Can you help me understand this Article Writing question?

Security Incident – Target Breach

Milestone 2 – You will access the administrative, physical, and technical controls of the particular company then determine which one of these administrative, physical, and technical controls were not secure and led to the security incident.

Milestone 3- In milestone 3 you are building upon your first two milestones and describe the mitigation strategy, results, etc. on the organization. For example, if you chose Equifax in milestone 1 you introduced your topic, in milestone 2 you described the controls that surrounded the organization, and now in Milestone you will evaluate the results of the security incident. All of these milestones tie into each other as you evaluate the circumstances of the incident and the results.