Case Study - Information Security Risk Assessment

Case study and instructions are attached in pdf and requirements are below - thank you.

This will be checked against a popular plagiarism checker so please be mindful.

REQUIREMENTS:

Our 15 - 25 page Risk Assessment Paper is due on XX. This is a formal research paper that should contain a title page, table of contents, running header, page count, executive summary, and a significant scholarly reference list (at least 5 - 10 sources). Your paper should be formatted using APA styling. A few well placed tables or charts are fine (provided they are in APA format). However, do not over use tables, charts, or graphs to increase page count. This will lower the quality of your paper. Also, ensure your fonts, margins, and spacing are APA standard.

As you are building the outlines for your papers be sure to align them with the rubric. I will use the rubric to grade your work and assign points. If your paper is in line with the rubric (i.e. align the rubric with your table of contents) it will be well organized and ensure you get all the points you deserve. I am hopeful that I will be reading a lot of "A" papers. Proof read, use correct grammar, and stick to covering the rubric and you will do great.

Lastly, remember to use Turnitin for this assignment. If there are any issues with using Turnitin you should connect with me ASAP so we can figure it out. If no prior arrangement has been made, I will expect each paper to be submitted to Turnitin.

Rubric Name: Risk Assessment Paper

CriteriaAdvancedCompliantMinimalNon-CompliantInventory assets and prioritize them in the order of mission criticality10 points

Inventoried, prioritized assets, and addressed mission objectives in their asset priority.

7 points

Inventoried, prioritized assets, but did not address mission objectives in their asset priority.

4 points

Inventoried assets but did not prioritize them in the order of mission criticality.

0 points

Did not inventory or prioritize assets in the order of mission criticality.

Evaluate enterprise topology and perimeter protection10 points

Evaluated enterprise topology, perimeter protection measures, and addressed mission objectives.

7 points

Evaluated enterprise topology, perimeter protection measures, but did not address mission objectives.

4 points

Evaluated enterprise topology but did not include perimeter protection measures.

0 points

Did not evaluate enterprise topology and perimeter protection.

Evaluate remote access to the networks10 points

Evaluated remote access protocols, security safeguards to the network, and addressed mission objectives.

7 points

Evaluated remote access protocols, security safeguards to the network, but did not address mission objectives.

4 points

Evaluated remote access protocols but did not address security safeguards to the network.

0 points

Did not evaluate remote access protocols and safeguards to the network.

Evaluate authentication protocols and methodologies10 points

Evaluated authentication protocols, methodologies with supporting data, description; and addressed mission objectives.

7 points

Evaluated authentication protocols, methodologies with supporting data and description, but lacks mission objectives.

4 points

Evaluated authentication protocols, methodologies but with insufficient data or inadequate description.

0 points

Did not evaluate authentication protocols and methodologies.

Evaluate web access protocols and vulnerabilities10 points

Evaluated web access, protocols, vulnerabilities, and addressed mission objectives.

7 points

Evaluated web access protocols, vulnerabilities, but did not address mission objectives.

4 points

Evaluated web access protocols but did not address vulnerabilities.

0 points

Did not evaluate web access protocols and vulnerabilities.

Assign asset values to organization assets for quantitative risk assessment10 points

Assigned asset values to organization assets in a complete inventory, and addressed mission objectives.

7 points

Assigned asset values to organization assets in a complete inventory, but did not address mission objectives.

4 points

Assigned asset values to organization assets for quantitative risk assessment but incomplete.

0 points

Did not assign asset values to organization assets for quantitative risk assessment.

Assess vulnerabilities on each asset10 points

Assessed vulnerabilities on each asset of complete inventory and addressed mission objectives.

7 points

Assessed vulnerabilities on each asset of complete inventory but did not address mission objectives.

4 points

Assessed vulnerabilities on each asset but incomplete.

0 points

Did not assess vulnerabilities on each asset.

Recommend risk mitigation procedures commensurate with asset values10 points

Recommended risk mitigation procedures commensurate with asset values of complete inventory, and addressed mission objectives.

7 points

Recommended risk mitigation procedures commensurate with asset values of complete inventory, but did not address mission objectives.

4 points

Recommended risk mitigation procedures commensurate with asset values, but incomplete.

0 points

Did not recommended risk mitigation procedures commensurate with asset values.

Formulate 15 - 25 pages of a quantitative risk assessment in APA format10 points

Followed proper quantitative risk assessment format and conformed to APA in a sufficient reference list and page count.

7 points

Followed proper quantitative risk assessment format and conformed to APA but insufficient reference list and page count.

4 points

Followed proper quantitative risk assessment format but did not conform to APA format.

0 points

Did not follow proper quantitative risk assessment format, and failed to conform to APA format.

Executive summary of risk assessment10 points

Included an executive summary in details, and

addressed mission objectives.

7 points

Included an executive summary in details, but did not address the mission objectives.

4 points

Included an executive summary but lacks details.

0 points

Did not include an executive summary.

Overall ScoreLevel 439 or moreLevel 329 or moreLevel 219 or moreLevel 10 or more