Using the case study (attached) and NIST SP 800-53, Identify and prioritize IT Security controls that should be implemented. Discuss any applicable US Government regulations/standards that apply to this organization (The organization is from Project 1)
Step 1: Review the selected case study and describe at least 10 issues related to security, interoperability, and operations.
Step 2: Prioritize and articulate the selected requirements based on immediate need, security posture, complexity, resource availability, and cost.
Save your time - order a paper!
Get your paper written from scratch within the tight deadline. Our service is a reliable solution to all your troubles. Place an order on any task and we will take care of it. You won’t have to worry about the quality and deadlines
Order Paper NowStep 3: Identify at least 4 applicable government regulations/ standards that govern how the requirements must be met, implemented, or measured. Provide rationale for why these are applicable.
Step 4: Using NIST Special Publication 800-53 select at least 4 security controls that relate to these issues and describe how these controls enhance the security posture or facilitates the secure implementation of these requirements.
The deliverable for this case study assignment will be a minimum 5 page, double-spaced paper using Times New Roman 12 font and APA style formatting for citations and references. It will also include a minimum of 5 references. The Title/Cover page, illustrations (tables/charts/graphs), or references are not part of the page count but are required for the assignment. The grading rubric provides additional details as to what should be included in the paper. Your instructor may provide an APA style template to use for this paper.
RUBRIC
| Security, Interoperability, and Operations Issues | |||||
|---|---|---|---|---|---|
|
Identifies at least 10 issues based on the case study. |
Identifies at least 8 issues based on the case study. |
Identifies at least 6 issues based on the case study. |
Identifies at least 3 issues based on the case study. The discussion lacked detail and/or was not well supported by information drawn from authoritative sources. |
Doesn’t identify any issues based on the case study. |
|
|
Clearly describes and relates issues to security, interoperability and operations. |
Basically describes and relates issues to security, interoperability and operations. |
Weakly describes and relates issues to security, interoperability and operations. |
Little description or related issues to security, interoperability and operations. (Or, inappropriate or excessive copying from other authors’ work.) |
No description or relationship of issues to security, interoperability and operations. |
|
| Requirements | |||||
|
Clearly prioritizes and articulates the issues as requirements based on immediate need, security posture, complexity, resource availability and cost. |
Basically prioritizes and articulates the issues as requirements based on immediate need, security posture, complexity, resource availability and cost. |
Weakly prioritizes and articulates the issues as requirements based on immediate need, security posture, complexity, resource availability and cost. |
Little prioritization or articulation of the issues as requirements based on immediate need, security posture, complexity, resource availability and cost. (Or, inappropriate or excessive copying from other authors’ work.) |
No prioritization or articulation of the issues as requirements based on immediate need, security posture, complexity, resource availability and cost. |
|
| Applicable Regulations and Standards | |||||
|
Identifies at least 4 government regulations and standards. |
Identifies at least 3 government regulations and standards. |
Identifies at least 2 government regulations and standards. |
Identifies at least 1 government regulation or standard. (Or, inappropriate or excessive copying from other authors’ work.) |
No government regulations or standards identified. |
|
|
Clearly identifies applicable government regulations and standards that govern how the requirements must be met, implemented or measured. Must provide the rationale for selecting the documents. |
Basically identifies applicable government regulations and standards that govern how the requirements must be met, implemented or measured. Must provide the rationale for selecting the documents. |
Weakly identifies applicable government regulations and standards that govern how the requirements must be met, implemented or measured. May provide the rationale for selecting the documents. |
Little identification of applicable government regulations and standards that govern how the requirements must be met, implemented or measured. May provide some rationale for selecting the documents. (Or, inappropriate or excessive copying from other authors’ work.) |
Doesn’t identify any applicable government regulations and standards that govern how the requirements must be met, implemented or measured. Doesn’t provide the rationale for selecting the documents. |
|
|
Clearly cites all government regulations and standards used. |
Basically cites all but 1 government regulation or standard used. |
Cites all but 2 government regulations or standards used. |
Cites just 1 government regulation or standard used. (Or, inappropriate or excessive copying from other authors’ work.) |
Doesn’t cite any government regulations or standards. |
|
| Controls | |||||
|
Identifies at least 4 appropriate NIST controls and links them to each issue using logic. |
Identifies at least 3 appropriate NIST controls and links them to each issue using logic. |
Identifies at least 2 appropriate NIST controls and links them to each issue using logic. |
Identifies at least 1 appropriate NIST control and links it to each issue using logic. (Or, inappropriate or excessive copying from other authors’ work.) |
Doesn’t identify any appropriate NIST controls or links them to the issue using logic. |
|
|
Clear and detailed rationale as to how those controls mitigate the risk identified. |
Basic description of rationale as to how those controls mitigate the risk identified. |
Weak description of rationale as to how those controls mitigate the risk identified. |
Little description and rationale as to how those controls mitigate the risk identified. (Or, inappropriate or excessive copying from other authors’ work.) |
No description or rationale as to how those controls mitigate the risk identified. |
|
| Finds and Applies Knowledge | |||||
|
Used at least 5 authoritative or scholarly sources in paper. One must be NIST SP 800-53. No APA style errors in sources. |
Used at least 3 authoritative or scholarly sources in paper. One must be NIST SP 800-53. No more than 1 APA errors in sources. |
Used at least 2 authoritative or scholarly sources in paper. One must be NIST SP 800-53. No more than 2 APA errors in sources. |
May have used 1 authoritative or scholarly source in paper. May use NIST SP 800-53. May not have used APA style formatting. |
No authoritative or scholarly sources used in paper. NIST SP 800-53 not mentioned. |
|
|
All sources cited. No errors in citing material in paper. |
All but 1 source cited. Had no more than 5 citing errors in paper. |
All but 2 sources cited. Had no more than 10 citing errors in paper. |
All but 3 sources cited. Had less than 15 APA citing errors in paper. |
No sources cited or had more than 15 APA citing errors in paper. |
|
| Organization, Execution and Appearance | |||||
|
Prepared MS Word document, used consistent formatting, section subheadings, submitted one file, used instructor provided template, correct coversheet and separate reference page and meets minimum page count. |
MS Word document didn’t follow up to two (2) of the following: used consistent formatting, section subheadings, submitted one file, used instructor provided template, correct coversheet and separate reference page and meets minimum page count. |
MS Word document didn’t follow up to four (4) of the following: used consistent formatting, section subheadings, submitted one file, used instructor provided template, correct coversheet and separate reference page and meets minimum page count. |
MS Word document followed only one (1) of the following: used consistent formatting, section subheadings, submitted one file, used instructor provided template, correct coversheet and separate reference page and meets minimum page count. |
Non MS Word document didn’t any of the following: used consistent formatting, section subheadings, submitted one file, used instructor provided template, correct coversheet and separate reference page and meets minimum page count. |
|
|
No grammar, use of first/second person, spelling or punctuation errors. |
Less than 5 grammar errors, use of first/second person, spelling or punctuation errors. |
Less than 10 grammar errors, use of first/second person, spelling or punctuation errors. |
Less than 15 grammar errors, use of first/second person, spelling or punctuation errors. |
More than 15 grammar errors, use of first/second person, spelling or punctuation errors. |
|
| Overall Score |
Do you need a similar assignment done for you from scratch? We have qualified writers to help you. We assure you an A+ quality paper that is free from plagiarism. Order now for an Amazing Discount!
Use Discount Code "Newclient" for a 15% Discount!
NB: We do not resell papers. Upon ordering, we do an original paper exclusively for you.
