CMGT/433: Cyber Security – Action Plan
Assignment Content
An action plan is often developed to assist project leaders to effectively demonstrate what items need to be addressed when charged to create or improve a business process, program, practice, etc. A plan should break down individual requirements and issues into steps that can be tracked, indicate team member(s) responsibility, and completion (including prerequisites) dates. A plan usually includes goals, steps, assignments, and deadlines.
The executive staff at Dayton Soft Products did not agree with your first recommendations provided in your executive summary. They asked that you go with your number 2 and number 4 recommendations, which they thought would be best for their organization. This presents a challenge to you, but you must go ahead with what your client wants.
Create an action plan with a total of at least 10 tasks. Each task must address the following three issues:
- Risk assessment (overall strategy)
- Contingency planning
- What is your plan if there is a problem? Who sets the priorities following an incident? Who is going to do what? What are the priorities? How do you keep the plan going?
- Vulnerability management
- What is the strategy for ongoing risk identification?
- Once you’ve identified the risk, how do you mitigate the risk? What are the steps?
- You may complete this action table either as a 4- to-5-page Microsoft® Word document or as a detailed Microsoft® Excel spreadsheet. The following are examples of column heading titles for a table-formatted action plan:
- Column 1: Action Item
- Column 2: Description/Details
- Column 3: Person Responsible
- Column 4: Status
- Column 5: Due Date
- Column 6: Prerequisites
- Column 7: Date Completed
- Column 8: Comments/Notes
-
Note: The page assignment length requirement applies to the content of the assignment. Start the assignment with an APA formatted title page and add a reference section with at least two professional references. Use the references in the text of the assignment. Make sure to check the SafeAssign originality score. Individual assignments can be submitted multiple tie to correct content, quality, and originality issues.
Individual Week 3 – Action Plan | |||
MEETS CRITERIA? | |||
Prioritizing Threats Executive Summary |
PTs |
Grade |
COMMENTS |
Content ( 90 points) |
|||
An action plan is often developed to assist project leaders to effectively demonstrate what items need to be addressed when charged to create or improve a business process, program, practice, etc. A plan should break down individual requirements and issues into steps that can be tracked, indicate team member(s) responsibility, and completion (including prerequisites) dates. A plan usually includes goals, steps, assignments, and deadlines. The executive staff at Dayton Soft Products did not agree with your first recommendations provided in your executive summary. They asked that you go with your number 2 and number 4 recommendations, which they thought would be best for their organization. This presents a challenge to you, but you must go ahead with what your client wants. Create an action plan with a total of at least 10 tasks. Each task must address the following three issues: · Risk assessment (overall strategy) (20pts) · Contingency planning (10pts) · What is your plan if there is a problem? Who sets the priorities following an incident? Who is going to do what? What are the priorities? How do you keep the plan going? (20pts) · Vulnerability management (10pts) · What is the strategy for ongoing risk identification? (10pts) · Once you’ve identified the risk, how do you mitigate the risk? What are the steps? You may complete this action table either as a 4- to-5-page Microsoft® Word document or as a detailed Microsoft® Excel spreadsheet. The following are examples of column heading titles for a table-formatted action plan: (20pts) Column 1: Action Item · Column 2: Description/Details · Column 3: Person Responsible · Column 4: Status · Column 5: Due Date · Column 6 : Prerequisites · Column 7: Date Completed · Column 8: Comments/Notes Submit your assignment. |
90 | ||
X out of 90 |
|||
Research |
|||
Assignment has research depth including at least two outside relevant peer reviewed references from course material and/or the library. |
10 | ||
Organization |
|||
Assignment is organized appropriately covering all required topics in a logical sequence. Table or excel sheet is included, Title, introduction, body, conclusion and references are included in required sequence. |
4 | ||
Quality and APA: |
|||
Assignment projects professional, quality image, meets academic integrity requirements. Includes MS Excel or MS Word document required by the assignment in APA format with label. Include title page and reference section. References in APA format. No spelling errors – the paper has obviously been proofread. Title and reference slides/pages do not count toward the length requirement. |
6 | ||
TOTAL POINTS FOR RESEARCH, ORGANIZATION, QUALITY, AND APA REQUIREMENTS |
X out of 20 |
||
TOTAL POINTS |
(X out of 110 possible points) 11-17-19 rpg |
Cyber Security Threat
5
Cyber Security Threat
Student’s Name
Instructor’s Name
Course
Date
Cybersecurity threats are programs that install themselves to users’ computers without one’s consent so that they gain profit and track targeted personal information. This is done by hackers who want to access certain data from computers. Cybersecurity threats do occur severally which makes it easy for businesses to detect and get rid of them once spotted. (Hugh, 2010), states that cybersecurity threat attack data and disrupt it in general. The threats come along with the aim of financial gain, espionage, and to cause disruption. The attacks include Denial of Service (DOS), data breaches, and phishing, malware, and spear phishing.
Malware threat is software that does an anonymous task on a network or system such as taking over a system by corrupting user data. Phishing involves tricking an email recipient to disclose confidential information by clicking a certain hyperlink that they will use so that all information can be filled accordingly. Data breaches involve the theft of data by hackers. In most cases, data breaches are intended for identity theft and embarrassing certain firms. Denial of Service (DoS) is where an attacker uses several devices to attack a target system thus making it stop working as usual.
The cybersecurity category that I recommend to address is data breaches. Most hackers are into data breaches since many organizations doing well are their targets hackers find ways to corrupt their data such that they can embarrass the organization and steal their identity. As a result, this can make the buyers shift to other competitors of that company hence resulting in loss to the company. Coming up with ways of handling data breaches can help secure the company data from malicious attacks.
One of the challenges of cloud computing needs into the company is cost. Cloud computing is cheap but making it effective for the entire company is very costly. For the service to wholly meet the company’s needs it can be expensive. According to (Ray, 2017), the costs of repair and maintenance over and over can be too costly thereby being a challenge to the firm. The other challenge is password security. In cases where several people have access to encrypted data; it becomes less secure since not all people who access that data are trustworthy. Some of the people could disclose the passwords to hackers who can then pan on attacking the company’s systems and networks causing disruption. A chart explaining the challenges is shown below;
Due to cybersecurity attacks, there is a device referred to as an intrusion prevention system whose purpose is to detect and block malicious activities that take place in various computer systems. In most cases, they assess the traffic slows to the site that is protected so as to detect unwanted actions. These unwanted actions are meant for interrupted targeted services. The importance of testing for the detection and intrusion of risks helps reduce security threats. The tests enable one to know and understand in the information technology infrastructure is resilient against dangerous threats. The tests look for suspicious actions and alert users so that they can fix that as soon as possible.
In conclusion, cybersecurity attacks have been in place for over years and it has affected several people and organizations. It has resulted in the theft of valuable data. Hackers make data unavailable by disrupting computers and the entire systems. The threats grow serious day in day out. Individuals need to aware and educate people around them on the safety measures to be carried out to ensure that everyone knows how to protect their data from being hacked. Being on the look can help prevent actions that can cause data loss such as phishing. In addition to that, it should be noted that cybersecurity threats are there to attack targeted computers and therefore individuals should always encrypt sensitive data.
References
Hugh T. (22nd Jan, 2020). What are cyber threats and what to do about them. Retrieved from:
https://preyproject.com/blog/en/what-are-cyber-threats-how-they-affect-you-what-to-do-about-them/
Ray P. (26th Oct, 2017). 6 major challenges of cloud computing. Retrieved from:
https://www.techwell.com/techwell-insights/2017/10/6-major-challenges-cloud-computing