Write between 400 to 600 words for each of the short-essay questions. All questions are of equal value. You should provide credible references for each question according to the Faculty of Business guidelines.
Question 1
Investigate the Project Management Body of Knowledge (PMBoK). Write a report on one of the knowledge areas.
Question 2
Discuss the task of understanding potential threats which is part of the analysis phase of the SecSDLC. What are some ways to truly understand the enemy? How can you be sure you've covered all the bases?
Question 3
Find an example of a disaster recovery plan. Write a report on the elements included in the plan. Is there anything missing that you think should have been included?
Question 4
Find an example of an enterprise information security policy. What are four important aspects of this policy? Determine how the policy might be used.
Question 5
Research three recent information security breaches. Do the main targets seem to be larger or smaller companies? Is there a particular industry that seems predominately targeted? Do you think breaches at smaller companies are just as likely to occur but not as likely to make the news? Explain your reasoning.
Rationale
This assessment item is designed to test your understanding of ICT management and information security topics and issues. It is also to test your ability to write coherently and knowledgeable in these areas.