This website uses cookies to ensure you have the best experience. Learn more

Risk Consultant Essay

808 words - 4 pages

ISSC 363
Risk Consultant

24 January 2016

Risk Consultant
A risk assessment is a way to identify, evaluate, quantify, and prioritize risks (Gibson, 2011). They are primarily used to assess the overall security of a network from the eyes of an attacker in order to protect the network from intruders (Schmittling, n.d.). There are no regulations instructing organizations on how systems need to be controlled or secured, however there are regulations requiring systems be secure in one way or another (Schmittling, n.d.). The rationale for conducting an assessment include: cost justification, productivity, breaking barriers, self analysis, and communication ...view middle of the document...

d.). The scope helps to decide what needs to be protected the level in which sensitive data is protected.
When defining scope, goals and objectives, responsibilities, specific inclusions and exclusions, assessment time and location, and risk assessment methodology should be determined . Critical areas for an assessment include: web servers, database servers, and internal firewalls (Gibson, 2011).
There are two main types of risk management assessments. They are qualitative and quantitative methodologies. With the qualitative methodology, a relative values are used to determine the probability and impact of a risk (Gibson, 2011). This type of information can be collected quickly. A quantitative risk assessment is used to estimate how much money would be lost should a vulnerability be exploited (Vanderberg, n.d.). With the quantitative methodology, actual dollar values are used. It can take a time to gather this type of data. Once the data is gathered, however, a math formula is used to determine the priority of risks and in turn show the results of controls (Gibson, 2011).
It is my opinion that a combination of both quantitative and qualitative methodologies would work best in a Fortune 500 company. Both quantitative and qualitative methodologies have advantages. Results from a quantitative methodology are more easily reproducible and make it possible to compare and contrast a present assessment with a past assessment. Because the data is not subjective, results are more consistent (Norchiston, 2011). Qualitative assessments seem to be easier to complete, however, because the data is subjective, they are less reproducible (Norchiston, 2011)....

Other Papers Like Risk Consultant

Analyzing Case Studies Essay

863 words - 4 pages leading technology-driven company. 4. The seven items in the list provided by engineering are all ways of mitigating certain risk events. If the company follows these suggestions, is it adopting a risk response mode of avoidance, assumption, reduction, or deflection? The consultant stated that the risk can neither be avoided nor deflected, the seven items in the list provided by engineering is considered a risk response mode of reduction

Financial Management Essay

687 words - 3 pages Forward – Buy Rate $ 3,4 m/ $1.352 = € 2,514,792.80 Costs – € 2,6 m > € 2,514,792.80 Report To: Board of Directors Baxter plc From: D. K. Schwab, Consultant Agency 07th November 2012 Subject: Rejection of the contract with US firm Dear Sir or Madam, Baxter plc has received $ 3.4 m for the performance of a contract from a US company. They have to convert the amount to Euro at a rate of $1.352 after 3 months. The calculation

Alternative Forme of Project Delivery

4391 words - 18 pages maintaining a quality assurance role and providing construction administration services on behalf of the owner. .2 ADVANTAGES .1 Competitive Tendering (either open or invited) is generally considered to be the fairest method of selecting and awarding construction contracts, especially on publicly funded projects. .2 This method normally has the lowest risk factor, since: Contractor Owner Consultant Joint Board of Practice of the The

Careers in Finance

1064 words - 5 pages . If someone was looking to get a job in an investment bank, they might consider becoming a ratings analyst. Ratings analysts are people who evaluate the credit risk of debt securities issued by corporations and government agencies. After a thorough evaluation of a company or agency, these analysts will then make their investment recommendations. These recommendations can include buy, hold, or sell recommendations on financial elements such

Composition Paper

269 words - 2 pages compliance with environmental regulations. Chemichals: As both a major producer and consultant in the industry, we have broad experience in providing chemical process safety and sustainability solutions to chemical operations worldwide. Our proven consulting methodologies, training services, and best-in-class technologies help enable chemical companies to achieve exemplary process safety records, enhanced sustainability and improved business

