Case Assignment
After reading the articles (the first two are documentations with many pages, please selectively read the important content rather than read word-by-word), please write a 3-5 page paper titled:
"How to Systematically Conduct Risk Assessments of Information System Security Risks? -- Fundamentals and Methods"
Assignment Expectations
Please address the following issues in your paper:
1. The importance of risk management for information system security
2. The principles and fundamentals of risk management of information system security
3. The importance and fundamentals of risk assessment of information system security
4. The methods of risk assessments including processes, matrix, calculations, etc.
5. The challenges and solutions to risk assessments that are particularly interesting to you
Articles:
1. Managing Information Security Risk: Organization, Mission, and Information System View.