Risk Management Case Study

For example, a medical facility that deals with patient information has to comply to HIPPO while on the other hand would different priorities would exist for a Financial institutions would have to comply to SOX 3. What questions would you bring to executive management prior to finalizing your IT risk mitigation plan? Answer : How long Is Implementation going to take? What is the predicted down time or chances of a failed change? Do we need other teams to be on standby in case of a worst case scenario? 4.

What is the difference between short-term and long-term risk mitigation tasks and on-going duties? Answers : Short-term mitigation tasks are risks that can be solved or repaired very rapidly and will not have long term effects on the company, Long term mitigation tasks are risks hat cannot be solved quickly and have other harsh repercussions on the network team, not to mention fines if they involve compliance issues. On-going duties are the daily duties that must be done In order for the company to perform with minimal risks.

Get quality help now

WriterBelle

Verified writer

Proficient in: Case Study

4.7 (657)

“ Really polite, and a great writer! Task done as described and better, responded to all my questions promptly too! ”

+84 relevant experts are online

Hire writer

5.

Which of the seven domains of a typical IT infrastructure is easy to implement risk mitigation solutions but difficult to monitor and track effectiveness? Answer : Of the seven domains, in believe the remote access domain is the easiest to Implement solutions for. But It Is the more difficult one to monitor and track effectiveness due to he fact that they can gain network access from any wireless access point. 6. When considering the implementation of software updates, software patches, and software fixes, why must you test this upgrade or software patch before you implement this as a risk mitigation tactic?

Answer : Because software update, software patches, and software fixes have to be matched to the specific server it is being installed.

In a test environment or lab, you can see the results of what patches, fixes and upgrades do , before applying them to the production cluster. And even after the lab has passes, cause of unpredicted circumstances in the production environment, these fixes have caused downtime for companies. 7.

Are risk mitigation policies, standards, procedures, and guidelines needed as part of your long-term risk mitigation plan? 1 OFF point in your plan, on how secure your network is coming along, and how much longer it will take to finish the given project. This information is crucial for upper management when dealing with contractors, because they rely on projects and time frames. Will they approve the continuation of a certain project, or are they almost one and the local IT team can finish the project. 8.

If an organization under a compliance law is not in compliance, how critical is it for your organization to mitigate this non-compliance risk element? It is very important to get the company's network in compliance as soon as possible. Most of the time, the company not in compliance will hire contractors from recognized Tech companies like, HP, Insight Global, or Emphasis tech solutions to provide the compliance agencies like FASCISM the necessary documentation that the company in question , has ongoing plans to meet compliance in a short time span.