Homework answers / question archive / Using the NIST Cybersecurity Framework and the organizational knowledge gained in the prior assignments, apply the Protect function to design an Identity and Access Management Plan

Using the NIST Cybersecurity Framework and the organizational knowledge gained in the prior assignments, apply the Protect function to design an Identity and Access Management Plan

Computer Science

Share With

Using the NIST Cybersecurity Framework and the organizational knowledge gained in the prior assignments, apply the Protect function to design an Identity and Access Management Plan.

The following focus areas should be included in the plan:

• Support for data security protection to protect the confidentiality, integrity, and availability objectives in the organization and to ensure security and resilience of systems and assets.
• Coverage (internal and external) regarding people, devices, and services should be included in the identity and access provisioning lifecycle.
• A table listing authenticator threat attack types and threat mitigation strategies to be used by the organization.
• An access review schedule, including provisioning and de-provisioning, auditing, and enforcement.
• Justifications for each recommendation should be supported by the NIST CSF and other industry-accepted standards.