You have been hired by No-Internal-Controls, LLC in the newly created role of CISO and have been asked to place priority on mitigating further attacks of this type.
- Suggest one or more policies that would help mitigate against attacks similar to this attack
- Suggest one or more controls to support each policy
- Identify each of the controls as physical, administrative, or technical and preventative, detective, or corrective.
- Keep in mind that No-Internal-Controls, LLC is a mid-sized company with a small IT staff and limited budget
- Do not attempt to write full policies, simply summarize each policy you suggest in one or two sentences.
- Clearly indicate how each policy you suggest will help mitigate similar attacks and how each control will support the associated policy
- 3-5 pages in length.
- APA format.. citations, references etc…