Presentation is loading. Please wait.

Presentation is loading. Please wait.

MODULE II - EXERCISES Carmen R. Cintrón Ferrer © 2014.

Published byMitchell Hart Modified over 9 years ago

Similar presentations

Presentation on theme: "MODULE II - EXERCISES Carmen R. Cintrón Ferrer © 2014."— Presentation transcript:

1 MODULE II - EXERCISES Carmen R. Cintrón Ferrer © 2014

2 IT Risk Exercise (1) Carmen R. Cintrón Ferrer, 2014, Reserved Rights 2  Identify at least two events that pose Security Risks associated with IT infrastructure  Classify and order those risks based upon Probability - Impact  Suggest controls/countermeasures that will prevent/ reduce impact or transfer risk

3 IT Exercise (1) – Events Matrix Risk EventProbabilityMeasure(s) Recommended Carmen R. Cintrón Ferrer, 2014, Reserved Rights 3

4 IT Risk Exercise (2) Carmen R. Cintrón Ferrer, 2014, Reserved Rights 4  For the Risks analysed in the Table that follows:  Determine which proposed countermeasures should be implemented, based on Cost-Benefit Analysis.  If resources are limited, Which should be implemented first (prioritize)? Why?

5 Key FactorsRisk ARisk BRisk CRisk D Successful Event Cost$500K$10K$100K$10K Event Probability80%20%5%70% Estimated Impact Loss$400K$2K$5K$7K Cost of Measure/Control$100K$3K$2K$20K Net Impact (Value)$300K($1K)$3K($13K) Risk Determination? Investment Priority? Tomado de: Panko, Corporate and Computer Security, Fig. 1-9, p.36 IT Exercise (2) – Investment Analysis Carmen R. Cintrón Ferrer, 2014, Reserved Rights

6 6 Examine the following references:  Introduction of the IRGC Risk Governance Framework, IRGC 2008 Introduction of the IRGC Risk Governance Framework, IRGC 2008  Managing the Risk of Aging Infrastructure by Richard Little, USC (2012) Managing the Risk of Aging Infrastructure by Richard Little, USC (2012) Write an essay that addresses the following questions:  What is the importance of the IRGC Model?  How does it compare to the Cobit/ITGi proposed model?  Was the model applied in the scenarios of Aging Infrastructure considered by Richard Little?  Were there any discernible difference(s) between the two scenarios?  Which key factors played a role in the events, could those risks be managed more effectively/efficiently?  Are there any lessons to be learned from the readings?  Is the Model appropriate for other scenarios? Exercise 3 Risk Management Cases

Download ppt "MODULE II - EXERCISES Carmen R. Cintrón Ferrer © 2014."

Similar presentations

EXERCISE IN MITIGATION DECISIONS MODULE 2 THE MULTI-HAZARD ENVIRONMENT.

EXERCISE IN MITIGATION DECISIONS MODULE 2 THE MULTI-HAZARD ENVIRONMENT.
© Grant Thornton UK LLP. All rights reserved. Review of Partnership Working: Follow Up Review Vale of Glamorgan Council Final Report- November 2009.

© Grant Thornton UK LLP. All rights reserved. Review of Partnership Working: Follow Up Review Vale of Glamorgan Council Final Report- November 2009.
PROJECT RISK MANAGEMENT

PROJECT RISK MANAGEMENT
Guidebook for Risk Analysis Tools and Management Practices to Control Transportation Project Costs Keith R. Molenaar, PhD Stuart D. Anderson, PhD, PE Transportation.

Guidebook for Risk Analysis Tools and Management Practices to Control Transportation Project Costs Keith R. Molenaar, PhD Stuart D. Anderson, PhD, PE Transportation.
Fig. 4-1, p. 107. Fig. 4-2, p. 109 Fig. 4-3, p. 110.

Fig. 4-1, p Fig. 4-2, p. 109 Fig. 4-3, p. 110.
Series 2: Project Management Understanding and Using 6 Basic Tools 9/2013 From the CIHS Video Series “Ten Minutes at a Time”

Series 2: Project Management Understanding and Using 6 Basic Tools 9/2013 From the CIHS Video Series “Ten Minutes at a Time”
IT GOVERNANCE GSI 615 Carmen R. Cintrón Ferrer © 2014.

IT GOVERNANCE GSI 615 Carmen R. Cintrón Ferrer © 2014.
Knowledge Translation Curriculum Module 3: Priority Setting Lesson 2 - Interpretive Priority Setting Processes.

Knowledge Translation Curriculum Module 3: Priority Setting Lesson 2 - Interpretive Priority Setting Processes.
MODULE V - EXERCISES Carmen R. Cintrón Ferrer © 2014.

MODULE V - EXERCISES Carmen R. Cintrón Ferrer © 2014.
P.464. Table 13-1, p.465 Fig. 13-1, p.466 Fig. 13-2, p.467.

P.464. Table 13-1, p.465 Fig. 13-1, p.466 Fig. 13-2, p.467.
Investment Appraisal and Management Chapter 1 The Role of Project Evaluation.

Investment Appraisal and Management Chapter 1 The Role of Project Evaluation.
Fig. 11-1, p. 359. p. 360 Fig. 11-2, p. 361 Fig. 11-3, p. 361.

Fig. 11-1, p p. 360 Fig. 11-2, p. 361 Fig. 11-3, p. 361.
Introduction to the State-Level Mitigation 20/20 TM Software for Management of State-Level Hazard Mitigation Planning and Programming A software program.

Introduction to the State-Level Mitigation 20/20 TM Software for Management of State-Level Hazard Mitigation Planning and Programming A software program.
Table 6-1, p. 161. Fig. 6-1, p. 162 p. 163 Fig. 6-2, p. 164.

Table 6-1, p Fig. 6-1, p. 162 p. 163 Fig. 6-2, p. 164.
Slide 7C.1 Copyright © 2004 by The McGraw-Hill Companies, Inc. All rights reserved. An Introduction to Object-Oriented Systems Analysis and Design with.

Slide 7C.1 Copyright © 2004 by The McGraw-Hill Companies, Inc. All rights reserved. An Introduction to Object-Oriented Systems Analysis and Design with.
Overview and Introduction

Overview and Introduction
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
Enhancing the Climate Resilience of Africa’s Infrastructure ACPC Role.

Enhancing the Climate Resilience of Africa’s Infrastructure ACPC Role.
Application Threat Modeling Workshop

Application Threat Modeling Workshop
What is Business Analysis Planning & Monitoring?

What is Business Analysis Planning & Monitoring?

Similar presentations

Ads by Google