Impact Analysis Part 3

Feedbackfrommentor.docx

Home >Information Systems homework help >Impact Analysis Part 3

$C:\Users\iduong\AppData\Local\Microsoft\Windows\INetCache\Content.Word\Chartis_Risktech_logo_White.png$

Hello, I have initial feedback from my mentor. The essay doesn't meet all the rubric. Can this be amended ASAP? I have only 3hours to resubmit to the professor as this is the last chance to get a good grade in this unit.

Please amend as below.

Baskerville et al.,.2014 reference is too old. Please use references not older than 3 years

The rubric stated to use at least 3 website references. I don’t see any website refences

This is the feedback for each section

Explain how negotiations with accreditors on compliance should be dealt with. Provide an example

The example provided is not related to cybersecurity data/breach. You should provide a relevant example of a company that failed to comply with cybersecurity regulations hence facing a cybersecurity data/breach and how negotiations were carried out with the relevant authorities/accreditors to reach an agreement.

Present appropriate response strategies that can be implemented (i.e., breach notification policies).

The security we focusing here is cybersecurity, not physical security. Please rewrite this to align with cybersecurity and vulnerability exploitation.

Incomplete sentence structure. Please amend this to ensure the information and discussion flows. Your sentences feel like you are listing ideas instead of discussing your point in complete sentences to ensure information flows

Present employee training recommendations for creating awareness of the organization's security measurements

Incomplete sentence structure. Please amend this to ensure the information and discussion flows. Remember this is an essay, not a point list. Your sentences feel like you are listing ideas instead of discussing your point in complete sentences to ensure information flows

Explain how to identify new threats, vulnerabilities, or countermeasures that may not have been present/available when the initial security measures were first implemented. What mechanisms could be in place to catch any oversights? Explain how this would be reported/communicated. For example, an IT professional explains why a specific device is configured, why if it is compliant, it will NOT work, or why if it is NOT compliant, it does work.

Why is this written in past tense?

Check on the sentence structure

You need to clearly explain how to identify new threats, vulnerabilities, or countermeasures that may not have been present/available when the initial security measures were first implemented

What mechanisms could be in place to catch any oversights?

Explain how this would be reported/communicated

Identify organization management techniques to respond quickly to new challenges. Explain with supporting details

You mention methodologies but you haven’t listed or explained what the mythology is

Have in mind that you need to outline the management techniques that an organization need to put in place to respond quickly to new challenges i.e., in this context, new challenges are in relation to cybersecurity threats and exploitation of vulnerabilities

Check on the sentence structure