Security Risk Management Lab Ip1
Autor: asuber • May 9, 2016 • Coursework • 344 Words (2 Pages) • 916 Views
Running head: IP1 Lab Report
Colorado Technical University
Allen Suber
CS250-1403B-01: Security Risk Management
Professor Mark Ford
P1-IP1 – Lab Report
Assignment Due Date: 08/25/2014
This Lab Report defines COBIT (Control Objectives for Information and related Technology) P09 risk management is for an IT infrastructure and its primary objectives. It continues by listing and describing COBIT P09’s six control objectives that are used as benchmarks for IT risk assessment and risk management. An understanding of how threats and vulnerabilities align to the COBIT P09 risk management definition for the assessment and management of IT risks is offered. Furthermore, the report explicates the use of COBIT P09 controls as a guide to delineate the scope of risk management for an IT infrastructure. Finally, the application of COBIT P09 controls is illustrated to assist with organizing the recognized IT risks, threats, and vulnerabilities.
Control Objectives for Information Related Technology (COBIT) is an internationally recognized IT governance framework and supportive toolset that is comprised of publications and products intended to assist in disciplined achievement of IT governance throughout an enterprise. The resolve of COBIT is to equip management and business process owners with an information technology (IT) governance model that aids in capturing value from IT while understanding and handling the risks related with IT. COBIT helps bridge the gaps between business requirements, control necessities and technical concerns. It is a control model intended to satisfy the needs of IT governance and safeguard the integrity of information and information systems, (Citation).
The COBIT Controls area within ISACA's Knowledge Center supports, stimulates, and encourages collaboration and sharing of information, solutions and knowledge amongst COBIT users. There are 222 COBIT Control Objectives where each is a distinct topic and contains explicit Control Practice statements, (Citation).
References
Anderson, Charles & Johnson (2003). The impressive psychology paper. Chicago: Lucerne Publishing.
Smith, M. (2001). Writing a successful paper. The Trey Research Monthly, 53, 149-150.
...