You have just been hired as the senior information technology analyst at a multinational organization.
Your immediate task is to put together an IT Security Plan (see page 498 on the Computer Security Principles and Practice textbook for William Stallings & Lawrie Brown) that contemplates a risk management strategy aligned with an industry best practice, such as NIST, ISO, or ISACA.
Your paper must elaborate on the following:
- Identify three Critical systems (CS) and/or business processes (CP) to be assessed and why they are critical
- Implementation Plan for each CS or CP (See Table 15.4 on page 498)
- Narration explaining the priority of each CP or CP and recommendations
