You are to select one of the organisations described in the appendix and carry out a risk
analysis for the organisation, develop a security programme and outline how it will be
For the organisation, you are required to:
Identify the major security risks faced by this organisation and perform a risk analysis.
Write a security programme for the organisation based on the risk analysis.
Outline how the security programme will be implemented. Explain what technologies and
procedures will be deployed and how will they be used.
In preparing this work you will need to make a number of assumptions as to the detail of the
organisation. When you
prepare your work you will need to document your assumptions.
Use the format of this document as a guide to the layout of the report. Sections are to be numbered. Diagrams are to be [url removed, login to view] references used are to be listed in a Reference [url removed, login to view] should not be more than 15 pages..
The report is to have the following sections:
Cover page(don’t worry about this).
No more than one page outlining the contents and summarising the recommendations of
No more than 5 pages discussing the security issues faced by the organisation.
Identify and rank the security threats faced by the organisation.
Security programme (See next section for requirements).
Implementation of security programme.
Outline how each item in the security programme will be implemented. Specify what
technologies are to be used. Outline any manual controls to be adopted.
Summary including recommendations.