Executive Summary:

Every organisation serves a purpose. Disaster organization is critical in preserving an organization’s statistics resources, and therefore its determination, in IT-related risk in this cardinal era, as companies employ automatic information technology (IT) schemes to process their statistics to improve to serve their goals.

An operative risk administration procedure is a critical constituent of any effective IT safekeeping solution. The fundamental purpose of a company’s risk management approach should be to safeguard the company and its capability to achieve its goals, not simply its IT assets. As a result, the risk administration process should be considered as an important organisational administration occupation rather than a practical effort done by IT specialists working in and managing an IT system.


Risk is the absolute negative consequence of risk usage, taking individually the likelihood and the probability of incidence into consideration. The procedure of risk assessment, risk assessment, and risk reduction measures towards an acceptable level is known as risk management. This book serves as the foundation for the creation of a successful risk management system, since it covers both definitions and practical instructions for evaluating and extenuating risks detected in IT systems. The primary purpose is to assist enterprises in effectively managing the risks associated with IT-related equipment. (Seker, R. 2017).


This guide also includes advice on how to choose low-cost security measures.

These controls may be used to decrease risk in order to better safeguard essential target statistics and the IT schemes that process, accumulate, and manage it. Administrations may opt to enlarge or condense the wide-ranging procedures and methods outlined in this book, and to seamster them to their specific IT-related policy control incidents. (Aerts, J. C. 2017).


The goal of risk administration is to help the organisation achieve its goals (objectives) by

(1) improved protection of IT systems that hoard, develops, or convey organisational evidence;

(2) allowing administration to make up-to-date risk administration conclusions to ensure the costs that form part of the IT economical; and

(3) secondary administration in approving (or approving) IT3 programmes on the basis of supporting documentation.

Target Area:

This handbook serves as a starting point for both experienced and novice, technical and non-technical workers who support or develop risk management processes in their IT systems.

These personnel include:

• Senior management, equipment owners, and budget decision makers for IT security are examples of these workers.

• Chief Government Information Officers, who are responsible for ensuring the implementation of disaster risk management in the agency’s IT systems as well as the security offered by these IT systems.

• The Designated Approving Authority (DAA), who makes the final decision on whether to approve the IT system’s installation. (Cohen, H. 2020)

• An IT security manager who employs a security mechanism

• Information system security officers (ISSOs), those are in charge of IT security.

• Holders of information technology (IT) system software and/or hardware used to support IT operations.

Holders of information kept, deal with, and transferred through information technology systems

• Commercial or operational management in charge of the IT gaining process

• Technical support personnel (e.g., network, system, application, and site administrators; computer experts; data security analysts) who bring about and manage the security of IT systems.

• IT system and application programmers, who write and upholds the code that has the potential to compromise system integrity and data.

Risk Mitigation Plan:

The second risk management phase is risk mitigation, which entails prioritising, assessing, and implementing effective risk mitigation mechanisms indicated in the risk valuation process.

For the reason that eliminating all risks is frequently unreasonable or nearly unreasonable, it is the duty of senior executives, operational and business executives, and others to take a cost-effective tactic and use the most suitable controls to reduce equipment risk to a satisfactory level, to a lesser extent. unfavourable impact on the administration’s possessions and horns. (Ghodake, G. S. 2021).

Senior management uses risk reduction as a systematic technique to decrease equipment risk.

Any of the following risk-reduction measures can be used to reduce risk:

• Risky Guessing. Accept possible hazards and keep using the IT system, or implement risk-reduction procedures to a tolerable degree.

• Risk avoidance. To avert risk, eliminate the cause and/or effect.

• Risk mitigation. Reduce the danger of threatening usage by employing safeguards that reduce the negative impact of threatening use (e.g., use of support, blocking, search controls)

• Risk management. Risk management is accomplished by developing a risk-reduction strategy that prioritises, employs, and maintains controls.

• Investigation and Education. Reduce the chance of loss by acknowledging a risk or error and researching risk-mitigation procedures.

