Homework: Info Security and Risk Management
Scenario (Please refer the attached word doc for more details):
You are an information technology (IT) intern working for Health Network, Inc. (Health Network), a fictitious health services organization headquartered in Minneapolis, Minnesota. Health Network has over 600 employees throughout the organization and generates $500 million USD in annual revenue. The company has two additional locations in Portland, Oregon and Arlington, Virginia, which support a mix of corporate operations. Each corporate facility is located near a co-location data center, where production systems are located and managed by third-party data center hosting vendors.
Task A: Risk Management Plan
For the first part of the assigned project, you must create an initial draft of the final risk management plan. To do so, you must:
a. Develop and provide an introduction to the plan by explaining its purpose and importance.
b. Create an outline for the completed risk management plan.
c. Define the scope and boundaries of the plan.
d. Research and summarize compliance laws and regulations that pertain to the organization.
e. Identify the key roles and responsibilities of individuals and departments within the organization as they pertain to risk management.
f. Develop a proposed schedule for the risk management planning process.
g. Create a professional report detailing the information above as an initial draft of the risk management plan.
h. Write an initial draft of the risk management plan as detailed in the instructions above. Your plan should be made using a standard word processor format compatible with Microsoft Word.
Task B: Risk Assessment Plan
After creating an initial draft of the risk management plan, the second part of the assigned project requires you to create a draft of the risk assessment (RA) plan. To do so, you must:
a. Develop an introduction to the plan explaining its purpose and importance.
b. Create an outline for the RA plan.
c. Define the scope and boundaries for the RA plan.
d. Research and summarize RA approaches.
e. Identify the key roles and responsibilities of individuals and departments within the organization as they pertain to risk assessment.
f. Create a professional report detailing the information above as an initial draft of the RA plan.
Task C: Risk Mitigation Plan
Senior management at Health Network allocated funds to support a risk mitigation plan and have requested that the risk manager and team create a plan in response to the deliverables produced within the earlier phases of the project. The risk mitigation plan should address the identified threats described in the scenario for this project, as well as any new threats that may have been discovered during the risk assessment. You have been assigned to develop this new plan.
Format your homework according to the give formatting requirements:
a. The answer must be double spaced, typed, using Times New Roman font (size 12), with one-inch margins on all sides.
b. The response also includes a cover page containing the title of the homework, the course title, the student's name, and the date. The cover page is not included in the required page length.
c. Also include a reference page. The references and Citations should follow APA format. The reference page is not included in the required page length.