PROJECT CYBERSECURITY
benita01
RubricAssessment-Project-2.pdf
2/17/22, 5:36 PMRubric Assessment - CSIA 485 6380 Practical Applications in Cybe…y Management and Policy (2222) - UMGC Learning Management System
Page 1 of 3https://learn.umgc.edu/d2l/lms/competencies/rubric/rubrics_assess…5246&groupId=0&d2l_body_type=5&closeButton=1&showRubricHeadings=0
Project #2 Implementa!on Plan Course: CSIA 485 6380 Prac!cal Applica!ons in Cybersecurity Management and Policy (2222)
Criteria Excellent Outstanding Acceptable Needs Improvement Needs Significant Improvement
Missing or Unacceptable
Business Context /
Use of Scenario
Introduc!on or
Overview for the
Implementa!on Plan
for Security Strategy
(for Designated
Company)
Goals & Objec!ves
for Implementa!on
Plan (for Designated
Company)
Scope, Assump!ons,
& Constraints for
Implementa!on Plan
(for designated
company)
10 points
Implementa!on plan
clearly, concisely, and
accurately incorporated
informa!on about the
designated business
context and scenario
informa!on as presented
in the course readings.
No evidence present
indica!ng use of previous
course scenarios.
8 points
Implementa!on plan
clearly and accurately
incorporated informa!on
about the designated
business context and
scenario informa!on as
presented in the course
readings. No evidence
present indica!ng use of
previous course
scenarios.
7 points
Implementa!on plan
accurately incorporated
informa!on about the
designated business
context and scenario
informa!on as presented
in the course readings.
No evidence present
indica!ng use of previous
course scenarios.
4 points
Implementa!on plan
used relevant informa!on
from the designated
business context and
scenario as presented in
the course readings.
2 points
Deliverable used some
informa!on related to
the designated company
or industry.
0 points
Deliverable did not
incorporate informa!on
from the designated
business context /
scenario as presented in
the course readings.
10 points
Provided an excellent
overview of the
implementa!on plan. The
introduc!on was clear,
concise, and accurate.
Writer appropriately
used informa!on from 3
or more authorita!ve
sources
8 points
Provided an outstanding
overview of the
implementa!on plan.
The introduc!on was
clear and accurate.
Writer appropriately
used informa!on from at
least 2 authorita!ve
sources
7 points
Provided an acceptable
overview of the
implementa!on plan.
Writer appropriately
used informa!on from
authorita!ve sources
6 points
Provided an overview but
the sec!on lacked
important details.
Informa!on from
authorita!ve sources was
cited and used in the
overview.
4 points
A"empted to provide an
introduc!on to the
implementa!on plan but
this sec!on lacked detail,
was off topic, and/or was
not well supported by
informa!on drawn from
authorita!ve sources.
0 points
The introduc!on and/or
overview sec!ons of the
paper were missing.
10 points
Clearly iden!fied (a) 3 or
more business goals and
objec!ves and (b) 3 or
more project goals and
objec!ves. Explana!on of
goals established the
rela!onship between the
security strategy for the
designated company
(project #1) and this
project. Goals and
objec!ves were stated in
a clear, concise, and
accurate manner.
Appropriately used
informa!on from 3 or
more authorita!ve
sources.
8 points
Clearly iden!fied (a) 2 or
more business goals and
objec!ves and (b) 2 or
more project goals and
objec!ves. Explana!on of
goals established the
rela!onship between the
security strategy for the
designated company
(project #1) and this
project. Goals and
objec!ves were stated in
a clear and accurate
manner. Appropriately
used informa!on from 3
or more authorita!ve
sources.
7 points
Clearly iden!fied (a) 1 or
more business goals and
objec!ves and (b) 1 or
more project goals and
objec!ves. Explana!on of
goals established the
rela!onship between the
security strategy for the
designated company
(project #1) and this
project. Appropriately
used informa!on from 3
or more authorita!ve
sources.
6 points
Provided a discussion
about goals and
objec!ves for the
implementa!on plan.
Informa!on from
authorita!ve sources was
cited and used.
4 points
A"empted to provide
informa!on about goals
and objec!ves for the
plan. The discussion was
significantly lacking in
detail and/or was not
well supported by
informa!on drawn from
authorita!ve sources.
0 points
This sec!on was missing,
off topic, or failed to
provide relevant
informa!on.
