08 Aug Develop a 2- to -3-page Security Assessment Report
Part 1 – Report Risk
Develop a 2- to -3-page Security Assessment Report (SAR).
. The Security Assessment Report (SAR) should include the following for each vulnerability:
- Vulnerability title
- A precise vulnerability description
- Likelihood
- Impact
- Overall risk level
- Logical recommendations for mitigation
Part 2 – Communicate the Risk to Leadership
Develop a 10- to 12-slide Microsoft® PowerPoint® presentation documenting the risks for each vulnerability to be presented to the leadership of Health Coverage Associates.
The presentation should include:
- An introduction slide
- A description of each of the three vulnerabilities
- An accurate illustration of the NIST SP-30 5×5 matrices
- A description of the likelihood and impact, with a justification of that determination (e.g., very low, low, moderate, high, very high)
- An illustration of the overall, high watermark level of risk (e.g., very low, low, moderate, high, very high)
- A logical recommendation for mitigation actions, including an explanation of risk tolerance and risk acceptance for the organization
- A conclusion slide
- Detailed speaker notes
