Concisely list in bullet point format the five actions you can use to reduce the risk once a risk assessment has been completed. Briefly describe how planning, staying on task, meeting deadlines, and utilizing feedback

Part 1: Questions and Answers

1. Concisely list in bullet point format the five actions you can use to reduce the risk once a risk assessment has been completed. Briefly describe how planning, staying on task, meeting deadlines, and utilizing feedback can each have a positive impact on reducing risk and promoting positive results in an organization.
2. Review the Website Security Policy in the scenario below. In a short table, match the five key areas of a good policy with the example below. Where does it match? Where can it be improved?

Website Security Policy Scenario

The following policy is included with the use of this website. This site collects personal information from you when you register, including a record of your email address. We also may collect IP addresses and domain names of users of this site to measure the number of visits and time spent on the site. We may occasionally ask you to complete surveys for research purposes.

“Cookies” may be used in connection with this website. A cookie is a small amount of data sent to your browser stored on your computer’s hard drive. Using cookies enables us to collect data without your express knowledge or approval. Most browsers are initially set to accept cookies, but you can change the setting to refuse to allow cookies.

We may provide the information we collect through this site to business partners. We may also use the information to inform you of new products, services, or promotions. We will not share personal information you submit to third parties unless ordered to do so by a legal authority.

Any questions regarding this policy should be directed to the management.

1. List the key roles of the personnel who should support and participate in the risk management process. As a CIO, discuss how you will promote reliability, accountability, and timeliness in a group work setting and why these should be included in a risk response plan.

Part 2: The National Institute of Science and Technology (NIST) offers free reports on best practices. Download and read the Guide for Conducting Risk Assessments and then complete the following.

1. Take a screen capture of Figure 5: “The Risk Assessment Process.”
2. Review the definitions of “threat” and “vulnerability” from the glossary in the NIST publication. From your readings and research, briefly identify the threats to security posed by employees. Include the vulnerability in the organization’s operation and the risk from the threat.

Reference

National Institute of Standards and Technology. (2012, September). Guide for conducting risk assessments. NIST Special Publication 800-30. U.S. Department of Commerce. http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-30r1.pdf

ASSIGNMENT REQUIREMENT

Your paper should be 2–3 pages in length.

Written work should be free of spelling, grammar, and APA errors. Points deducted from the grade for each writing, spelling, or grammar error are at your instructor’s discretion.

Be sure to use in-text citations where relevant and a reference page. The title page and reference page are not included in the page count.

Please be sure to download the file “Writing With Integrity” from Academic Tools to assist you with meeting APA expectations.

Your sources and content should follow proper APA Style.

Plagiarism: Also review the university policy on plagiarism