Assignment: Cyber Security Governance
Part I Answer all questions listed in this section
1. Identify one NIST cyber security standard useful to support cyber security governance in an organization.
2. Explain how selected standard can be valuable for governance of cyber security function. Provide good argument based on information covered in class.
3. Summarize the standard in maximum 20 PowerPoint slides.
Part II Answer any two of the questions listed in this section.
1. Evaluate the selected standard (and its controls) from Part I against following criteria:
a. Strategic,
b. Tactical, and
c. Operational.
Explain each category and choice of controls in terms of effectiveness in governing cyber security.
2. Review and categorize the controls provided in the selected standard from Part I in terms of following three categories:
a. Normative controls (Trust, Ethics)
b. Formal (rules, policy, responsibility, integrity)
c. Technical controls
You should explain whether and how these criteria are covered in the selected standard. Provide support for your position.
3. Identify controls provided in selected standard from Part I and categorize in following three links of the Business Model for Information Security:
a. People - Process
b. Process - Technology
c. Technology - People
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also include a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also Include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.