Problem:
A successful virus, spyware program, or exploit would be a disaster for any government agency that is providing critical services to the United States and its citizens; therefore, your team must specifically outline the steps involved in the information system (IS) risk assessment and develop an actual IS security risk assessment report for the client.
Provide a report to the client with the following information:
1. A title page
2. Content that includes the following:
- Introduction to the contents of the report
- Description of the types of real threats and vulnerabilities that the government agency is facing
- Description of how the Certification & Accreditation team will determine risk and identify the specific level of risk for each vulnerability
- Description of how the organization will track critical deficiencies and the actions that must be taken to mitigate those vulnerabilities
- Conclusion describing the approach taken with threats, vulnerabilities, tracking, and reporting to meet the Federal Information Security Management Act (FISMA) guidelines
The report should be a minimum of 3-5 pages in length
Additional Information:
This question is from Computer Science as well as it is about a scenario where you need to do risk assessment for virus or spyware attack and outline information security risk for your client.
Total Word Limit: 1151 Words