Swinburne University of Technology
Faculty of Business & Law
INF30020 Information Systems Risk & Security
Semester SP3, 2020
Risk & Security
... [Show More] Management Report B (Group)
(25% of marks)
Due: 9:00 a.m.(AEST) 16 November 2020
Please refer to the Assignment Case Study for Assignment 2 (Group)
THE VERY GOOD BEAN has accepted your initial risk assessment report favourably. It was
tabled with the Board of Directors and after much deliberation the leadership team have
been given a reasonable budget to improve VGBs information risk management and security
posture.
You have secured the contract for the next stage of this work. Your team is to carry out the
work by completing the following by the project deadline:
A business continuity management report for VGB that incorporates
1. Recommendations on an improved approach to information governance and risk
management at VGB.
2. A risk mitigation plan for the top twelve (12) prioritised risks to information assets
at VGB including a mitigation strategy and internal control for each of the selected
priorities
3. Undertake preliminary business continuity/ contingency planning for VGB by
preparing
i. a detailed business impact analysis for four (4) prioritised risk areas (aligned
to critical information assets)
ii. provide VGB with an explanation of the importance of the four (4) you have
chosen, you should demonstrate diversity in the range of your selection
iii. your BIA must include disruption scenarios for each of your four (4)
prioritised business impact assessments.
iv. the recovery parameters for each of the four (4) priorities
4. A general (or high-level disaster recovery plan) for your BCP modelling (steps i-iv).
Include a strategy for communications management in the event of a disaster within
your general approach to BCP.
Your task is to produce a business report (2500 -2800 words max) addressing the above
requirements.
Approach (see over page):
This study source was downloaded by 100000824368823 from CourseHero.com on 0 [Show Less]