I do not understand how to go about it. An explanation and major points to devel

Question

I do not understand how to go about it. An explanation and major points to develop would be very helpful. Thanks.

Question: Adoption of the Critical Security Controls is a hot topic in today’s organizations. Review the CSC survey document and provide at least one suggestion on three different controls for an organization to move from awareness of the CSC’s to implementation. Please feel free to make assumptions as needed for you to develop recommendations for a fictional company. The document is attached. https://www.sans.org/reading-room/whitepapers/analyst/2013-critical-security-controls-survey-moving-awareness-action-35065

Explanation / Answer

Answer

In order to do this question you can go through the document, however, the main focus of the question is to provide atleast one suggestion for each of the three different controls for real/imaginary organization to move from awareness of the CSC's to implementation.

The three different controls are:
1. Mature Control
2. Evolving Control
3. Immature Control

Suggestions can be like a scenario description like below:
for mature control: Suppose a manager in the organization is storing data only in the hard drive of his desktop. One day, his hard drive crashes then with his hard drive all the data is also gone. So, in order to prevent that, he should have made a copy of the data and stored it in cloud or some other safer server. In order to recover from this type disaster, organizations often make it employees to store data in cloud or a common server which is guarded by recovery techniques.

You can provide suggestions in similar way for the other two controls too.

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.