Performing an IT Cyber Security Risk Assessment Questions

A)

QUESTION 1: There is a need for a new posture for cybersecurity in a networked world.  What are principles used by some of the world’s leading cybersecurity teams at global companies to archive this goal?

How can you adapt the principles  for your Airport case?

Resource :  https://www.mckinsey.com/~/media/McKinsey/McKinsey%20Solutions/Cyber%20Solutions/Perspectives%20on%20transforming%20cybersecurity/Transforming%20cybersecurity_March2019.ashxLinks to an external site.

QUESTION 2: Companies should assess threats and develop controls to the most critical assets.

If the threats  against to your airport IT System  are 

Manipulation of software

Unauthorized installation of software

Misuse of information systems

Denial of service

What would be controls that you should apply to mitigate above listed risks?

Resource : https://www.mckinsey.com/~/media/McKinsey/McKinsey%20Solutions/Cyber%20Solutions/Perspectives%20on%20transforming%20cybersecurity/Transforming%20cybersecurity_March2019.ashxEditLinks to an external site.

QUESTION 3: As an IT manager, you were tasked to Develop an information security and risk management (ISRM) strategy which requires a multiphase approach. What are the phases that would should follow to provide recognizable results and value to the airport?  

• Resources: https://www.isaca.org/resources/isaca-journal/past…
• b)
• Question 1 :  How to Perform an IT Cyber Security Risk Assessment?
• Resource :  https://www.upguard.com/blog/cyber-security-risk-assessmentLinks to an external site.

Question 2 :  How to  Performing a Security Risk Assessment for the hospital IT system 

Resource :https://www.isaca.org/resources/isaca-journal/past-issues/2010/performing-a-security-risk-assessmentLinks to an external site. 

Question 3 : How to  do Security Testing and Assessment for the hospital IT system

Resource : https://csrc.nist.gov/publications/detail/sp/800-1…