Risk Management Task 1a

In: Computers and Technology

Submitted By zhartman
Words 3310
Pages 14


JIT2 (Risk Management): Task 1A
It has been stated that, "Denial is a common tactic that substitutes deliberate ignorance for thoughtful planning," Charles Tremper (n.d.) who authored various risk management books. We have been hired, as a consultant in our first task is to create and present to management of business contingency plan combined with risk management to our new client. There has been some concern from both the IT department and legal departments about personal identifiable information sensitive information, client records, and other sensitive information regarding the ethical use and protection of this information. Our goal is to have client confidence along with some sense of job satisfaction; therefore, our boss has informed us that we get to choose our very first client. Our selection can be the place we actually work, any local business, or even a Fortune 500 company. One requirement is that our client must operate globally throughout its business. We will exclude any proprietary information, confidential information, or anything that can be considered sensitive. No names of real people involved with the business, any suppliers, or anything else that could be identifiable will be used. Instead we will only use made-up or fictional names for this task. No actual financial data will be used but rather be addressed using vague or generic terms when appropriate. Due to concerns in the global marketplace our client has insisted upon the security of data related to information systems.
In order to address the clients request we will do the following: (A) generate a risk register that encompasses eight valid risks faced by the company, they are as follows:
(1) highlight the way one of the risks stems from our clients activities worldwide in the

Running head: JIT2 (RISK…...

Similar Documents

Lit1 Task 1a

...Task 1-A Sole proprietorship   1. Liability   An owner has unlimited liability both personally and as the company owner. Liability is a disadvantage in a sole proprietorship.   2. Income taxes Owners are responsible for filing taxes and is allowed to file taxes as part of their personal income taxes.   3. Longevity   This depends completely on the owner and there continued ability to operate the business. The operation of the business can be significantly affected if the owner becomes sick or dies.   4. Control owners have complete control of the business. The owner is totally responsible for all decisions pertaining for business operations.   5. Profit retention   Owner have 100% profit retention. They may choose to invest it back into the company or use it for personal use.   6. Location   The owner has the ability to choose the location of the business or move it to a better location as they choose.   7. Convenience/burden   Sole proprietorships are very convenient and easy to start up since there are no governing laws as there may be with a corporation. The burden of the business including decisions made that may affect the businesses success are the sole responsibility of the owner. General Partnership   1. Liability Liability is shared by all partners of the business. Also, if one partner does something negligent pertaining to the business, all partners can be held liable for the one partners act.   2. Income......

Words: 1229 - Pages: 5

Risk Management

... Rivers October 19, 2013 Project 1 Part 1: Risk Mgmt. Plan 1. Introduction Risk Mgmt. Plan Well for starters the purpose of this risk management for DLIS (Defense Logistics Information Service) plan will be similar to the purpose of any organization would be and that would be how to better protect and secure the company’s IT environment. The importance of this is major since there is all kind of important data that is on and transmitted throughout our networks on a daily basis. DLIS we must ensure that we implement all necessary preventative security measures as well as policies and procedures. We must do this by first of all ensuring that we have really good antivirus software installed on all of our systems and ensuring that it is always up to date. The next thing is extensively configuring our firewalls making it more difficult for our networks to be hacked. Another thing is data encryption which is very vital in securing all important data for our company and clients especially when we are performing data transmission over the networks. The last thing I want to mention which will be part of policies and procedure is implementing various password and logon policies and procedures for security purposes as well. As I stated the purpose of the development of this plan is to reduce the risk of threats and vulnerabilities on our networks. This is vital because threats and vulnerabilities definitely present risk(s) to any important company and client data. ......

Words: 2058 - Pages: 9

Risk Management Task 1a

...JIT Task 1 Risk Management Risk Management From the last decade risk management is the most researched and exciting area in the financial industry as it elaborates how to minimize and avert the hazard of risk from the portfolios of different assets and from the operations of financial institutions. Regulators and depositors mainly emphasize the risk management and according to them risk management is an essential ingredient to enhance the value of shareholders and increase their level of confidence. Risk management is the assessment of risks to mitigate, monitor and control the probability or impact on uncertain events. Risk management methods vary from industry to industry for instance it cannot be same for project management, industrial process and financial portfolios. As a management view point risk management is an important tool which is the used in decision making because it is systematic and well structured. For better utilization of risk management in management‟s decisions, risk analyst‟s reports must be based on the latest and best available information. The cause behind the mentioning of the Chinese proverb above is that risk management is the only tool which differentiates good management with bad. From a bank‟s standpoint, the term is usually used synonymously with specific uncertainty because the usage of statistics allows us to quantify the uncertainty which is called the measure of dispersion. My objective is to define what risk is all about and then see......

