Budgeting-for-Cybersecurity-case-study-help-
** CASE STUDY IS ATTACHED**
TOPIC: Budgeting for Cybersecurity
ASSIGMENT:
Prepare a two page briefing paper (5 to 7 paragraphs) for the senior leadership and corporate board of the case study “company” which addresses planning (what do we need to do?), programming (how will we do it?), and budgeting (how will we pay for it?) processes for IT security program management.
1. Use the case study and enterprise architecture diagrams to identify five or more risks which require a financial investment. Financial investments should be categorized as: people investments, process investments, and/or technology investments.
2. Choose one of the four strategies for reducing the costs associated with responding to cyberattacks from the Rand report (A Framework for Programming and Budgeting for Cybersecurity):
- Minimize Exposure
- Neutralize Attacks
- Increase Resilience
- Accelerate Recovery
3. Discuss how your selected strategy can be used in the planning (what do we need to do?) and programming (how will we do it?) phases of budget preparation to identify less costly solutions for implementing technical, operational, and management controls.
Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.
WEEKLY READINGS:
http://www.nationalcybersecurityinstitute.org/genenral-public-interests/cyber-security-budget-planning-for-small-businesses/http://csrc.nist.gov/publications/nistpubs/800-100/SP800-100-Mar07-2007.pdf
http://csrc.nist.gov/publications/nistpubs/800-100/SP800-100-Mar07-2007.pdf
http://csrc.nist.gov/publications/nistpubs/800-55-Rev1/SP800-55-rev1.pdf
GRADING RUBRIC:
Introduction to Briefing Statement or Paper 10 points
Provided an excellent introduction to the deliverable which clearly, concisely, and accurately addressed the topic of the briefing statement or paper. Appropriately paraphrased information from authoritative sources.
Analysis 15 points
Provided an excellent analysis of the issues for the required briefing topic. Addressed at least three separate issues and provided appropriate examples for each. Appropriately used and cited information from authoritative sources
Summary 10 points
Included an excellent summary section for the briefing statement or paper which was on topic, well organized, and covered at least 3 key points. The summary contained at least one full paragraph.
Use of Authoritative Sources5 points
Included and properly cited three or more authoritative sources (no errors).
Professionalism 10 points
No formatting, grammar, spelling, or punctuation errors. Submitted work shows outstanding organization and the use of color, fonts, titles, headings and sub-headings, etc. is appropriate to the assignment type.