Assignment: Infosec Review
Part 1: Review Questions
1. Why do networking components need more examination from an information security perspective than from a systems development perspective?
2. What value would an automated asset inventory system have for the risk identification process?
3. What are vulnerabilities?
4. What are the four risk control strategies?
5. Describe residual risk.
6. Describe how outsourcing can be used for risk transference.
Part 2: Module Practice
Identify threats associated with outside vendors. Use as an example the threats to the information security of a small internet commerce company with 10 employees. In this example, the company uses an outside vendor for its order fulfillment. Once the list of threats has been generated, assign a likelihood score to each threat.
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also include a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also Include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.