On this task, college students will apply what they’ve realized within the course about FISMA compliance, CSF framework, and the ISO/IEC 27001:2013 certification course of to broaden their understanding by way of the lens of an inside auditor for a small and medium-sized enterprise. The scholar could choose to deal with the state of affairs from a federal or non-public sector perspective, however should make sure you denote which sector is chosen and apply the suitable logic to the steps wanted to safe compliance.
State of affairs
The federal and personal sector group is contemplating ISO/IEC 27001:2013 certification and presently holds a Degree three strategic alignment organizational alignment maturity (established insurance policies, procedures, and SOPs). The group requires extra work to acquire an optimized state and you’ve got been requested to guide the hassle to get them there.
In a 750- to 1,000-word paper, describe the steps you’ll use to Help the group start to organize for this certification. Ensure that to deal with the next:
What’s the organizational readiness for certification? Review the Strategic Alignment Maturity Mannequin Ranges for this portion.
What number of members of your inside audit crew will it is advisable to carry out the danger Assessment? How lengthy will the danger Assessment take?
What inside expertise groups and different key stakeholders will it is advisable to have interaction?
Present a short description of the ISO/IEC 27001:2013 or FISMA certification course of (depending on sector sort chosen).
Ensure that to reference educational or NIST official publications (most present 12 months out there by way of the Web) or different related sources revealed inside the final 5 years.
Put together this task in keeping with the rules discovered within the APA Fashion Information, situated within the Scholar Success Heart.
This task makes use of a rubric. Please review the rubric previous to starting the task to turn out to be acquainted with the expectations for profitable completion.