Words: 4786 - Pages: 20

Risk Management

...IMT 4762 Risk Management 1 Report Police Group: Sumanth Ramanujapuram Vinay Krishna Vemuri Deming Yin 27.9.2013 1 0. Executive Summary As  we  have  been reviewing the current situation of Skyri police,  the duties and tasks of Skyri police fall into the following categories: ● Develop effective collaborative solutions with other operators and service providers. ● Coordination  of  the  goals,  plans  and  work  of   the  regional  police  districts  and  the special units ● Management of the police service ● Administration services to the public As with other public services in Skyri, the IT services in Skyri police is also outsourced. Currently all IT services are run by the new supplier “ITALL” since last year. Since there are only two IT employees in Skyri who also take care of other public services in Skyri, all the IT problems in Skyri could not be solved on time. In addition, same as other public services in Skyri, there are no IT­strategy and no policies for information security, and the Skyri police doesn’t have a personnel responsible for IT risk management. The employees in Skyri police don’t have IT risk management background. All the risk management tasks has fallen to the management officer, who has no special IT either. We found that information is usually classified inappropriately. We also noticed loss of devices especially USB storage devices that contains sensitive information. This cause......

Words: 4553 - Pages: 19

Risk Management

...CHAPTER ONE 1.0 INTRODUCTION Project management is the application of knowledge, skills, tools, and techniques to project activities in order to meet or exceed stakeholder needs and expectations from a project. Project risk management includes the processes concerned with identifying, analyzing, and responding to project risk. It includes maximizing the results of positive events and minimizing the consequences of adverse events. Managing risk therefore, is an integral part of good project management, and fundamental to achieving good business and project outcomes and the effective procurement of goods and services. Risk management provides a structured way of assessing and dealing with future uncertainty. 1.1 PROJECT MANAGEMENT A project can be defined as a series of related jobs usually directed toward some major output and requiring a significant period of time to perform. According to the Project Management Institute, the discipline of project management can be defined as the art of directing and coordinating human and material resources throughout the life of a project by using modern management techniques to achieve pre-determined objectives of scope, cost, time, quality and participation satisfaction. Furthermore, project management is the discipline of planning, organizing, and managing resources to bring about the successful completion of specific projects. 1.2 RESPONSIBILITY OF A PROJECT MANAGER The Project Manager......

Words: 3843 - Pages: 16

Risk Management

...Introduction Risk is an expression that is pointing out a possible future outcome, where this outcome might be positive or negative arising from an action. While risks can affect almost all aspects of our life, studies back to the end of World War II only started to take place establishing the basis of how risks might be controlled and managed (Dionne, 2013), even in the context of financial institutions, risk analysis was not well considered until very recently (SCHROECK, 2002). Since the negative outcomes of an action are undesired and to some extent, catastrophic, risk management is getting greater attention overtime and becoming an integral part of managing businesses and projects or even personal events. Risk management, in my opinion, is described as the process of defining, assessing, prioritizing, and then developing and implementing plans for either minimizing the impact of the future outcome in case of negative risk or maximizing the impact of the future outcome in case of positive risk. Another definition dealing with the project’s risks, as per the Project Management Institute is that “Project Risk Management includes the process of conduction risk management planning, identification, analysis, response planning, and monitoring and control of a project.” (PMI, 2008, p. 273) Moreover, leveraging the possibility and effect of positive risks and reducing the possibility and impact of negative risks are indeed the objectives of project risk management (PMI, 2008) ......

Words: 1901 - Pages: 8

Answer Risk Management Task 1

...Scope Risks are found in all organisational activities. The background behind this report is to manage the current risks that are currently affecting the MacVille Cafe, Toowoomba and to enhance any opportunities available to the organisation. The purpose of this risk assessment is to identify risks related to the MacVille Cafe, Toowoomba. The risk assessment will be utilized to identify risks related to the cafe. During inspection of the organisational premises, many risks have been identified as potential high-risk. Goals 1) Put a Policy and Procedure in place - by putting this in place and having a hard copy available. Instead of having Mr. Hurley address this manually each week, all staff will have will have something to turn to on a daily basis if they weren't at the cafe when Mr. Hurley was present. 2) Train staff in water use - by giving the staff proper training in relation to the water usage at the cafe, this will help water waste reduction and will help the organisation out financially. 3) renovate the Cafe - By renovating the cafe, fit-out will look inviting and refreshed. Replacing any old, broke and unstable furniture, and removing old carpet, will benefit the organisation by decreasing and accidents where staff and customers are concerned. 4) Water Tank Installation - by having a water tank installed, it will allow more savings on the water bill, which will benefit the organisation in many financial ways. The cafe can collect rainwater and......

