Enterprise Architecture

  • 1.  Need Help

    This message was posted by a user wishing to remain anonymous
    Posted 14 days ago
    This message was posted by a user wishing to remain anonymous

    I need expertise in the cloud inherent risk assessment.

    You are required to perform inherent risk assessment that should be aligned with my operational risk management policy (which I'll provide) that is comprised of 17 risk events.

    - Business Interruption Risks
    - Data Risks
    - Financial Reporting
    - Fraud Risks
    - Internal/External Fraud Risks
    - Information Security (Including Cyber) Risks
    - Legal Risks
    - People Risks
    - Physical Security and Safety Risks
    - Privacy Risks
    - Regulatory Compliance Risks
    - Technology Risks
    - Third Party Risks

    Now add as many sub risks as you can think of.. for example Data Risks could be data encryption, data flow, data ownership, data classification etc etc.

    I am cloud customer, so even if risk is on the CSP side, it is my responsibility to ensure how CSP is managing the risks - risk assessment should be conducted with this mindset.

    In addition to above please include Governance and contract management risks from Cloud customers perspective and bucket them into the above mentioned categories.

    *****The goal is to identify and assess as many cloud risks as possible, regardless whether those risks are technical or business risks across all deployment models (public cloud, private cloud, hybrid cloud) and service types (iaas, paas, saas).*****

    NOTE: You have to assess traditional IT risks as well that may have an impact on the cloud.

    IMPORTANT INFORMATION:
    -I will provide operational risk methodology that you will use as a guidance to assess the risks.

    ********AUDIENCE OF THIS RISK ASSESSMENT IS BOTH BUSINESS PEOPLE AND TECHNOLOGY PEOPLE SO PLEASE USE LANGUAGE WISELY WHEN YOU DESCRIBE THE RISKS IN DETAIL IN THE RISK DESCRIPTION*******

    I am paying USD 500 for this service.


  • 2.  RE: Need Help

    Posted 14 days ago
    You are paying $500.
    That means you want this done in like 2 hours.
    I think you need to realign things.





  • 3.  RE: Need Help

    Posted 12 days ago
    ROFL

    ------------------------------
    Paul Simmonds
    CSA UK Chapter
    ------------------------------



  • 4.  RE: Need Help

    Posted 11 days ago

    Did you say $500? or $5000?
    Seems like someone wants to outsource their work task, and while they charge few thousands, one tenth to be given to the helper.

    Mind you, the scope is not firm, so you could effectively end up doing thousands of dollars of unpaid work.
    Also, no contact has be provided so how will someone even get in contact? The first red flag is when someone wants to hide their identity.

    Again, risk assessments are generally done specific to the organisation, so having a generic list is not the way to go.
    All the best finding someone.



    ------------------------------
    Varun Pant
    Enterprise Manager
    NSW Health
    ------------------------------