Question

The chief financial officer(CFO) made some complaints to the CEO regarding capital expenditures for security software. You try to lighten the blow by explaining the value of controlling security. In a point paper to the CEO, explain the cost benefit analysis method you use to do a quantitative assessment before investing in a security control. Complete and include table below in your paper Historical PCS incidents, cost per incident, frequency of occurrence, LLE, ARO, ALE theft of information (hacker) 25,500 once every 5 years frequency of occurrence Sle 25,500 ARO 2 theft of information (employee) cost per incident 50,000 once every 2 year’s frequency of occurrence sle 50,000 ARO 3 web defacement 500 cost per incident once per month ARO 12.0 ale 6,000 theft of equipment 5,000 cost per incident once per year ARO 1.0 ale 5,000 virus, worms, Trojan horses 1,500 cost per incident sle 1,500 ARO 52.0 ale78,000 denial-of-service attacks 2,500 cost per incident sle 2,500 ARO 4.0 ale 10,000 you are currently deciding whether to invest in data loss prevention software. You have some reliable statistics that the software will reduce your information theft incidents by half of the current values. The cost of the software is $ 100k per year . Recalculate the new ARO and ALE for hacker and employee information theft based on these new values explain your decision whether or not to invest in the data loss prevention software projected PCs incidents with data theft prevention software theft of information ( hacker) cost per incident 25,500 frequency of occurrence once every 5 years sle 25, 500 theft of information ( employee) 50,000 frequency of occurrence once every 2 years sle 50,000

          The chief financial officer(CFO) made some complaints to the CEO regarding capital expenditures for security software. You try to lighten the blow by explaining the value of controlling security. In a point paper to the CEO, explain the cost benefit analysis method you use to do a quantitative assessment before investing in a security control. Complete and include table below in your paper  Historical PCS incidents, cost per incident, frequency of occurrence, LLE, ARO, ALE theft of information (hacker) 25,500 once every 5 years frequency of occurrence Sle 25,500 ARO 2 theft of information (employee) cost per incident 50,000 once every 2 year’s frequency of occurrence sle 50,000 ARO 3 web defacement 500 cost per incident once per month ARO 12.0 ale 6,000 theft of equipment 5,000 cost per incident once per year ARO 1.0 ale 5,000 virus, worms, Trojan horses 1,500 cost per incident sle 1,500 ARO 52.0 ale78,000 denial-of-service attacks 2,500 cost per incident sle 2,500 ARO 4.0 ale 10,000 you are currently deciding whether to invest in data loss prevention software. You have some reliable statistics that the software will reduce your information theft incidents by half of the current values. The cost of the software is $ 100k per year . Recalculate the new ARO and ALE for hacker and employee information theft based on these new values explain your decision whether or not to invest in the data loss prevention software projected PCs incidents with data theft prevention software theft of information ( hacker) cost per incident 25,500 frequency of occurrence once every 5 years sle 25, 500 theft of information ( employee) 50,000 frequency of occurrence once every 2 years sle 50,000

Added by Janet S.

Question

Please give Ace some feedback