Journal of Information Systems Education

Teaching Case: Combining Standards to Conduct Risk Assessment at SecureEnd Solutions

Muhammad Al-Abdullah, University of TampaFollow
Alper Yayla, University of TampaFollow
Mohammed Salem Al-Atoum, University of JordanFollow

Abstract

In today’s cybersecurity landscape, organizations need frameworks that provide a holistic approach to risk assessment as part of the risk management process. This case introduces SecureEnd Solutions, a rapidly growing cybersecurity company, and its core team, including Alan Touring, Ada Lovecode, Bob Jobs, and Suzan, the head of development. The company must conduct a detailed risk assessment to obtain ISO/IEC 27001 certification using a combination of ISO/IEC 27005:2022 and NIST SP 800-30 guidelines. Students will engage with the characters and the company’s technological ecosystem to apply risk assessment standards, enhancing their decision-making, analytical, and problem-solving skills in a real-world scenario.

DOI

https://doi.org/10.62273/SWQX4831

Recommended Citation

Al-Abdullah, Muhammad; Yayla, Alper; and Al-Atoum, Mohammed Salem (2024) "Teaching Case: Combining Standards to Conduct Risk Assessment at SecureEnd Solutions," Journal of Information Systems Education: Vol. 35 : Iss. 4 , 461-466.
DOI: https://doi.org/10.62273/SWQX4831
Available at: https://aisel.aisnet.org/jise/vol35/iss4/6

Download

COinS

When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.

Journal of Information Systems Education

Teaching Case: Combining Standards to Conduct Risk Assessment at SecureEnd Solutions

Authors

Abstract

DOI

Recommended Citation

Share

Search