CYB 207 Wk 2 Discussion

0 items
CYB 207 Wk 2 Discussion
CYB 207 Wk 2 Discussion
$3.00
  • Description

CYB 207 Wk 2 Discussion

Post a total of 3 substantive responses over 2 separate days for full participation. This includes your initial post and 2 replies to classmates or your faculty member.

Option 1

Due Thursday 

NOTE: This is a confusing and complex approach for assessing risk. I will give full credit for any attempt at this, but I recommend completing Option 2 instead.

Selecting controls is based on the categorization of an organization’s data. The higher the sensitivity (Low, Medium, High) of the data, the more protection is required. The CNSSI No. 1253, Security Categorization and Control Selection for National Security Systems is a companion document for NIST SP 800-53, which is referenced in this week’s assignment. It describes the processes for data categorization and security control selection.

 

Within the Risk Assessment (RA) family of security controls, as listed in Appendix D-1 table of CNSSI No. 1253, assign those specific security controls required to be assessed for two IT Systems, X and Y, with data categorized as follows:

  • IT System X:
  • Confidentiality: High
  • Integrity: High
  • Availability: High
  • IT System Y:
  • Confidentiality: Low
  • Integrity: Low
  • Availability: Low

Discuss the control selection for each IT system.

  • Which IT system that had more RA security controls required for risk assessment?
  • What RA security controls that were selected in common for both IT systems?

Due Monday

Post 2 replies to classmates or your faculty member. Be constructive and professional.

Option 2

Due Thursday

Defense in Depth is a security concept that relies on multiple security controls to protect the confidentiality, integrity, and availability of a company’s assets and data.

Define the term “Defense in Depth.”

Describe an example where a mix of technical, administrative, and physical security controls are used to provide protection for your chosen example.

Due Monday

Post 2 replies to classmates or your faculty member. Be constructive and professional.