You have been hired by No-Internal-Controls, LLC in the newly created role of CISO and have been asked to place priority on mitigating further attacks of this type.
- Suggest one or more policies that would help mitigate against attacks similar to this attack
- Suggest one or more controls to support each policy
- Identify each of the controls as physical, administrative, or technical and preventative, detective, or corrective.
- Keep in mind that No-Internal-Controls, LLC is a mid-sized company with a small IT staff and limited budget
- Do not attempt to write full policies, simply summarize each policy you suggest in one or two sentences.
- Clearly indicate how each policy you suggest will help mitigate similar attacks and how each control will support the associated policy
- Be sure to follow APA formatting and provide references to support your key points in the case. Use the book and library resources to find references. Remember references add credibility to writing as well as providing proper credit to your sources.