Part 1: Using the 15 Risks that you identified in your Risk Assessment at Mid-Term, Write a policy statement for each as it would appear in a security policy. Identify, using the NIST 800-53, Rev. 4, which policy it would be located within (each family of security controls has its own policy). 10 points
Park 2: Take one of the risks and provide a one-page Word document to include the following (10 points):
1. Identify the risk (include the description).
2. Identify any preventive measures you would put into place to reduce the likelihood or impact of this risk, if actualized.
3. Include the steps for your Incident Response Team of how to respond if the risk occurs, that would be included in the Incident Response Plan.