Sp003- risk management and business information systems
*use the link above for part 2 of assignment*
Part 1- Risk Management Analysis & Evaluation: Select an organization of your choice with which you are familiar, or for which you can find sufficient information about its business information systems. Identify one or more information systems for analysis. The information system(s) should be enterprise-scale and cross-functional, or linked to external suppliers, customers, or partners. For the selected business information system(s), prepare a 3- to 5-page risk management analysis and evaluation that addresses the following. In each section, make sure to support your positions with reasoning, evidence, citations, and references.
- Identify and describe global and domestic security, legal, and ethical risks related to the selected business information system(s), and their potential impacts. Include financial impacts as well as other types of impacts.
- Compare and contrast approaches to mitigating or managing the security, legal, and ethical risks you identified. Include at least twoapproaches to managing each risk.
Part 2- Disaster Recovery & Business Continuity Planning: Read the “Engro Chemicals Pakistan Limited Case Study.” Considering the same organization and business information system(s) you selected above, prepare a 5- to 7-page disaster recovery and business continuity plan that addresses the following. In each section, make sure to support your positions with reasoning, evidence, citations, and references.
- Identify and evaluate at least two options for disaster recovery. Compare and contrast the strengths and weaknesses of each option (2–3 pages).
- Using the preferred option(s) from your evaluation, develop a comprehensive plan for disaster recovery and business continuity for the business information system(s) you selected above (3–4 pages).