Risks to Management

Overview
As an information security manager, you will likely be required to secure support and funding from management to mitigate risks. For this assignment, you will persuade management to fund one of your control assessments from the previous module.
To persuade management, you will need to limit the “geek speak” and speak in terms that non-cybersecurity professionals can understand. You will also need to speak in terms that are relevant to management. These include, but are not limited to:
• Risks to cash flows (e.g., sales revenue)
• Risks to reputation with outsiders
• Risks of being sued
• Risks to operational processes that the managers find important
• Risks to the managers’ jobs
Write a one-page persuasive executive summary explaining the risks to management if they do not make changes related to the NIST SP 800-53A control you presented in the last module.
This learning activity addresses CSLO 3 and will take an estimated 8-10 hours to complete.
Instructions
Write a one-page persuasive executive summary explaining the risks to management if they do not make changes related to the NIST SP 800-53A control you presented in the last module.

Assignment Guidelines and Rubric
• Write a one-page persuasive executive summary explaining the risks to management if they do not make changes related to the NIST SP 800-53A control you presented in the last module.
• Any use of sources, including required readings, must be appropriately cited. Plagiarism of any type, including use of AI, will result in a zero for the assignment and further disciplinary action according to the Student Handbook.