comprehensive risk analysis report.

comprehensive risk analysis report. 150 150 Affordable Capstone Projects Written from Scratch


Research question: You have been selected to lead an assessment team that will produce a comprehensive risk analysis report. Explain the assessment process and give examples of what would be included in the following assessment sections:
- Vulnerability assessment
- Threat assessment

Additional information: - This is with reference to the critical infrastructure sectors in the US (reference:
- Please use information from “Risk Analysis and Security Countermeasure Selection, 2nd edition” by Thomas L. Norman within the paper. I have the book and can provide you with information, if you’d like. The ISBN is 9781482244199.
- Please ensure there is no plagiarism within this paper. I will fail the semester if there is plagiarism detected within this paper.
- If there is anything else I can help with, please contact me

answer preview

Set Cyber infrastructure and Goals

The goals and objectives varied from across the organizations and sectors depending on operating environment, risk landscape, resources and industry composition and other elements of critical infrastructure. The overall national goals of critical infrastructure risk management assist in the state of security enhancement and building resilience.  Improved security can be achieved through implementation of focused risk management activities across and within the sectors and all government levels.  The team indicated that the national security plan should analyze and assess threats, vulnerabilities, and consequences to the critical facilities. The security system should be available to the facility, operators, cyber threats and work to minimize risks while accounting for cost and benefits of invested funds on security. Measures in place should minimize the adverse consequences through mitigation plans and effective emergency response to save lives and ensure recovery of essential services.

Conducting identified hazard and threat assessment is essential to the critical infrastructure.   The intelligence community, Department of Defense and the law enforcers describes threats as design criteria for manmade disaster or terrorism. The Federal Emergency Management Agency indicates hazards as events occurring to the natural causes to include earthquakes, the wind, and flood disasters (Ford & Barry, 2004).  Terrorism and technological hazards and manmade hazards are distinct from natural hazards as they originate from human activities. The technological disasters may be accidental and have unintended consequences.

Infrastructure Identification

Critical infrastructure can be categorized based on their unique operating models, location and associated risks.  The private and public parents identify essential infrastructure as their businesses and buildings. The infrastructure includes networks that allow services to the customers, keep businesses running thus work to enhance security and resilience. Critical infrastructures in the United States are assets that have an important function for the society and economy.  According to the United States government, there 16 critical infrastructural sectors whose systems, networks, assets whether virtual or physical are considered essential (Homeland Security, 2017). The state, local and federal governments identified the networks and assets that are essential to their continued operations thus maintain public health, safety, and provision of essential services.