LAW6827

.docx

School

St. Petersburg College *

*We aren’t endorsed by this school

Course

6827

Subject

Law

Date

Jun 11, 2024

Type

docx

Pages

2

Uploaded by mrphensley

LAW6827 - MOD3 DBP - 05.24.2024 Fact Pattern: You are a cybersecurity governance consultant hired by Sweet Dream's board of directors to provide ideas on improving the company's cybersecurity posture. Sweet Dreams, Inc. ("Sweet Dreams") is a corporation that owns 10,000 hotels and three casinos. Sweet Dreams also recently launched an online gambling business. Assignment: Sweet Dreams currently has a "medium-maturity cybersecurity program" (as described in Part II of the assigned reading  Cybersecurity Compliance and Risk Management Strategies: What Directors, Officers, and Managers Need To Know After reading this article (particularly Part II), please provide at least  one justification  for  each of the following  three  statements , including why these statements are relevant to a company like Sweet Dreams: 1. "Modern orthodox risk management is relevant to cybersecurity governance and risk management." 2. Building a mindful corporate culture is essential for cybersecurity governance and risk management. 3. "Audits by cybersecurity insurers can play an important role in cybersecurity governance and risk management." 1. The justification for a corporation of the size and business nature, such as Sweet Dreams, Inc., to incorporate the modern orthodox risk management is that without implementing enterprise risk management (ERM), the security risks for information leaks can create significant summed class action liability lawsuits for exposure to online customer information, especially with the new online gambling launch. 2. The justification for carrying out essential cybersecurity risk management with ERM's four objectives is the benefit that it gives Sweet Dreams, Inc.: confidentiality of disclosed customer information, integrity of the customer's authority for any changes, availability of saved data, and resilience to threats of hackers . 3, The justification of cybersecurity insurance audits is to improve Sweet Dreams, Inc.'s preventative cybersecurity and aid in the aftershock of public scrutiny and criticism after a liability breach; further adopting a cybersecurity maturity would benefit learning the unknown through orthodox risk management and strategies. Supplemental strategies that are potentially useful, especially to firms in this medium-security category, are enhancing predictions, creating a corporate culture that complies with cyber risk-management controls, and audits with
cybersecurity insurance. This would improve predictive capabilities, form a cyber-savvy culture, reducing all risk through cybersecurity insurance audits.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help