Risk Assessment and Data Protection in EMC Cloud Solutions, Exercises of Computer Science

An overview of risk assessment procedures for emc cloud solutions to safeguard against potential risks and discusses mandatory data protection laws and procedures for data storage solutions provided by emc cloud. It also touches upon it security & organizational policies. The elements of risk assessment, the process of conducting a security risk assessment, and the importance of data protection laws such as gdpr.

Typology: Exercises

2021/2022

Uploaded on 11/20/2022

hoang-tran-13
hoang-tran-13 🇻🇳

7 documents

1 / 3

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
I. Formulate a suitable risk assessment procedure for EMC Cloud solutions to
safeguard itself and its clients
1. What is Risk assessment?
…….
2. How does Risk assessment work?
…………………..
3. What Are the Elements of Risk Assessment?
………………………..
Risk assessment models typically involve these elements:
Identification
……….
Risk Profile Creation
…………………….
Critical Assets Map
……………………………
Assets Prioritization
.………………………..
Mitigation Plan
……………………………
Vulnerability and Cybersecurity Risk Prevention
…………………………..
Constant Monitoring
………………………………
4. How Do You Conduct Security Risk Assessments?
A security risk assessment should encompass all parts of a business, from information
technology to operations to human resources and accounting. An assessment is time-
consuming and labor-intensive. Nonetheless, each assessment provides unique value when
following a proven methodology. These steps will guide you to performing a
comprehensive assessment.
Asset Identification and Prioritization
………………………………
Threat Identification
……………………………….
Vulnerability Identification
…………………………………..
Controls Analysis
…………………………..
Determination of Incident Likelihood
……………………………...
Impact Assessment
…………………………
Information Security Risks Prioritization
…………………………………...
Recommendation of Measures
pf3

Partial preview of the text

Download Risk Assessment and Data Protection in EMC Cloud Solutions and more Exercises Computer Science in PDF only on Docsity!

I. Formulate a suitable risk assessment procedure for EMC Cloud solutions to

safeguard itself and its clients

  1. What is Risk assessment? …….
  2. How does Risk assessment work? …………………..
  3. What Are the Elements of Risk Assessment? ……………………….. Risk assessment models typically involve these elements:Identification  ……….  Risk Profile Creation …………………….  Critical Assets Map ……………………………  Assets Prioritization . ………………………..  Mitigation Plan ……………………………  Vulnerability and Cybersecurity Risk Prevention …………………………..  Constant Monitoring ………………………………
  4. How Do You Conduct Security Risk Assessments? A security risk assessment should encompass all parts of a business, from information technology to operations to human resources and accounting. An assessment is time- consuming and labor-intensive. Nonetheless, each assessment provides unique value when following a proven methodology. These steps will guide you to performing a comprehensive assessment. Asset Identification and Prioritization ……………………………… Threat Identification ………………………………. Vulnerability Identification ………………………………….. Controls Analysis ………………………….. Determination of Incident Likelihood ……………………………... Impact Assessment ………………………… Information Security Risks Prioritization …………………………………... Recommendation of Measures

Assessment Report …………………………………………. II. Explain the mandatory data protection laws and procedures which will be applied to data storage solutions provided by EMC Cloud. You may also highlight ISO 31000 risk management methodology Any type of business needs a set of data protection rules and regulations to maintain the goodwill of the organization in front of customers, partners and other stakeholders. So, certain rules and regulations should be put in place for this purpose. The General Data Protection Regulation or GDPR has introduced a number of data protection laws. Data protection laws ………………………………………. These are the rules: …………………………………….. Regulations GDPR can be related to EMC: ………………………………………. III. Comment on the topic, ‘IT Security & Organizational Policy’

  1. What is in a policy? . …………………………………….
  2. Policy need to have ……………………………………….
  3. Acceptable Use Policy ……………………………………. .
  4. Security Awareness and Training Policy ……………………………… .
  5. Change Management Policy . Ngắt Trang ……………………………………
  6. Incident Response Policy . ………………………………….
  7. Remote Access Policy . …………………………………. Ngắt Trang
  8. Vendor Management Policy . …………………………………… Consider the following points when choosing a vendor: . …………………………….
  9. Password Creation and Management Policy . ……………………………………..
  10. Network Security Policy . ……………………………………….