Broadly speaking, the assignment requires you to produce a 3000-word report that provides a critical reflection on a real-world security scenario provided in the case study, with evidence of risk assessment using suitable methodologies, and how this can inform mitigation of future incidents. The assignment also requires the delivery of a 10-minute presentation to disseminate the findings reported in your report, to address the role of Information Risk Management to the wider organisation. The assignment is described in more detail in section 2. This is an individual assignment. Working on this assignment will help you to develop your knowledge and understanding of applying risk methodologies to resolve real-world security incidents. It will also help to develop your critical thinking skills for identifying appropriate mitigation strategies to avoid future security incidents. If you have questions about this assignment, please post them to the discussion board "Information Risk Management Assignment" on Blackboard. Case study: Imagine you are in charge of an organisational risk management strategy across three distinct departments of the organisation. The organisation envisions risk as, 'potential vulnerabilities present across our security landscape leads to exposure which enables a cyber incident against the infrastructure, capability, services and applications, which leads to an impact upon Confidentiality, Integrity and/or Availability resulting in reduced resilience, reduced safety, ineffective capabilities, loss of business services, financial impact and reputational damage to LIK Government'

Transcribed Image Text:

Broadly speaking, the assignment requires you to produce a 3000-word report that provides a critical reflection on a real-world security scenario provided in the case study, with evidence of risk assessment using suitable methodologies, and how this can inform mitigation of future incidents. The assignment also requires the delivery of a 10-minute presentation to disseminate the findings reported in your report, to address the role of Information Risk Management to the wider organisation. The assignment is described in more detail in section 2. This is an individual assignment. Working on this assignment will help you to develop your knowledge and understanding of applying risk methodologies to resolve real-world security incidents. It will also help to develop your critical thinking skills for identifying appropriate mitigation strategies to avoid future security incidents. If you have questions about this assignment, please post them to the discussion board "Information Risk Management Assignment" on Blackboard. Case study: Imagine you are in charge of an organisational risk management strategy across three distinct departments of the organisation. The organisation envisions risk as, 'potential vulnerabilities present across our security landscape leads to exposure which enables a cyber incident against the infrastructure, capability, services and applications, which leads to an impact upon Confidentiality, Integrity and/or Availability resulting in reduced resilience, reduced safety, ineffective capabilities, loss of business services, financial impact and reputational damage to UK Government'. The risk applies to three main business domains: IT & Infrastructure Equipment Logistics & Support services Each business domain is managed by a separate Director, but collectively they (all three) own the risk. There is a separate Director who is accountable for the risk, and they report the status to the Executive Board throughout the year.