Words: 407 - Pages: 2

Management Risk

...For the provided case study, you will assume the role of the risk manager/assessor. 1. Review the provided MacVille Risk Management Policy and Risk Management Strategy and complete a written report for your manager (your assessor) that addresses the following steps. a. Scope – Identify the scope of risk management required in your identified role. b. Goals – Identify and describe the critical success factors, goals or objectives for areas included in scope. c. Stakeholders – Identify internal and external stakeholders, their role in the process, and any issues or concerns they have. Present this using the table format provided. d. Analysis – Complete a PEST analysis and a SWOT analysis for risks associated with the scenario. Include reference to relevant legislation. e. Research – Review and summarise the research information provided in the case study, as well as any literature available that is relevant to this scenario. f. Describe – Complete the analysis of risk for the scenario by summarising the scenario and associated risks, accompanied by checklists, diagrams or flowcharts that support the summary. 2. After you have completed the above steps, you need to meet with your manager and discuss the draft report you have developed, especially your understanding of the critical success factors and goals (you should check that your manager agrees with your findings). 3. As part of your discussions you also need to discuss......

Words: 4338 - Pages: 18

Risk Management Project Part 1 Task 1

...Tony Stark Risk Management Project Part 1 Task 1 Introduction A risk management plan is important for any business or organization regardless of the business’s or organization’s size. In the case of the Defense Logistics Information Service (DLIS), a risk management plan is critical in making sure the data that DLIS handles is protected. Loss or stolen information from DLIS can affect military assets. A plan needs to be made to be able to follow procedures in the event of an incident and to help mitigate data loss. Risk Management Outline 1.0 Introduction 2.1 Purpose and Objectives 2.0 Identify Threats 3.2 Attacks from the Internet 3.3 Hardware or software failures 3.4 Loss of Internet connectivity 3.5 Nature 3.0 Identify Vulnerabilities 4.6 Lack of firewall 4.7 Lack of intrusion detection 4.8 Lack of antivirus software 4.9 Lack of server updates 4.10 Lack of antivirus updates 4.0 Assign Responsibilities 5.0 Identify the cost of an outage 6.0 Provide recommendations 7.0 Identify the cost of recommendations 8.0 Provide a cost-benefit analysis (CBA) 9.0 Document accepted recommendations 10.0 Track implementation 11.0 Create POAM Scope The Scope of this risk management plan is the existing hardware and software currently in place. This is to include the current personnel, contractors, and vendors. The scope will have to be redefined if...

Words: 612 - Pages: 3

Jit2 Risk Management Task 1

...and protection of sensitive data It is imperative that our company protects our sensitive data which includes our bread formulas, Employee/Payroll , vendor information, customer information and accounting information and to always use them ethically. The objective to use our sensitive data ethically and reasonably, there are three components for the mythology. First, How are we going to protect the data to make sure it is being used appropriately users. Second, what is our backup procedure? Lastly, after a major business disruption, how do you recover our sensitive data? First, the company uses an Enterprise resource planning (ERP) system to centralize the information and have a permission level based access. ERP system is a business management suite that uses a common database system that share data across the various departments (Hossein.B., 2004). ERP system will allow access to the sensitive data information by departmental needs. Also, the company will have confidentiality and ethic training for all employees and will be asked to sign a confidentiality agreement before starting employment. The user interface (UI) can be anything from think client, think client like Telnet or secure web browser based. The company will go with secure web Brower to access data. The proactively backup your data is to backbone of protection your company’s data. Your data is only good as your last successful backup. The company will back up their ERP system just like any other system,......

Words: 1943 - Pages: 8

Risk Management Jit 2 Task 1b

...Risk Management JIT 2 Task 1b American International Insurance BCP William Gardner May 9, 2015 Task B.  Create a business contingency plan (BCP) that the company would follow if faced with a major business disruption (e.g., hurricane, tornado, terrorist attack, loss of a data center, the sudden loss of a call center in a foreign country, the collapse of a financial market or other catastrophic event) in which you include the following: 1.  Analyze strategic pre-incident changes the company would follow to ensure the well-being of the enterprise. 2.  Analyze the ethical use and protection of sensitive data. 3.  Analyze the ethical use and protection of customer records. 4.  Discuss the communication plan to be used during and following the disruption. 5.  Discuss restoring operations after the disruption has occurred (post-incident). Since 1919, A.I.I. has been in the business of insuring businesses and people from losses incurred through disasters. For 95 years (A.I.I.) has stood by its clients as they faced many challenges from the financial collapse of 1929 to the drought of the dust bowl years and even the ravages of World War Two. Assisting our clients in the face of hurricanes, tornados and even terrorist attacks is an everyday occurrence at A.I.I... However, who is planning and preparing for A.I.I.? A BCP is a plan to do exactly that, during the financial collapse of 2008 several flaws in the existing plans were exposed; flaws that not even......

