Project #32895 - Security Risk Management

Imagine that you work for U.S. Industries, Inc. as a network administrator. Your company has just won a contract with the U.S. Government and you have been given the responsibility to complete the project. The project involves expanding an existing network. Your company has never traded with the U.S. Government at this level. Therefore, this is your chance to prove yourself in the company.

You have just left a four hour meeting where you described the network expansion project to your colleagues. You explained the architecture, new enterprise level firewall, the additional requirements for network monitoring, the need for an additional system administrator, and the risks of not complying with Federal Information Security Management Act (FISMA) regulations for securely trading with the U.S. Government.

The project is expected to have a total cost of three million U.S. Dollars (USD) to bring it to full operation in approximately six months. Your tasks in this project are to develop, test, and bring into production a network with these requirements in a short time frame.

This project, if executed properly, is likely to have an annual income of 20 million USD for your company. This income is a 20% premium to the other sources of incomes, amounting to 80 million USD; your company is expected to have in the current year.

Based on the service level agreement, service delivery requirements are expected to be on time and within the specified quality parameters of +/- 1.5% of the time with deliveries scheduled for alternating Monday afternoons. For each month the project is late, a 2% reduction per month in the overall contract price will be levied on your company. If this reduction reaches 10%, the contract will be transferred to the second runner-up in the bidding process.

There is a lot at stake in this project. Therefore, it’s imperative that you perform a good RA.

Tasks:

  • Estimate the qualitative and quantitative risks of bringing the project to completion:
    • On time
    • One month early
    • Two months late
  • Estimate the qualitative and quantitative risks of bringing the project to completion:
    • On time, but not with the required security
    • One month early with the required security requirements
    • Two months late, without the required security requirements
  • Estimate the qualitative and quantitative risks of bringing the project to completion on time, with the required security requirements, within/on budget – but not meeting the required contractual commitment for service.

Subject Computer
Due By (Pacific Time) 06/11/2014 09:00 pm
Report DMCA
TutorRating
pallavi

Chat Now!

out of 1971 reviews
More..
amosmm

Chat Now!

out of 766 reviews
More..
PhyzKyd

Chat Now!

out of 1164 reviews
More..
rajdeep77

Chat Now!

out of 721 reviews
More..
sctys

Chat Now!

out of 1600 reviews
More..
sharadgreen

Chat Now!

out of 770 reviews
More..
topnotcher

Chat Now!

out of 766 reviews
More..
XXXIAO

Chat Now!

out of 680 reviews
More..
All Rights Reserved. Copyright by AceMyHW.com - Copyright Policy