• Risk Transfer. Transfer risk by compensating for losses in other ways, such as purchasing insurance.

This technique is also represented in the six principles listed below, which give recommendations on steps to decrease the dangers provided by intentional human threats:

• If there are hazards (or faults, weaknesses), employ verification procedures to reduce the risk of exposure.

• If a hazard may be exploited, use horizontal protection, structural design, and control mechanisms to reduce or eliminate the danger.

• Use defences to lessen the attacker’s incentive by increasing the invader’s cost if the invader’s cost is less than the possible profit.

• If the forfeiture is too unembellished, apply strategy concepts, architectural designs, and technological and non-technical protection to reduce the chance of outbreak and hence the risk of forfeiture.

With the concession of the third-party article, the technique indicated above also works to limit the danger of natural or unexpected hazards.


Cost-Benefit Analysis:

• In order to allocate resources and implement cost-effective controls, organisations should do a cost-benefit analysis on each proposed control. Organizations should do a cost-benefit analysis of each proposed control after identifying all prospective controls and analysing their feasibility and efficacy. This will help them choose which controls are essential and suitable for their circumstances. (Verbeek, J. 2017).

Cost and profit scrutiny may be done using either quality or pricing. Its goal is to show that the expense of implementing controls may be compensated by a decrease in risk. For example, a company might not want to devote $1,000 on management to decrease a risk of $200. The following are included in the cost-benefit scrutiny of the projected new or upgraded controls:

  • Evaluating the impression of new or better controls
  • Calculating the bearing of not using new or improved controls.
  • Calculating implementation costs. These may comprise, but are not partial to, the following:
  • Purchase of computer hardware and computer software reduces performance when system recital or performance is reduced to increase security.
  • The expense of recruiting more personnel to carry out the planned policies, processes, or resources.
  • Training expenses

Weighing operational costs and benefits in contradiction of system and critical information to establish the administration’s value in executing the new controls, given the cost and limited effect.

The organisation will requirement to weigh regulatory reimbursements against the organization’s ability to retain an acceptable status. There is a cost to employing the necessary control, and there is a penalty to not utilising it. Organizations may decide whether it is possible to stop your usage by relating the consequence of non-use to policy control. The administration’s management must define what establishes an satisfactory degree of equipment risk. After the company has defined a range of risk levels, the control effect may be examined and controls added or withdrawn. The scope of new controls will vary depending on the organisation; nonetheless, the following guidelines apply to deciding the application of new controls:

• If control can minimise risk beyond what is necessary, determine if a less expensive substitute exists.

• If the control is more expensive than the risk decrease delivered, seek another solution.

• If the control does not lower risk adequately, seek for more controls or other measures.

• Use the control if it offers appropriate and cost-effective mitigation.

Often, the costs of establishing control outweigh the disadvantages of not executing it. As a result, top executives play an important role in choices about the deployment of control mechanisms to safeguard organisational policy.

The price of applying a control is frequently more perceptible than the cost of not executing it. As a result, senior organization is crucial in choices about the execution of control procedures to defend the organisational work.

Residual Risk

Administrations can assess the degree of risk lessening created by new or improved controls in terms of reducing threat likelihood or effect, two factors that characterise the equal of risk to the corporate undertaking. (Menoni, S. 2018).

Implementing new or enhanced controls can lower the risk by:

 • Eliminating other system vulnerabilities (errors and vulnerabilities), lowering the number of possible sources of danger / weakness

In addition to targeted controls to reduce power and source-critical, for example, the department decides that the cost of installing and maintaining additional standalone PC software to keep its sensitive files is not justified, but that administrative and physical controls to make physical access to that PC more difficult should be used.

• Lessen the severity of the negative impact

The relationship between control execution and outstanding risk is realistically presented in the figure-

The risk that remains after the execution of additional or improved controls is referred to as remaining risk. In reality, there is no such thing as a risk-free IT programme, and not all risk-reduction strategies are designed to discourse or lower the risk equal to zero. (Goh, M. 2017).