15 points
Provided an excellent
analysis of the scope for
the implementa!on
project (including
explana!on of items that
are beyond the scope).
Clearly and concisely
listed 6 or more
assump!ons (2),
constraints (2), and
barriers to success (2).
Appropriately used
13.5 points
Provided an outstanding
analysis of the scope for
the implementa!on
project (including
explana!on of items that
are beyond the scope).
Clearly and concisely
listed 5 or more
assump!ons, constraints,
and barriers to success
(at least one item in each
category). Appropriately
12 points
Provided an acceptable
analysis of the scope for
the implementa!on
project (including
explana!on of items that
are beyond the scope).
Clearly and concisely
listed 3 or more
assump!ons, constraints,
and barriers to success
(at least one item in each
category). Appropriately
6 points
Provided a discussion of
the scope, assump!ons,
and constraints for the
implementa!on plan for
the security strategy for
the designated company.
Informa!on from
authorita!ve sources was
cited and used.
4 points
A"empted to provide
informa!on about the
scope, assump!ons,
and/or constraints for
the implementa!on plan.
The discussion was
significantly lacking in
detail and/or was not
well supported by
informa!on drawn from
authorita!ve sources.
0 points
This sec!on was missing,
off topic, or failed to
provide relevant
informa!on.
2/17/22, 5:36 PMRubric Assessment - CSIA 485 6380 Practical Applications in Cybe…y Management and Policy (2222) - UMGC Learning Management System
Page 2 of 3https://learn.umgc.edu/d2l/lms/competencies/rubric/rubrics_assess…5246&groupId=0&d2l_body_type=5&closeButton=1&showRubricHeadings=0
Project Management
Plan (People,
Processes,
Technologies)
Strategy
Implementa!on
Enterprise IT
Architecture (for the
designated company)
informa!on from 3 or
more authorita!ve
sources.
used informa!on from 3
or more authorita!ve
sources.
used informa!on from 3
or more authorita!ve
sources.
15 points
Provided an excellent
descrip!on of the project
management plan
suppor!ng
implementa!on of the
security strategy. Clearly
and concisely iden!fied
and described the
required management
and monitoring
structures using the
people, processes, and
technologies framework.
Appropriately used
informa!on from 3 or
more authorita!ve
sources.
13.5 points
Provided an outstanding
descrip!on of the project
management plan
suppor!ng
implementa!on of the
security strategy.
Iden!fied the required
management and
monitoring structures
using the people,
processes, and
technologies framework.
Appropriately used
informa!on from 3 or
more authorita!ve
sources.
12 points
Provided an acceptable
descrip!on of the project
management plan for
implemen!ng the
security strategy. Used
the people, processes,
and technologies
framework.
Appropriately used
informa!on from 3 or
more authorita!ve
sources.
6 points
Provided a discussion of
project management
ac!ons required for
implementa!on of the
security strategy.
Informa!on from
authorita!ve sources was
cited and used.
4 points
A"empted to provide
informa!on about project
management. OR, the
discussion was not well
supported by informa!on
from authorita!ve
sources.
0 points
This sec!on was missing,
off topic, or failed to
provide relevant
informa!on.
15 points
Provided an excellent documentation package detailing the security controls required to implement the strategy. Provided a phased implementation schedule with timeline diagram using the System Development Lifecycle (SDLC) gates/phases and including milestones and resources required for each phase (people, money). Narrative documentation was clear, concise, and accurate. Appropriately used information from 3 or more authoritative sources.
13.5 points
Provided an outstanding documentation package detailing the security controls required to implement the strategy. Provided a phased implementation schedule with timeline diagram using the System Development Lifecycle (SDLC) gates/phases and including milestones and resources required for each phase (people, money). Narrative documentation was clear and accurate. Appropriately used information from 3 or more authoritative sources.
12 points
Provided an acceptable documentation package listing the security controls required to implement the strategy. Provided a phased implementation schedule with timeline diagram that includes milestones and resources required for each phase (people, money). Provided some information about the System Development Lifecycle (SDLC). Narrative documentation was clear and easy to understand. Appropriately used information from 3 or more authoritative sources.
6 points
Provided a discussion of the actions required to implement the security strategy. Mentioned controls, schedules, resource requirements. Information from authoritative sources was cited and used.
