OBJECTIVES This assignment is designed to assess students' ability to: • To be able to Analyze the security information security Incident Management process. . • To develop skills of disaster security trends. • To enhance the student knowledge through literature review. • Use of CU Harvard referencing system to cite and reference academic resources OUTCOME Upon the completion of this assignment, students will be able to: 1. Develop information security baseline(s). 2. Manage reviews to identify events and corrective actions Task 1: Submitting the assignment work proposal (3 Marks) Task 2: Every organization experiences unusual encountered events such as malicious attacks, that has the potential to damage organization assets, reputation as well as personal. To cope with these unusual events incident management is applied, that is a process of developing and maintaining the capability to manage incidents within an organization, so that impacts can be lowered and recovery is achieved within the specified time objective. Information Security Management (COMP 0400) –Summer– 16 – CW2 – QP 2 a. Through two research papers analyze the importance of using or applying information security Incident Management process. (8 Marks) b. As an Information Security Manager conduct a study (of any organization from your choice) to analyze the information security Incident Management plan that they apply in their organization. (10 Marks) c. Add your statement and recommendations about the future challenges in these plans. (4 Marks) TASKS DESCRIPTION AND MARKS DISTRIBUTION The marks allocation scheme for the assignment is as follows: Task 1: Submitting the assignment work proposal which include the student understanding and plan. Task 2: Provide the following information in the report: a. Through two research papers analyze the importance of using or applying information security Incident Management process. (8 Marks) In this question I have to find two research papers about information security Incident Management process and compare between two research papers and find the definition, positives, negatives, challenges and importance of Incident Management in each of the tow research papers. file:///C:/Users/Fahad/Downloads/Incident_Management_guide%20(2).pdf Expectations: To define incident management and analyse the different research papers that clarify the importance, challenges and processes of it. b. As an Information Security Manager conduct a study (of any organization from your choice) to analyze the information security Incident Management plan that they apply in their organization. (10 Marks) Expectations: To analyse a case study showcasing the planning and utilization of incident management planning and highlighting the advantages. c. Add your statement and recommendations about the future challenges in these plans. (4 Marks) Expectations: add your understanding of main gaps in chosen case study, with proper recommendation to enhance the identified gaps/challenges. ASSIGNMENT EVALUATION CRITERIA Students will be evaluated on the following point Information Security Management (COMP 0400) –Summer– 16 – CW2 – QP 3 • Originality of answer, i.e. writing in your words with some amount of referenced material • Correct information and presentation in document form • Adequate referencing and citation provided • Submitting work proposal which include student solution plan and this will carry 10% of the marks • Oral Examination/VIVA: Assignment marks are based on the VIVA which will be conducted upon submission of assignment. The VIVA will be based on the tasks given in the assignment. ZERO marks will be awarded to the student if he/she is absent for VIVA. GUIDELINES • The report should have 2500 words approximately. • The document should be well presented and neatly done • Assignment should be computer typed using Calibri 12 font and the soft copy should be submitted through Moodle, duly checked by TurnItIn to check the similarity