As a result, the negative consequences of a security event may be designated as the forfeiture or destruction of any, or an amalgamation of any, of the three security purposes: integrity, access, and concealment. The table below offers a quick explanation of each protective policy and the result of noncompliance:

Loss of Integrity. The idea of system integrity and information denotes to the fortification of data against inappropriate correction. When unauthorised alterations are made to data or IT systems by purposeful or erroneous activities, integrity is lost. Constant procedure of a corrupt arrangement or corrupt information may outcome in mistakes, frauds, or inaccurate decisions if system loss or data integrity are not repaired. Furthermore, a defilement of truthfulness might be the initial step toward a efficacious attack on system access or concealment. For all of these explanations, loss of veracity affects the IT system’s reliability.

Loss of Availability. If the most critical IT system in a policy is unavailable to its end users, the organisational policy may be jeopardised. For example, a loss of system performance and efficiency may result in a loss of productivity time, prohibiting end users from carrying out their activities in support of an organisational aim. (Stewart, M. G. 2019).

Loss of Confidentiality. The protection of information from unauthorised disclosure is referred to as system and confidentiality. The consequences of unlawful exposure of secret information can range from compromising national security to disclosing data protected by the Privacy Act. Unauthorized, unexpected, or unintended disclosure may result in public shame, embarrassment, or legal action against the organisation.


Many firms will continue to extend and upgrade their networks, modify their components, and replace or update their software packages with fresher versions. Additionally, personnel turnover is inevitable, and safety regulations are likely to evolve over time.

As a result of these expansions, new risks will emerge, and previously decreased dangers may become a source of worry. As a result, risk management is a continual and emerging activity. This section stresses best practises and the need of ongoing risk assessment and evaluation, as well as the aspects that will lead to an effective risk administration system.

Good Security Practice

In government employment, the risk valuation procedure is often performed atleast every single three years, as required by OMB Circular A-130. Disaster risk administration, alternatively, should be adopted and combined into the SDLC for IT systems not for the reason that it is needed by law or guideline, but for the reason that it is a decent practise that provisions the administration’s or policy’s business purposes.

There should be a particular plan for testing and mitigation of equipment, but the procedure should also be flexible adequate to allow for alterations as needed, such as large vicissitudes in the IT system and dispensation area induced by new regulations and technologies.

Keys For Success

It will be dependent on a efficacious risk administration system:

(1) senior management obligation;

(2) full sustenance and contribution of the IT line-up;

(3) the capacity of the risk valuation team, which must be able to put on a specific risk valuation approach and plan, identify policy risks, and provide affordable protections that meet the needs of the organisation; and

(4) the consciousness and collaboration of associates of the user communal, who must survey measures and guidelines.

(5) Ongoing testing and risk evaluation of information technology-related equipment.

Order Now

Get expert help for ICT205 CYBER SECURITY T321 and many more. 24X7 help, plag free solution. Order online now!

No Fields Found.
Universal Assignment (September 29, 2022) ICT205 CYBER SECURITY T321 Solution. Retrieved from https://universalassignment.com/ict205-cyber-security/.
"ICT205 CYBER SECURITY T321 Solution." Universal Assignment - September 29, 2022, https://universalassignment.com/ict205-cyber-security/
Universal Assignment June 26, 2022 ICT205 CYBER SECURITY T321 Solution., viewed September 29, 2022,<https://universalassignment.com/ict205-cyber-security/>
Universal Assignment - ICT205 CYBER SECURITY T321 Solution. [Internet]. [Accessed September 29, 2022]. Available from: https://universalassignment.com/ict205-cyber-security/
"ICT205 CYBER SECURITY T321 Solution." Universal Assignment - Accessed September 29, 2022. https://universalassignment.com/ict205-cyber-security/
"ICT205 CYBER SECURITY T321 Solution." Universal Assignment [Online]. Available: https://universalassignment.com/ict205-cyber-security/. [Accessed: September 29, 2022]

Please note along with our service, we will provide you with the following deliverables:

Please do not hesitate to put forward any queries regarding the service provision.