4 points
Attempted to provide summary information about the strategy implementation but this section lacked important details. OR, the discussion was not well supported by information from authoritative sources.
0 points
This section was missing, off topic, or failed to provide relevant information.
15 points
Provided an excellent documentation package detailing the hardware, software, network infrastructure, and cybersecurity defenses required to implement the cybersecurity strategy. Narrative documentation of the architecture was clear, concise, and accurate. Provided an updated Network Diagram showing the to-be state of the IT infrastructure including all mitigating or “control” technologies (e.g. firewalls, IDPS, DMZ, etc.). Appropriately used information from 3 or more authoritative sources.
13.5 points
Provided an outstanding documentation package detailing the hardware, software, network infrastructure, and cybersecurity defenses required to implement the cybersecurity strategy. Narrative documentation of the architecture was clear and accurate. Provided an updated Network Diagram showing the to-be state of the IT infrastructure including all mitigating or “control” technologies (e.g. firewalls, IDPS, DMZ, etc.). Appropriately used information from 3 or more authoritative sources.
12 points
Provided an acceptable documentation package documenting the hardware, software, network infrastructure, and cybersecurity defenses required to implement the cybersecurity strategy. Provided an updated Network Diagram showing the to-be state of the IT infrastructure. Appropriately used information from 3 or more authoritative sources.
6 points
Provided a discussion of the recommended Enterprise IT Architecture for the designated company. Network diagram was missing or not updated to show added technologies and controls. Information from authoritative sources was cited and used.
4 points
Attempted to provide summary information about an enterprise IT architecture. OR, the discussion was not well supported by information from authoritative sources.
0 points
This section was missing, off topic, or failed to provide relevant information.
5 points 4 points 3 points 2 points 1 point 0 points
2/17/22, 5:36 PMRubric Assessment - CSIA 485 6380 Practical Applications in Cybe…y Management and Policy (2222) - UMGC Learning Management System
Page 3 of 3https://learn.umgc.edu/d2l/lms/competencies/rubric/rubrics_assess…5246&groupId=0&d2l_body_type=5&closeButton=1&showRubricHeadings=0
Total
Overall Score
Professionalism:
Consistent Use and
Forma$ng for
Cita!ons and
Reference List
Professionalism:
Organiza!on,
Appearance, &
Execu!on
Work contains a reference list containing entries for all cited resources. Sufficient information is provided to allow a reader to find and retrieve the cited sources. Reference list entries and in- text citations are consistently and correctly formatted using an appropriate citation style (APA, MLA, etc.).
Work contains a reference list containing entries for all cited resources. Sufficient information is provided to allow a reader to find and retrieve the cited sources. One or two inconsistencies or errors in format for in-text citations and/or reference list entries.
Work contains a reference list containing entries for all cited resources. Sufficient information is provided to allow a reader to find and retrieve the cited sources. No more than 5 inconsistencies or errors in format for in-text citations and/or reference list entries.
Work has no more than three paragraphs with omissions of citations crediting sources for facts and information. Work contains a reference list containing entries for cited resources. Work contains no more than 10 inconsistencies or errors in format.
Work attempts to credit sources but demonstrates a fundamental failure to understand and/or consistently apply a professional formatting style for the reference list and/or citations.
Reference list is missing. Work demonstrates an overall failure to incorporate and/or credit authoritative sources for information used in the paper.
5 points
Submitted work shows outstanding organization and the use of color, fonts, titles, headings and sub-headings, etc. is appropriate to the assignment type. No formatting, grammar, spelling, or punctuation errors.
4 points
Submitted work has minor style or formatting flaws but still presents a professional appearance. Submitted work is well organized and appropriately uses color, fonts, and section headings. Work contains minor errors in formatting, grammar, spelling or punctuation which do not significantly impact professional appearance.
3 points
Organization and/or appearance of submitted work needs improvement. Errors in formatting, spelling, grammar, or punctuation which detract from professional appearance of the submitted work.
2 points
Submitted work has multiple significant errors in style or formatting, spelling, grammar, and/or punctuation. Work is unprofessional in appearance. Work requires substantial rewrite to improve professional appearance.
1 point
Submitted work is difficult to read / understand and has significant errors in formatting, spelling, grammar, punctuation, or word usage. Work is disorganized and needs to be rewritten for readability and professional appearance.
0 points
No work submitted.
Do Not Use This Box 0 points minimum