Management Insurance

1289 words - 6 pages substantially reduced his profits. A risk management consultant points out that several methods other than insurance can be used to handle the burglary and theft exposure. Identify and explain two noninsurance methods that could be used to deal with the burglary and theft exposure. The two noninsurance methods that could be used to deal with the burglary and theft exposure are:- 1) Loss control – Its effort can be undertake in reducing


544 words - 3 pages feasible technically, although there are some risks. (1) Risk regarding familiarity with the system is high * Most of the workers are a little inexperienced with any computer systems. * The management has never used any automated transaction. * Troubleshooting will be hard, because they are all non-IT personnel. (2) Risk regarding familiarity with the technology is medium * The management has never used any automated

Contingency Planning

4506 words - 19 pages , the value of having an effective contingency and continuity plan is often not appreciated until it is too late. This essay will identify factors that could trigger critical incidents and propose strategies to mitigate the effects of such a disaster. The purpose of this essay is to outline the key elements of risk management in IT, as well as provide insight into the problem from the perspective of a risk management consultant. This essay

Jit2 Task 1 Instructions

938 words - 4 pages  and Information Technology Security ­ The graduate makes ethical decisions for the use of information technology and creates processes to maintain the security of data in information technology systems.   Introduction: As a newly hired consultant, you have been tasked with the duties of creating and presenting a risk management/business contingency plan for your first client. The legal department and the IT department have both expressed

The Role of the Project Mananger

985 words - 4 pages ; * assessing risk and planning for risk mitigation; * planning to phase the project where necessary or appropriate; * entering project costs and maintaining accurate forecasts in the current PWGSC corporate business management systems (i.e. SIGMA, etc.); * monitoring the project progress to ensure conformance to the Project Management Plan and updating the Plan as necessary; * monthly reporting of progress to internal management


1042 words - 5 pages ensure cost reduction and improvements in efficiencies and performance. A Proven communicator, fostering relations with management, team members, vendors, and customers, consistently achieving profitability and quality goals. Area Of Expertise ◆ Program coordination ◆ Financial management ◆ Custom Software Development ◆ Client Relations &Presentations ◆ Risk management ◆ Procurement ◆ Business & IT Planning

Related Essays

Risk Management Assessment Essay

619 words - 3 pages Risk Management Assessment Summary Community Mental Health HCS/451 March ##, #### Mister Misty Community Mental Health Being hired as a consultant for a community mental health facility my main focus will be risk assessment and management that will be used to identification of quality patient outcomes. This would mean that any projects that are done in the community mental health facility will need to be

Marriott Case Study

759 words - 4 pages INDUSTRY RELATED WORD LIST Investment Banking Consultant private equity Leadership venture capital Re-engineering techniques Corporate finance systems professional project finance strategic planning valuation case research methods financial analysis SAP forecasting BAAN competition analysis Peoplesoft country and risk analysis CFA MIS data modeling Commercial Banking relational databases lending

Business Law Australian Customer Law

588 words - 3 pages pension because of her failing eyesight, which made her housebound. Mabel could speak only a little English but she did not read nor understand written English. Lyn knew of Mabel’s medical condition and circumstances. Lyn filled in the application form for Mabel to become a door to door beauty consultant and purchase the Starter Kit of Beauty Products for $1000. Lyn gave Mabel the impression that she was at risk of losing her disability pension

Training Need Analysis

4452 words - 18 pages women with both low and high risk pregnancies. As a regional unit we also provide care to women with complications in their pregnancy via our Fetal Medicine Unit which includes a specialised session dealing with fetal cardiac anomalies. Our hospital based antenatal clinics are highly specialised and led by Consultant Obstetricians with an interest in the speciality. In June 2011 the midwifery led Newcastle Birthing Centre based within the hospital