We look forward to having you on board with us.

Get 45%* OFF on Assignment Help

Most Frequent Questions & Answers

Universal Assignment Services is the best place to get help in your all kind of assignment help. We have 172+ experts available, who can help you to get HD+ grades. We also provide Free Plag report, Free Revisions at a Pocket Friendly cost, We offer Best Price in the industry guaranteed.

We provide all kinds of assignmednt help, Report writing, Essay Writing, Dissertations, Thesis writing, Research Proposal, Research Report, Home work help, Question Answers help, Case studies, mathematical and Statistical tasks, Website development, Android application, Resume/CV writing, SOP(Statement of Purpose) Writing, Blog/Article, Poster making and so on.

We are available round the clock, 24X7, 365 days. You can appach us to our Whatsapp number +1 (613)778 8542 or email to info@universalassignment.com . We provide Free revision policy, if you need and revisions to be done on the task, we will do the same for you as soon as possible.

We provide services mainly to all major institutes and Universities in Australia, Canada, China, Malaysia, India, South Africa, New Zealand, Singapore, the United Arab Emirates, the United Kingdom, and the United States.

We provide lucrative discounts from 28% to 70% as per the wordcount, Technicality, Deadline and the number of your previous assignments done with us.

After your assignment request our team will check and update you the best suitable service for you alongwith the charges for the task. After confirmation and payment team will start the work and provide the task as per the deadline.

Yes, we will provide Plagirism free task and a free turnitin report along with the task without any extra cost.

No, if the main requirement is same, you don’t have to pay any additional amount. But it there is a additional requirement, then you have to pay the balance amount in order to get the revised solution.

The Fees are as minimum as $10 per page(1 page=250 words) and in case of a big task, we provide huge discounts.

We accept all the major Credit and Debit Cards for the payment. We do accept Paypal also.

Popular Assignments

The finest assignment helps in Saudi Arabia

Many students dream to study in Saudi Arabia as they offer some of the best facilities, and they boast one of the most spectacular and rapidly expanding higher education systems in the Middle East. So, this should be of no surprise that every year, many international students prefer to register

Read More »

Expert Solutions for the Best Arithmetic Assignment Help Online

Instant Arithmetic Assignment Help for Students Students most often require Arithmetic assignment help online to solve various calculations. Universal Assignment Help Service provides the best solutions to all arithmetic problems for each student. Students simply have to upload their assignment guidelines on their website, and a customized and accurate assignment

Read More »

Assignment help in Cameroon

The Necessity of Assignment help in Cameroon Today management degrees are one of the most prestigious degrees out there and gaining immense popularity, this degree has the most demand in the market as new startups are emerging day by day, and every company needs the best people to run their

Read More »

Assignment Help in South Korea

Difference between a Good vs Great Online Assignment Tutor The e-learning market is growing at a fast rate due to digitalization. This fact causes an increment in the demand for online tutors as students worldwide searches for a suitable solution for online assignment help in South Korea. You might hear

Read More »

Assignment Help in Japan

Outside-The-Classroom Learning Opportunities It is a typical thinking lesson that stands inside the four walls of a classroom. Some educators say the classroom is the abode of learning and knowledge. We cannot prove these statements wrong. However, one thing is certain: they are partially correct. Learning of concepts starts in

Read More »

Assignment Help in Brazil

Why do Students Consider Online Assignment Help in 2022? Academic life is full of ups and downs. Students who experience such a phase struggle to maintain the equilibrium between personal and professional life. It is because of the load of homework, exams, and participation in extracurricular activities. These events cause

Read More »

Assignment Help in Taiwan

What are the Necessities of Assignment Guidance for Students? As technology takes a new turn around, homework assignments become lengthy and complex. This academic work needs lots of core subject knowledge along with proper research to finish it with proper care. Such work is very time-consuming and hectic for the

Read More »

