What This Document Is
This document is a completed Project Module 6 for SEC310: Principles and Theory of Security Management at DeVry University. It addresses two key areas of cybersecurity: Cyber Incident Response and Personnel Security Policy. The assignment requires students to analyze NIST Cybersecurity Framework standards, research real-world implementations, and compare them to the NIST templates.
Why This Document Matters
This assignment is intended for students enrolled in SEC310. It’s used to demonstrate understanding of how cybersecurity frameworks are applied in practice and how organizations customize these standards to meet their specific needs. It’s valuable for anyone seeking to understand the practical application of NIST guidelines.
Common Limitations or Challenges
This document represents *one student’s* approach to the assignment. It is a completed example and should not be submitted as original work. It provides a specific implementation analysis but doesn’t cover all possible organizational approaches.
What This Document Provides
The completed assignment includes:
* Answers to questions regarding the NIST Cyber Incident Response Standard, including the NIST functions and subcategories it covers.
* An analysis of the University of California’s Cyber Incident Response policy as a real-world example.
* Answers to questions regarding the NIST Personnel Security Policy and its associated NIST functions and subcategories.
* An analysis of the State of North Carolina’s Personnel Security policy as a real-world example.
* A References section listing the sources used.
This preview does *not* include the full research, detailed comparisons, or the student’s complete reasoning behind their answers. It does not provide the NIST templates themselves.