CIS 608 Logo

CIS 608 Logo
CIS 608 - Information Security Management

Monday, October 10, 2011

Post 035 - CIS 608

Week 7 Assignments- Maps to Course Obj. 1
: Chapters 6 & 7, Management of Information Security, 3e.
: Powerpoint Slides, Chapters 6 & 7, located in Course Documents, Lecture Notes
: NIST Security docs
: 2010 Data Breach Investigations Report

Learning Objectives - Week 7
Select from the dominant information security management models, including US goverment-sanctioned models, and customize them for a specific organization
Implement the fundamental elements of key information security management practices
Follow emerging trends in the information security models.

Assignment 7.1
This assignment is worth 50 points.
This week you'll be revisiting the Verizon report from Week 3. At the end of the 2010 report (linked above), you'll see a set of recommendations. Your task is to select one recommendation from that report and create a Performance Measures document that an organization could use to assess how well that recommendation was implemented. The NIST 800-55, rev. 1 and your textbook both provide examples of a Performance Measures document.
Assignment 7.2 (post to the Week 7 Forum)
This assignment is worth 50 points; 25 points for your original posting, and 25 points for participation.
Examine the Systems Security Engineering - Capability Maturity Model (SSE-CMM) site link above. This model has recently been accepted as ISO/IEC 21827. Given the prevalence of security management models published by NIST, how does this fit into the picture? Additionally, given the prevalence of security models, what course of action would you recommend to an organization which seeks to adopt a security model, and upon what criteria might they base their decision? (examples: size of the organization? Industry type?)
Minimum Posting Requirements: You must post at least five messages to get credit for participation. The first message is your original posting, due no later than Wed. At least two of the other messages must be responses to other student originalpostings. This is a pass/fail type of grade. If you meet the minimum requirements you get the points. If you do not meet the minimum requirements, you'll get no points for participation. Messages must be posted on more than one day. Don't wait until the last minute!

Group Assignment-Week 7
This assignment is worth 50 points.
As a group, determine a best response to the Case Exercises for RWW, Inc. at the end of these chapters. Use your group forum area for discussion, located under the Groups button to the left...
Have one person in your group post the group consensus, labeled as "Week7 Post - Grade Me" to your group forum.
Assignment 7.3 (Post to your Blog)
This assignment is worth 20 points.
Time to start adding to that blog! If you are not sure what to include, you might want to re-read the assignment located at the top of the Week 1 Assignments.

No comments:

Post a Comment