Assignment Help in Hong Kong

Can You Achieve High Academic Results? Every student wishes to get top scores in their exams. Yet it does not happen if you do not get the correct assignment help in Hong Kong from an online tutor. Such support is in the form of tips, advice, hacks, or taking guidance,

Read More »

VU22977 – Practice in a Legal Environment

Advanced Diploma of Legal Practice – 22565VIC PORTFOLIO- CLIENT MATTER FILE Assessment task 1 Prepare a comprehensive portfolio of documents to create a Client Matter File which must include: Element 1 Area of law Cover sheet stating client name and short description of legal matter Client Instruction Sheet, Costs Agreement

Read More »

KIT714 ICT Research Principles: Assignment 1

Practical Qualitative Research Exercise                                                                                                                                         Type:                 In-Semester, Individual Assignment Task Length:   minimum 2,000 words Weighting:     20% of total assessment for this unit Due Date:       Friday 5 August 2022 – 11:55 pm (Week05) Submission:    electronic submission on MyLO (WORD or PDF) Description:    This practical exercise will engage students in a qualitative research

Read More »

MODULE 44-704463 Dissertation Help

ASSESSMENT CRITERIA Dissertation (12,500 words) Deadline: JULY 29th 2022, 3pm Introduction and abstract  Situates the research question within the, theory, and concepts Explains the value of the study.  Relevance of the research question, to the field of study is fully justified. Leads logically into the Literature Review. Abstract of professional

Read More »

ITECH1103-Assignment: Assignment 2: Analytics Report

Overview The purpose of this task is to provide students with practical experience in writing a data analytical report to provide useful insights, patterns, and trends in a chosen dataset in the light of a set of tasks required within this document. This dataset will be chosen from the UC

Read More »

PBHL20001 Term 1, 2022 – Supplementary Assessment

PBHL20001 Term 1, 2022 Supplementary Assessment The influenza pandemic that followed World War I and took place over the period from 1918-1920 resulted in an estimated 100 million deaths worldwide and 500 million infections. In addition, this pandemic had a significant impact on public health practice throughout the 20th century

Read More »

Community Health Project 1 (HLTH 3058): Assessment 2: Portfolio Task 2

Community Health Project 1 (HLTH 3058) Assessment 2: Portfolio Task 2 – Evaluative Framework Marking Guide Weighting: 15% the total grade for the course   Criteria Outstanding performance (75-100%) Exceeds core requirements (65-74%) Meets core requirements (50-64%) Does not meet requirements (<50%) Comments Content (70%) Demonstrates adequate knowledge of integrating

Read More »

Community Health Project 1 (HLTH 3058): Assessment 2: Portfolio Task 1

Community Health Project 1 (HLTH 3058)Assessment 2: Portfolio Task 1 – Ethical Considerations Marking GuideWeighting of 15% the total grade for the course Criteria Outstanding performance (75-100%) Exceeds core requirements (65-74%)   Meets core requirements (50-64%) Does not meet requirements (<50%) Comments CONTENT (80%) Ethical Considerations   Demonstrates adequate knowledge

Read More »

SAM 11486/SAM G 6677: Assignment 1 – Individual

Assignment 1 – Individual (25%) Report Due: 11:59pm Sunday Week 5 04/09/2022 This assignment will be marked out of 25 marks and is worth 25% of the overall mark for the unit. Please check the unit outline for late penalties and restrictions on late submissions. This assignment is an individual

Read More »

11486 Systems Analysis and Modelling

Assignment Case Study C – Feed Me Now Disclaimer: The situation described in the following case study is fictional, and bears no resemblance to any persons, businesses, or organisations, living or dead. Any such resemblance, if exists, is merely co-incidental in nature, and is not intentional. Feed Me Now is

Read More »

MAA703 – Accounting for Management

Trimester 2 2022 Assessment Task 2 Part B – Teamwork Reflection (Individual) DUE DATE AND TIME:                        Wednesday, 7 September 2022 by 8:00pm (AEST) PERCENTAGE OF FINAL GRADE:    10% WORD COUNT:                                   750 – 800 words Description Teamwork is one of the vital components of many workplaces and the ability to demonstrate

