The purpose of this assignment is to develop a risk model, define the risk program goals, and communicate the program implementation strategy.
Using the company selected for the Topic 5 and Topic 6 assignments, establish a comprehensive security risk program for the organiza
Justify the selected risk management framework (e.g., NIST 800-37, OCTAVE Allegro, FAIR, FRAAP, NIST 800-30).
Define the steps within the risk management framework being adopted.
Include a workflow diagram (created from MS Vision, OpenDraw, or other drawing software) that illustrates how management will make effective decisions for each stage.
Describe how architecture and system updates will be selected and applied.Risk Management Programme.