Security Risk Mitigation Plan
willymax93
SecurityRiskMitigationPlanTemplate.docxSecurity Risk Mitigation Plan Template
Instructions: Replace the information in brackets [ ] with information relevant to your project.
A Risk Management Analyst identifies and analyzes potential issues that could negatively impact a business in order to help the business avoid or mitigate those risks.
Take on the role of Risk Management Analyst for the organization you chose in Week 1. Research the following information about your chosen organization. Create a Security Risk Mitigation Plan using this template.
[Organization Name]
Security Policies and Controls
[Response]
Password Policies
[Response]
Administrator Roles and Responsibilities
[Response]
User Roles and Responsibilities
[Response]
Authentication Strategy
[Response]
Intrusion Detection and Monitoring Strategy
[Response]
Virus Detection Strategies and Protection
[Response]
Auditing Policies and Procedures
[Response]
Education Plan
Develop an education plan for employees on security protocols and appropriate use.
[Response]
Risk Response
Include: Avoidance, Transference, Mitigation, and Acceptance.
[Response]
Change Management/Version Control
[Response]
Acceptable Use of Organization Assets and Data
[Response]
Employee Policies
Explain the separations of duties and training.
[Response]
Incident Response
Document incident types and category definitions, roles and responsibilities, reporting requirements and escalation, and cyber-incident response teams.
[Response]
Incident Response Process
Discuss the incident response process including: preparation, identification, containment, eradication, recovery, and lessons learned.
[Response]
