The paper will run from 4 to 6 pages long, double spaced with appropriate citations. The paper is to be written in either the APA or MLA format and will include a cover page and a works cited page. The cover page and the references page do not count toward the minimum page requirement.
Adoption of the Critical Security Controls is a hot topic in today’s organizations. Review the CSC’s covered in the course and provide at least one suggestion on three different controls for an organization to move from awareness of the CSC’s to implementation. Please feel free to make assumptions as needed for you to develop recommendations for a fictional CISO.
You are to act as a external consultant providing recommendations to this CISO (so your paper should be very professional and directed at the executive level). You should specifically ensure that you do not spend much time the control rather suggest how implementing that control can positively impact the security of that CISO’s company by reducing risk and increasing the security maturity of an organization. Also, you should bring in any other examples, cases, or lessons learned based on your research.