Submit a WORD document, which will contain the final and Cybersecurity Risk Management Report for PPP Manufacturing.
III. Steps to Completion
1. Prepare a network diagram based on your interviews, reflecting your understanding of the PridePoint network in its current state. Include:
a. Zone boundaries
b. Connection points and links
c. Known security capabilities
2. Review the list of risk identified by the Director of Technology Operations. For each risk, based on your interviews:
a. Estimate the difficulty in detecting the threat event given current capabilities.
b. Identify a vulnerability that aligns with the threat event.
c. Summarise a possible consequence associated with the risk.
3. Select the most serious risk based on your assessment and your understanding of the enterprise risk appetite.
4. Based on the work that you have done in this case, how would you summarise the overall level of IT risk in your report to the CIO?
5. What are the benefits of providing an overall level of IT risk? Are there any downsides?