Is3110 Project Risk Management Plan - 1805 Words

Defense Logistics Information Service (DLIS) Outline I. Introduction a. Scope b. Assign to departments c. Risk Matrix d. Risk mitigation plan e. Impact Analysis II. (BIA) f. Departments g. Business Impact h. Costs Analysis III. Recommendations (BIA) i. Business Impact Analysis Results j. Maximum Acceptable Outage IV. (DLIS) Business Continuity Plan a. Purpose b. Scope c. Plan Objectives d. Disaster definition e. Recovery teams f. Team member responsibilities g. Instructions for using the plan/Invoking the plan h. Data backup policy i. Offsite storage procedures j. In the†¦show more content†¦Key roles that will play a big part in the completion of this project will pertain to network security and reliability and client confidentiality. Department Managers | * Departments will do a RA specific to their department. * Duties will be carried out by Supervisors. | Employees | * Employees will carry out task dependent on there department. | Assign to departments: Risk matrix Level | Likelihood Definition | High | The threat source is highly motivated and sufficiently capable, and controls to prevent the vulnerability from being exercised are ineffective. | Moderate | The threat source is motivated and capable, but controls are in place that may impede successful exercise of the vulnerability. | Low | The threat source lacks motivation or capability, or controls are in place to prevent, or at least significantly impede, the vulnerability from being exercised. | * Risk mitigation plan * Risk mitigation: The next major step in measuring level of risk was to determine the adverse impact resulting from successful exploitation of vulnerability. The adverse impact of a security event can be described in terms of loss or degradation of any, or a combination of any, of the following three security goals: * Loss of Confidentiality – Impact of unauthorized disclosure of sensitive information (e.g., Privacy Act). * Loss of Integrity – Impact if system or data integrity is lost by unauthorizedShow MoreRelatedRisk Assessment Consists Of Detecting And Calculating Security Risks Essay754 Words   |  4 PagesRisk assessment consists of detecting and calculating security risks, addressing these concerns before cultivation and advising such risks to management (Wisegate, Inc., 2015). A risk assessment plan assists in determining not â€Å"if† but how vulnerable our system is. Having the knowledge of weak protocols, untrained employees, and insecure connections is essential to the health of our organization. The first step in a risk assessment plan is to understand our operating environment. The next step isRead MoreProject Part 1 Task 1 Essay1371 Words   |  6 PagesProject Part 1 Task 1 Draft Risk Management Plan Ernest Martinez Jr. C. Flack IS3110 October 22, 2012 Purpose The Senior Management of the Defense Logistics Information Services (DLIS) has decided to update the previous risk management plan with a developing, new risk management plan. This new risk management plan will not only minimize the amount of risk for future endeavors, but will also be in compliance with regulations such as the Federal Information Security Management Act (FISMA)Read MoreRisk Mitigation Plan Based On Inputs Provided833 Words   |  4 PagesDLIS risk manager and team will now be responsible with developing a risk mitigation plan based on inputs provided by said team. Funds have been allocated for the plan due to the importance of risk mitigation to the organization. Thus, senior management is committed to and supportive of the project (ITT-Technical Institute, 2015). Documentation, training, policies and procedures are helpful when creating, testing and implementing a new risk mitigation plan. Documentation is extremely helpfulRead MoreRisk Assessment Consists Of Detecting And Calculating Security Risks1446 Words   |  6 PagesRisk assessment consists of detecting and calculating security risks, addressing these concerns before cultivation and advising such risks to management (Wisegate, Inc., 2015). A risk assessment plan assists in determining not â€Å"if† but how vulnerable our system is. Having the knowledge of weak protocols, untrained employees, and insecure connections is essential to the health of our organization. The first step in a risk assessment plan is to understand our operating environment. The next stepRead MoreDefense Logistics Information Service Business Continuity Plan Essay838 Words   |  4 PagesIntroduction to the Department of Defense / Defense Logistics Agency / Defense Logistics Information Service Business Continuity Plan (BCP) The purpose of the DLIS BCP is to provide a Business Continuity Plan based on information previously submitted and authorized in the DLIS Risk Analysis (RA) Risk Mitigation (RM) plan and Business Impact Analysis (BIA). The BCP includes the following information: (Gibson, D.) A. Purpose: The purpose of the BCP is to ensure that mission-critical elements ofRead MoreObjectives Of A Risk Management Plan5550 Words   |  23 Pages IS3110 Final Project By: Alfredo Ramos Osbaldo Ruiz INTRODUCTION Purpose Of A Risk Management Plan Defense Logistics Information Services (DLIS) senior Management has decided that they are going to update the former risk management plan with a new plan. This new risk management plan for DLIS will not only lessen the amount of risk for future activities, but it will also be in compliance with standard regulations such as FISMA, DOD, DHS, NIST, COBIT, and DAICAP. A risk is by definition is the