Apply the new NIST Cybersecurity Framework to an Organization, computer science homework help

in /by

Apply the new NIST Cybersecurity Framework to an Organization, computer science homework help

Work has to be original, no plagiarism. Paper should be 5 pages single space in length with document and citation formatting per APA Requirements.

Apply the new NIST Cybersecurity Framework to an Organization.

Background: In February 2014, The Framework for Improving Critical Infrastructure was released by the National Institute of Standards and Technology (NIST) for public review and comment. The NIST Framework is described in:

NIST. (2014). Framework for improving critical infrastructure cybersecurity. Gaithersburg, MD: National Institute of Standards and Technology.

Also read more about the NIST Framework at http://www.nist.gov/cyberframework/

The NIST Framework, developed in collaboration with industry, provides guidance to organizations on the management of cybersecurity risk. A key objective of the NIST Framework is to encourage organizations to consider cybersecurity risk as a priority similar to financial, safety, and operational risk while factoring in larger systemic risks inherent to critical infrastructure.

Preparation: Choose a real or hypothetical corporation (profit or non-profit) or other type of organization that uses IT in its product(s), service(s), activities, and/or operations. If you work in an organization or field that could benefit from an information network security analysis, you might choose to use it as your case.

Assignment: Prepare a well-written security policy analysis for your organization that utilizes the concepts learned in the course and the NIST Framework as a basis for your analysis.

Should include the following elements:

Introduction briefly summarizing the organization’s mission, goals, products/services, business model, and strategy.

Analysis of the organization’s situation and needs relative to its clients/customers, staff, management, and owners or other stakeholders.

Analysis and synthesis of the organization’s needs using the Framework Core and Framework Profile methodologies as tools. A Framework Profile is a tool to enable an organization to establish a roadmap for reducing cyber security risk that is well aligned with organization and sector goals, considers legal/regulatory requirements and industry best practices, and reflects risk management priorities. A Framework Profile can be used to describe both the current state and the desired target state of specific cyber security activities, thus revealing gaps that should be addressed to meet cyber security risk management objectives.

Make sure that your analysis addresses the basic elements of a good security policy as may be appropriate to your organization. Such elements might include a vulnerability assessment, firewall provisions, encryption systems, authentication and authorization, intrusion detection, virus detection, codes of ethics, legal/compliance requirements, education, training, incident reporting, etc.

The last part of your report should provide a critique of the efficacy of the NIST Framework, how well it serves your needs, and what might be its shortcomings. Also address any specifications in the framework that are not applicable to, or efficacious for, your organization and whether any important foundational elements absent in the framework need to be added.

Discuss and cite at least three credible or scholarly sources to support your analysis and policy choices. Paper should be 5 pages single space in length with document and citation formatting per APA Requirements.

"You need a similar assignment done from scratch? Our qualified writers will help you with a guaranteed AI-free & plagiarism-free A+ quality paper, Confidentiality, Timely delivery & Livechat/phone Support.


Discount Code: CIPD30



Click ORDER NOW..

order custom paper