THE SCENARIO
I am the Chief Information Security Officer for Harrisburg University. You are my primary Cyber Security team. We need to provide an accurate Risk Assessment report to the board and Chief Executive Officer. Your team must create a Risk Assessment report from the provided NIST template and also create an executive summary type presentation that I will give to the board and CEO
Your PowerPoint Presentation should be no more than 10 slides must include the following topics (at a minimum):
- Introduction (Assessment team, date, etc.)
- Purpose of the Risk Assessment (what business value does the assessment provide to
HU?) - Explain what a Risk Assessment is and how it should be used by a business.
- What was uncovered as a result of the assessment.
- What do the identified risks mean to HU (from a business perspective)
- What should be done to mitigate those risks and any consequences for accepting risks.
- Conclusion (Overall security posture of what was assessed