Assignment part 2 | CYB206 | National University


Project Part 2: Gap Analysis Plan and Risk Assessment Methodology


After the productive team meeting, Fullsoft’s chief technology officer (CTO) wants further analysis performed and a high-level plan created to mitigate future risks, threats, and vulnerabilities. As part of this request, you and your team members will create a plan for performing a gap analysis, and then research and select an appropriate risk assessment methodology to be used for future reviews of the Fullsoft IT environment.An IT gap analysis may be a formal investigation or an informal survey of an organization’s overall IT security. The first step of a gap analysis is to compose clear objectives and goals concerning an organization’s IT security. For each objective or goal, the person performing the analysis must gather information about the environment, determine the present status, and identify what must be changed to achieve goals. The analysis most often reveals gaps in security between “where you are” and “where you want to be.”Two popular risk assessment methodologies are NIST SP 800-30 revision 1, Guide for Conducting Risk Assessments, and Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE). Your focus will be on the OCTAVE Allegro version, which is a more concise version of OCTAVE. When reviewing the methodologies, consider the following:

  • Which features or factors of each methodology are most important and relevant to Fullsoft?
  • Which methodology is easier to follow?
  • Which methodology appears to require fewer resources, such as time and staff, but still provides for a thorough assessment?


  • Create a high-level plan to perform a gap analysis.
  • Review the following two risk assessment methodologies:
    • NIST SP 800-30 rev. 1, Guide for Conducting Risk Assessments (formerly titled ” Risk Management Guide for Information Technology Systems”)
    • Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE), Allegro version
  • Create a report that includes the gap analysis plan, a brief description of each risk assessment methodology, a recommendation for which methodology Fullsoft should follow, and justification for your choice.

Required Resources

  • Textbook for this course
  • Internet access
  • Additional websites for research

Submission Requirements

  • Format: Microsoft Word or compatible
  • Font: APA Format
  • Citation Style: APA Format
  • Submit in the Group Project Part 2Assignment
  • Name the document Group-project-part-2
  • Length: 5-6 pages plus citation page

You are encouraged to respond creatively, but you should cite credible sources to support your work.

Self-Assessment Checklist

  • I created a plan for performing a gap analysis of the IT environment.
  • I evaluated and selected a risk assessment methodology.
  • I summarized each methodology, recommended which methodology Fullsoft should follow, and provided justification for my choice.
  • I conducted adequate independent research for this part of the project.
  • I followed the submission guidelines.
Get 20% Discount on This Paper
Pages (550 words)
Approximate price: -

Try it now!

Get 20% Discount on This Paper

We'll send you the first draft for approval by at
Total price:

How it works?

Follow these simple steps to get your paper done

Place your order

Fill in the order form and provide all details of your assignment.

Proceed with the payment

Choose the payment system that suits you most.

Receive the final file

Once your paper is ready, we will email it to you.

Our Services

Platinum Essay has stood as the world’s leading custom essay writing services providers. Once you enter all the details in the order form under the place order button, the rest is up to us.


Essay Writing Services

At Platinum Essay, we prioritize on all aspects that bring about a good grade such as impeccable grammar, proper structure, zero-plagiarism and conformance to guidelines. Our experienced team of writers will help you completed your essays and other assignments.


Admission and Business Papers

Be assured that you’ll definitely get accepted to the Master’s level program at any university once you enter all the details in the order form. We won’t leave you here; we will also help you secure a good position in your aspired workplace by creating an outstanding resume or portfolio once you place an order.


Editing and Proofreading

Our skilled editing and writing team will help you restructure you paper, paraphrase, correct grammar and replace plagiarized sections on your paper just on time. The service is geared toward eliminating any mistakes and rather enhancing better quality.


Technical papers

We have writers in almost all fields including the most technical fields. You don’t have to worry about the complexity of your paper. Simply enter as much details as possible in the place order section.