CIS 552 Information security (only use reference)

Term Paper: Redesigning Security Operations
Imagine you have recently been hired as the Information security
director at a start-up health care research firm, where confidential
client data is housed in its Data Center. Currently, the company has 100
employees and expects to expand its workforce to 300 in the next three
(3) months and the company is moving to a new location in an urban
office building across four (4) floors. The security operations and
defensive mechanisms have been run in the past by the Networking
Department and due to the move, you have a chance to start anew with the
company’s security operations to improve its overall security posture.
Write a ten (10) page paper in which you:

  1. Identify what you perceive to be the five (5) most concerning
    threats to the network, computing environment, and the database
    operations of the company. 
  2. Examine each threat you identified in number 1, in which you:
    1. Explain why this is your perception.
    2. Identify what is at risk from these threats.
    3. Determine how you would design the security controls to mitigate the risks involved.
  3. Determine
    the security defense mechanisms that you would utilize in order to
    secure communications from floor to floor in the office space, including
    equipment and physical controls. 
  4. Create an office space
    diagram detailing the security defense tools, equipment and controls
    utilized, using a diagramming application such as Visio or Dia. Note:
    The graphically depicted solution is not included in the required page
    length.
  5. Explain in detail the defensive mechanisms that you
    would implement to secure the corporate wireless network, including
    encryption, authentication methods, and at least two (2) WLAN security
    tools you would utilize on a regular basis. 
  6. Create a wireless
    network diagram, using a diagramming application such as Visio or Dia
    based on your explanation in number 5. Note: The graphically depicted
    solution is not included in the required page length.
  7. Determine
    whether or not you would utilize encryption technologies on the network
    and / or computing equipment. Justify your response. 
  8. Consider
    the use of a cloud-based solution for storing the company’s data.
    Determine the benefits and / or risks that would result using this kind
    of data storage, and decide whether or not you would utilize this
    storage option. Justify your decision.
  9. Select a minimum of five
    (5) security tools that you would implement on the network as security
    auditing and / or defense countermeasures. 
  10. Analyze each
    security tool you selected in number 8, and determine why / how you
    would use them as part of your security operations.
  11. Provide an
    overview of the recovery and continuity plans you would develop to
    ensure the company could survive a temporary or prolonged disruption.
    Explain why each plan is needed based on the benefits it provides to the
    company.
  12. Use at least five (5) quality resources in this
    assignment. Note: Wikipedia and similar Websites do not qualify as
    quality resources.
Powered by