System development
Consideration of security in the System Development Life Cycle is essential to implementing and integrating a comprehensive strategy for managing risk for all information technology assets in an organization.
Security activities should be physically and logically integrated into an organization’s SDLC policy and guidelines versus maintaining them in a separate, complementary document or security life cycle
The most effective way to accomplish the integration of security within the system development life cycle is to plan and implement a comprehensive risk management program.
Tasks:
Research and develop a well thought-out, graduate-level paper, of NO LESS than three (3) pages, which addresses the following:
What is risk management? (more than a simple one-paragraph definition)
How is risk management appropriately applied to the systems development life cycle (SDLC)?
When is risk management most appropriately integrated into the SDLC?
Identify three (3) risks that a systems analyst should be aware of or on the lookout for during the SDLC.
Provide a recommendation for each of the three risks that you have identified, in step 4, designed to mitigate that risk effecting the organization’s SDLC
Part 2: Senior management has been working for weeks to determine the best system changeover approach to use for the current sales force management system under development. Time to implement the new system is drawing close and senior management has asked for your assistance.
Tasks: Senior management has asked you to develop a presentation (use MS Word and not PowerPoint) that presents the risks, rewards, pros and cons, benefits, upsides, downsides, costs, etc., of using the following changeover approaches, which are being considered:
Direct cutover
Parallel operation
Pilot Operation
Phased Operation
Your presentation (MS Word document) should provide ample detail and discussion of each changeover approach, at a level that will allow senior management to select the most appropriate approach for the soon-to-be-implemented sales force management system.
Once again, a paper that does not appropriately address the deliverable requirements, will not receive full-credit consideration.