IS3110 Risk Management Essay

668 Words Mar 25th, 2014 3 Pages
1. Why is it important to prioritize your IT infrastructure risks, threats, and vulnerabilities?
Answer : The importance of to prioritizing risks in an IT infrastructure, is because you must be aware of what are the risks, the threats, and vulnerabilities to your infrastructure. By prioritizing immediately you know where the weakest point in your network is, and it can be addressed more quickly, to lessen the chance of a break in.
2. A quality IT Risk Mitigation Plan will include details on costs, risk prioritization, and accompanying schedule. For risk prioritization, what influence would the industry your organization operates in have on prioritizing your identified risks, threats, and vulnerabilities?
Answer :Many different
…show more content…
Answer : Of the seven domains, in believe the remote access domain is the easiest to implement solutions for, but it is the more difficult one to monitor and track effectiveness due to the fact that they can gain network access from any wireless access point.
6. When considering the implementation of software updates, software patches, and software fixes, why must you test this upgrade or software patch before you implement this as a risk mitigation tactic?
Answer : Because software update, software patches, and software fixes have to be matched to the specific server it is being installed. In a test environment or lab, you can see the results of what patches, fixes and upgrades do , before applying them to the production cluster. And even after the lab has passes, because of unpredicted circumstances in the production environment, these fixes have caused downtime for companies.
7. Are risk mitigation policies, standards, procedures, and guidelines needed as part of your long-term risk mitigation plan? Why or why not?
Answer : They are definitely needed because you have a reference point in your plan, on how secure your network is coming along, and how much longer it will take to finish the given project. This information is crucial for upper management when dealing with contractors, because they rely on projects and time frames. Will they approve the continuation of a certain project, or are they almost done and the local IT team can finish the

Related Documents