Create a report documenting various aspects of how risk management impacts the business model.
Scenario
You work for a large, private health care organization that has server, mainframe, and RSA user
access. For the third week in a row, Sean comes into your office at 5:00 p.m. on Friday and needs
you to write a report describing some of the risks associated with not having all the security
items in place. He needs you to research a generic risk management policy template and use that
as a starting point to move forward. He also asked you to search for risk outcome examples from
organizations similar to theirs.
You realize that your organization does not have much in the way of an information security
strategy, and is missing many of what you think are critical components. Your organization is
compliant with the Health Insurance Portability and Accountability Act (HIPAA) and follows other
external compliance requirements.
Sample Answer
Sample Answer
