Reference no: EM131358105
Assignment: Designing FERPA Technical Safeguards
Magine you are an Information Security consultant for a small college registrar's office consisting of the registrar and two assistant registrars, two student workers, and one receptionist. The office is physically located near several other office spaces. The assistant registrars utilize mobile devices over a wireless network to access student records, with the electronic student records being stored on a server located in the building. Additionally, each registrar's office has a desktop computer that utilizes a wired network to access the server and electronic student records. The receptionist station has a desktop computer that is used to schedule appointments, but cannot access student records. In 1974, Congress enacted the Family Educational Rights and Privacy Act (FERPA) to help protect the integrity of student records. The college has hired you to ensure technical safeguards are appropriately designed to preserve the integrity of the student records maintained in the registrar's office.
Write a three to five page paper in which you:
1. Analyze proper physical access control safeguards and provide sound recommendations to be employed in the registrar's office.
2. Recommend the proper audit controls to be employed in the registrar's office.
3. Suggest three logical access control methods to restrict unauthorized entities from accessing sensitive information, and explain why you suggested each method.
4. Analyze the means in which data moves within the organization and identify techniques that may be used to provide transmission security safeguards.
5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
• Describe the role of information systems security (ISS) compliance and its relationship to U.S. compliance laws.
• Use technology and information resources to research issues in security strategy and policy formation.
• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.
|
Evaluate the level of system security
: Based on your research, assess how corporate leaders may make improper assumptions related to accounting information systems and the related information. Indicate the most negative potential impacts on business operations related to these assumpti..
|
|
Recommend for this ski resort to connect
: What WAN technology would you recommend for this ski resort to connect their two locations to exchange data? Be sure to defend your recommendation.
|
|
Business and technical acumen
: Note: Writing style should be late post-graduate and show both business and technical acumen. All statements must be justified and APAv6 should be followed
|
|
Creative tool such as powerpoint
: Explain how Social Engineering can be seen as a threat to the corporate entity by using a creative tool such as PowerPoint®
|
|
Analyze means in which data moves within the organization
: Analyze the means in which data moves within the organization and identify techniques that may be used to provide transmission security safeguards.
|
|
Compute the bending stiffness of a cantilever i beam
: Compute the bending stiffness of a cantilever I-beam (given Figure) of length L = 30 cm, subjected to a tip-shear force Vz = 445 N. The dimensions of the beam are: h = 2.5 cm, b = h/2, t = h/16.
|
|
Difference between grading and responding
: What's the difference between "grading" and "responding?" "What does Hesse identify as the "top considerations" when an instructor responds to writing?
|
|
Discuss the importance of security in the design of system
: CS661,CS653:Prior to developing an information security plan, it is important to understand and evaluate potential security risks before formulating prevention strategies. For this assignment, you will continue the planning process by adding the R..
|
|
Identify the problems that were experienced
: 1. Identify the problems that were experienced. 2. Discuss what preventative measures are now suggested to avoid similar issues in the future.
|