Analysis
IT Security Risk Assessment for a FinTech Mobile App
Overview
What this challenge is about.
Using the provided architecture diagram and API documentation, perform a risk assessment covering: (1) Threat modeling using STRIDE, (2) Vulnerability identification across mobile app, API layer, and database, (3) Risk scoring using likelihood × impact matrix, (4) Security control recommendations mapped to ISO 27001 Annex A, (5) Regulatory compliance gap analysis for LFPDPPP and CNBV regulations. Deliver as a structured security report suitable for presentation to the CTO.
The Brief
What you'll do, and what you'll demonstrate.
Conduct a structured IT security risk assessment for the fintech startup using the ISO 27005 framework, identifying critical assets, threat vectors, vulnerabilities, and risk levels, and deliver a risk treatment plan that addresses the top 10 risks within a realistic budget.
Program Fit
Where this fits in your program.
Sharpens the same skills your degree expects you to demonstrate.
Aligned coursework coming soon.
Skills
Skills you'll demonstrate.
Each one shows up on your verified credential.
Careers
Roles this prepares you for.
Real titles. Real skill bridges. Pick the one closest to your trajectory.
Career mappings coming soon.