSHAKE OR BEFORE AGREEING TO DO THIS WORK.

Please make sure you use the attached readings links and the assigned Case Study for background information before responding to this discussion question.

Choose one of the policy implementation documents from this week's readings (a) DHS Risk Management Fundamentals OR (b) DoD Cybersecurity Culture and Compliance Initiative.

Using your selected policy implementation document (DHS or DoD), prepare a two page briefing paper (7 paragraphs) for the senior leadership and corporate board of the case study "company." (Use the case study and provide specific information about "the company" as appropriate for your briefing).

In your briefing paper, you should address how this type of document can be used to support implementation of specific risk management strategies.

• For the DHS document you should focus on the use of training and doctrine (establishing a specific business process) as a risk management strategy. Discuss the pro's and con's of using a single risk management process across all corporate operations.

• For the DoD document you should focus on the use of "culture shift" as a risk management strategy. Discuss the pro's and con's of using "culture shift" and "individual responsibility / accountability" as a risk management strategy.

Please remember it’s a discussion board, after I post them, I will later require four additional replies to other students post. It could be like 4 to 6 sentences.

Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.

DUE SEP 25th