Words: 3242 - Pages: 13

Risk Management

...Risk Management Breakdown Structure Paper Gregory Lockett CPMGT/302 Procurement and Risk Management Petula Brown July 6, 2015 Overview TechnoToday has held a place among top manufacturing companies in the United States for several years. However, due to increased competition and customer demand management has decided to implement some changes. The primary change to TechnoToday that has been outlined by management is a supplier global expansion project. Management has its eyes set on China as a new supply base. As with any project, the benefits may be obvious but undertaking the project also comes with its fair share of risks. Objectives and Resources In an effort to remain a leader in the global market, TechnoToday has made the decision to expand its supply base into China. Accomplishing this goal, however, can be a daunting task. A global supply chain needs to be agile and robust in order to meet the needs of multiple markets while simultaneously handling ever changing needs. A supply chain needs to be responsive to customer and organizational needs in terms of products as well as sourcing, manufacturing, transport, environmental and human resource relations. A global expansion project entails much more than simply setting up shop in another country, but luckily there are a number of tools available to help streamline the process. There are multiple resources that can be utilized to aid in the international transition. Historical data and records, for example,...

Words: 1839 - Pages: 8

Risk Management

...APPROACH TO PROJECT RISK MANAGEMENT Adam Greene; research student, Department of Civil and Building Engineering, Loughborough University ABSTRACT This paper is based on research into project managers’ influence upon the project and team structure, and their ability to manage risks. The individual risk philosophies of the team members are considered in light of the effect they may have upon risk management. This paper briefly reviews project management, risk and risk perception and their interrelated effects upon the construction process. It is suggested that just as risk philosophies of individuals affect the decisions made in their lives away form their professional careers, so their perceptions and experiences of risk can affect their professional decisions. The approaches utilised for the research to explore this theory are also discussed within this paper. Keywords: Process; Project Management; Risk Perception; Risk Philosophy INTRODUCTION This research is being undertaken as part of the Process Protocol II project (Cooper et al, 1998), for which the author is responsible for the mapping of the project and risk management activity zones. There are three related topics covered within this paper: risk propensity, defined as a person’s desire to either avoid or to take risks; risk preference, the perceived level of risk and uncertainty a person is willing to accept in a given situation; and risk perception, the subjective view of the perceived risk......

Words: 4538 - Pages: 19

Risk Management

...JIT2 (Risk Management): Task 1A Our firm has been hired as a consultant, the first task my team and I have been assigned is to create and present to management both a risk management and a business contingency plan for our client. Both the legal and IT departments have expressed their concerns regarding the ethical use and protection of sensitive data, customer records, and other information systems content of both the firm and the client. In an effort to follow the company’s goal of each project building employee confidence and job satisfaction, the team has been allowed to select our first client. The client we choose can be a former or current employer, any local business, any nationally or internationally held publicly traded or privately held company. The one prerequisite is that the client operate globally in at least one aspect of it business. To help ensure anonymity and security any information that could be considered confidential, proprietary, or personal in nature will be excluded. No actual names of people, suppliers, the company, or other identifiable information will be included. In addition every effort will be made to ensure fictional names used will be obscure as possible. Company-specific data, including financial information, will be addressed in the most general and generic means possible when appropriate. Per the client’s request will address the following items: A. Generate a risk register that includes eight valid risks faced by the client.......

Words: 2097 - Pages: 9

Risk Management

...Structure for an IT Risk Management Plan Course Name and Number: _____________________________________________________ Student Name: ________________________________________________________________ Instructor Name: ______________________________________________________________ Lab Due Date: ________________________________________________________________ Overview In this lab, you defined the purpose of an IT risk management plan, you defined the scope for an IT risk management plan that encompasses the seven domains of a typical IT infrastructure, you related the risks, threats, and vulnerabilities to the plan, and you created an IT risk management plan outline that incorporates the five major parts of an IT risk management process. Lab Assessment Questions & Answers 1. What is the goal or objective of an IT risk management plan? 2. What are the five fundamental components of an IT risk management plan? 3. Define what risk planning is. 4. What is the first step in performing risk management? 5. What is the exercise called when you are trying to gauge how significant a risk is? 25 6. What practice helps address a risk? 7. What ongoing practice helps track risk in real time? 8. True or False: Once a company completes all risk management steps (identification, assessment, response, and monitoring), the task is done. 9. Given that an IT risk management plan can be large in scope, why is it a good idea to develop a risk management plan......

Words: 434 - Pages: 2