Enterprise Architecture

  • 1.  Need Help

    This message was posted by a user wishing to remain anonymous
    Posted Jan 07, 2022 01:13:00 PM
    This message was posted by a user wishing to remain anonymous

    I need expertise in the cloud inherent risk assessment.

    You are required to perform inherent risk assessment that should be aligned with my operational risk management policy (which I'll provide) that is comprised of 17 risk events.

    - Business Interruption Risks
    - Data Risks
    - Financial Reporting
    - Fraud Risks
    - Internal/External Fraud Risks
    - Information Security (Including Cyber) Risks
    - Legal Risks
    - People Risks
    - Physical Security and Safety Risks
    - Privacy Risks
    - Regulatory Compliance Risks
    - Technology Risks
    - Third Party Risks

    Now add as many sub risks as you can think of.. for example Data Risks could be data encryption, data flow, data ownership, data classification etc etc.

    I am cloud customer, so even if risk is on the CSP side, it is my responsibility to ensure how CSP is managing the risks - risk assessment should be conducted with this mindset.

    In addition to above please include Governance and contract management risks from Cloud customers perspective and bucket them into the above mentioned categories.

    *****The goal is to identify and assess as many cloud risks as possible, regardless whether those risks are technical or business risks across all deployment models (public cloud, private cloud, hybrid cloud) and service types (iaas, paas, saas).*****

    NOTE: You have to assess traditional IT risks as well that may have an impact on the cloud.

    IMPORTANT INFORMATION:
    -I will provide operational risk methodology that you will use as a guidance to assess the risks.

    ********AUDIENCE OF THIS RISK ASSESSMENT IS BOTH BUSINESS PEOPLE AND TECHNOLOGY PEOPLE SO PLEASE USE LANGUAGE WISELY WHEN YOU DESCRIBE THE RISKS IN DETAIL IN THE RISK DESCRIPTION*******

    I am paying USD 500 for this service.


  • 2.  RE: Need Help

    Posted Jan 07, 2022 01:16:00 PM
    You are paying $500.
    That means you want this done in like 2 hours.
    I think you need to realign things.





  • 3.  RE: Need Help

    Posted Jan 10, 2022 03:19:00 AM
    ROFL

    ------------------------------
    Paul Simmonds
    CSA UK Chapter
    ------------------------------



  • 4.  RE: Need Help

    Posted Jan 10, 2022 03:25:00 PM

    Did you say $500? or $5000?
    Seems like someone wants to outsource their work task, and while they charge few thousands, one tenth to be given to the helper.

    Mind you, the scope is not firm, so you could effectively end up doing thousands of dollars of unpaid work.
    Also, no contact has be provided so how will someone even get in contact? The first red flag is when someone wants to hide their identity.

    Again, risk assessments are generally done specific to the organisation, so having a generic list is not the way to go.
    All the best finding someone.



    ------------------------------
    Varun Pant
    Enterprise Manager
    NSW Health
    ------------------------------