Risk Mitigation Worksheet Template

Reviews
Shared by: ocak
Categories
Tags
Stats
views:
1715
rating:
not rated
reviews:
0
posted:
1/28/2008
language:
English
pages:
0
CDC Risk Assessment ReportRevision 08-16-05 Appendix D Risk Mitigation Worksheet for Date Completed: , 2005 Date Last Modified: , 2005 Certifying Authority Signature: Date: Sensitive But Unclassified 1 CDC Risk Assessment ReportRevision 08-16-05 Appendix D Risk # 1 Rank (High/Moderate/Low) Moderate EAAL Transaction # N/A EAAL Risk Description (1,2,3,4) N/A (RA-2) Lack of data classification and management. Proposed Alternatives Response/Comments Will use FIPS-199 as guidance. Will use FIPS-199 and NIST 800-30 as guidance Recommended Controls Conduct a data sensitivity assessment. Establish a level of security for all agency information systems commensurate with the sensitivity of the information and the risk and magnitude of loss or harm that could result from improper operation of the information system, as mandated by FIPS 199. Selected Y/N Y Y POAM Tracking Number _ (POA&M Quarter A,B,C,D)_ Year _1 (Example: ABC_A_2006_1) Recommendation That Risk Be Accepted As Mitigated Certifying Authority Initials: CA Comments: Sensitive But Unclassified 2 CDC Risk Assessment ReportRevision 08-16-05 Appendix D Risk # 2 Rank (High/Moderate/Low) Moderate EAAL Transaction # N/A Selected Y/N N EAAL Risk Description (1,2,3,4) N/A (PS-7) Lack of policy and procedures for outsourcing. Proposed Alternatives Response/Comments This is an Enterprise issue for personnel security. Recommended Controls Develop and promulgate policy and procedures for outsourcing. POAM Tracking Number N/A Recommendation That Risk Be Accepted As Mitigated Certifying Authority Initials: CA Comments: Sensitive But Unclassified 3 CDC Risk Assessment ReportRevision 08-16-05 Appendix D Risk # 3 Rank (High/Moderate/Low) Moderate EAAL Transaction # 2 EAAL Risk Description (1,2,3,4) 2 (AC-17) VPN/Keyfob access does not meet EAAL Level 4 (NIST 800-63) requirements. Proposed Alternatives Response/Comments Recommended Controls Migrate all remote authentication roles to CDC secure data network (SDN) or to another mechanism approved by the OCISO. Selected Y/N POAM Tracking Number _ (POA&M Quarter A,B,C,D)_ Year _1 (Example: ABC_A_2006_1) Recommendation That Risk Be Accepted As Mitigated Certifying Authority Initials: CA Comments: Sensitive But Unclassified 4

Related docs
Risk Mitigation Worksheet Template
Views: 5  |  Downloads: 1
Mitigation Best Practice Submission Worksheet
Views: 36  |  Downloads: 3
Template Mitigation Banking Instrument
Views: 25  |  Downloads: 1
Template Mitigation Banking Instrument
Views: 31  |  Downloads: 0
Risk Management Template
Views: 8  |  Downloads: 5
Risk Template
Views: 213  |  Downloads: 33
IT Risk Assessment
Views: 29  |  Downloads: 8
Contingency Risk Analysis
Views: 1189  |  Downloads: 224
Risk Management Plan Template
Views: 594  |  Downloads: 133
premium docs
Business Plan Presentation Template$4.95
Marketing Plan$29.95
Business Plan$25.00
Letter of Intent for Business Transactions$14.95
Employee Handbook for Company$39.95
Sample Business Case$19.95
Sample Project Closeout Report$14.95
Other docs by ocak
Template Project Scale[1]
Views: 4345  |  Downloads: 674
Strategic Asset Plans[1]
Views: 2428  |  Downloads: 539
Steering Committee Charter template[1]
Views: 5252  |  Downloads: 664
Status Report Management Process Flow example[1]
Views: 5016  |  Downloads: 1088
Status Report Example
Views: 7681  |  Downloads: 1778
Software Requirement Specifications Document Template[1]
Views: 5770  |  Downloads: 661
Scope Statement Development Instructions[1]
Views: 2202  |  Downloads: 93
Schedule Of Excess Risks[1]
Views: 1021  |  Downloads: 32
Sample Performance Based Requirement Template for use with Task Orders[1]
Views: 3212  |  Downloads: 69
Risk Value Assessment Tool
Views: 1820  |  Downloads: 148
Risk Response Plan
Views: 1261  |  Downloads: 57
Risk Model Template Tool instructions
Views: 623  |  Downloads: 34
Risk Matrix
Views: 1266  |  Downloads: 79
Risk Management Work Breakdown Structure
Views: 1398  |  Downloads: 173
Risk Management Toolkit
Views: 739  |  Downloads: 156