Read More »

Research project assessment proforma and marking schemes

BSc Biomedical Sciences with Health, Exercise and Nutrition (HEN6004) and BSc Biomedical Science (APS6022) Instructions for use All forms must be completed electronically and uploaded to the student submission point in  turnitin. Please note the literature review assessment will be completed in January whereas the assessment of the paper/poster and

Read More »

XERO and Spotlight reporting software Report Assignment

Case facts – Read me carefully please City Infrastructure Holdings Ltd (CIH) and Network Maintenance Services Ltd (NMS) City Infrastructure Holdings Ltd (CIH) acquired 100% of the 300,000 issued shares in Network Maintenance Services (NMS) on 1 July 2021.  The consideration provided to shareholders of NMS consisted of $1.20 in cash plus 1

Read More »

KIT103 Computational Science

School of Information and Communication Technology College of Sciences and Engineering Unit Outline KIT103 Computational Science Semester 2, 2022 Sandy Bay Campus, Hobart Newnham Campus, Launceston COVID-19 (Coronavirus Information) For information on how you can help keep us all safe, please review the Coronavirus updates page here: https://www.utas.edu.au/about/safety-security-and-wellbeing/coronavirus Sections that

Read More »

SEN725 Urban Stormwater Asset Design

Assessment Task -4 Final Report – Analysis of CoGG Stormwater Network Weight 50% This is an individual assessment task. Plagiarism and collusion is unacceptable practice at Deakin University. You must appropriately reference your work. Failure to do so will result in disciplinary action. For more information on plagiarism and collusion,

Read More »

PSY3PRP 2022 Assignment 2: Research Project Report

PSY3PRP 2022 Assignment 2: Research Project Report Guidelines and Marking Rubric Individual Research Report due Wednesday 19th October 11.59pm (50% of total grade) For this assignment—with support through structured tutorial work across much of the semester— you will produce an individually-written report on the broad topic of feeding difficulties in

Read More »

Increasing Demand for assignment help in Namibia

With the growing population, the demand for clean energy, advanced technology, new structures, and better healthcare is escalating day by day which makes engineering the most popular degree for the youth. As more people pursue engineering nowadays, it also makes it one of the most difficult and competitive degrees also.

Read More »

Online Assignment Help in Germany

How Could You Do Exam Preparation Effectively? Exam time is full of challenges and difficulties. You have to juggle exams even in high school, college, or higher education. It defines your knowledge of a specific subject and how well you know the curriculum. The exam also tests how much you

Read More »

Get Excellent Human Values Assignment Help Immediately

Get Excellent Human Values Assignment Help Immediately: Expert Solutions to all your Queries Instant Human Values Assignment Help Online Students can get Human Values assignment help online in a fast and simple way from the experts at Universal Assignment Help Service. Their team of over 172+ subject experts works every

Read More »

Get Top Modern History Assignment Help Online

Order Modern History Assignment Help immediately Students often need modern history assignment help for many reasons. Getting immediate online help for assignments helps students boost their academics in incredible ways. Sometimes, the pressure of studies is too much to take for students. This causes them to score poor grades and

Read More »

Get Instant Assignment Help in the United Arab Emirates

How Can Assignments Help Students? Whatever the definition of homework is, one thing is certain: it helps students thoroughly learn the concepts they have studied in class. The number of such assignments may cause stress or a burden. It means students and tutors are both correct in their type of

Read More »

Assignment Help in Mexico

How to Gain Awesome Grades in Your Chemistry Subject? Whether you are pursuing a technical degree or studying in the science stream, chemistry is always at the forefront. If you love to observe reactions, molecules, acids, condensation, evaporation, and dilution, chemistry will prove a resource for getting outstanding academic marks.

Read More »

Can't Find Your Assignment?

Open chat
Free Assistance
Universal Assignment
Hello 👋
How can we help you?