Problem: You are a security analyst with Grey Matter, and your line manager is the Director of Information Services, Sarah Jackson. She reports to the Executive Vice President, Martin Spearing. Prompted by the security assessment findings involved with the BrainMeld acquisition, Sarah has been advocating for a third-party security audit of all Grey Matter systems and data assets. She believes this is a good time for an audit and has also pointed out that in its 20-year history, Grey Matter has never had a third-party security audit. The company is relying solely on the internal team's diligence and expertise to ensure security and compliance. In your research into this matter, you find a case study from the SANS Institute.
Send an email to Sarah explaining why the piece applies and what it shows about the role of a third-party security audit for an organization. You also want to explain how the security team responded to the audit in the case study, and discuss how that can be applied to your organization.
I. in an email how would you tell a Manager
A. Identify potential reasons for a third-party audit.
B. Describe why a third party can reveal security issues that an internal team may miss.
C. Explain how the audit was effective in the case study.
D. Discuss applicable lessons that Grey Matter could learn from the case study.
E. Compose a professional email using appropriate language and formatting.