Reference no: EM131314055
Information Systems Security
Technical Project Paper: Information Systems Security
Suppose you are the IT professional in charge of security for a small pharmacy that has recently opened within a shopping mall. The daily operation of a pharmacy is a unique business that requires a combination of both physical and logical access controls geared toward protecting medication and funds located on the premises, as well as the customers' personally identifiable information and protected health information that resides on your system. Your supervisor has tasked you with identifying inherent risks associated with your pharmacy and establishing strong physical and logical access control methods to mitigate the identified risks.
|
1) Firewall (1)
|
4) Desktop computers (4)
|
|
2) Windows 2012 Active Directory Domain Controllers (DC) (1)
|
5) Dedicated T1 Connection (1)
|
|
3) File Server (1)
|
|
Write an eight to ten page paper in which you:
1. Identify at least five potential physical threats that require attention.
2. Determine the impact of at least five potential logical threats that require attention.
3. Detail the security controls (i.e., administrative, preventative, detective, and corrective) that the pharmacy could implement in order to protect it from the five selected physical threats.
4. Explain in detail the security controls (i.e., administrative, preventative, detective, and corrective) that could be implemented to protect from the five selected logical threats.
5. For each of the five selected physical threats, choose a strategy for addressing the risk (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance). Justify your chosen strategies.
6. For each of the five selected logical threats, choose a strategy for handling the risk (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance). Justify your chosen strategies.
7. Use at least five quality resources in this assignment (no more than 2-3 years old) from material outside the textbook. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
• Explain the concepts of information systems security as applied to an IT infrastructure.
• Describe how malicious attacks, threats, and vulnerabilities impact an IT infrastructure.
• Explain the means attackers use to compromise systems and networks, and defenses used by organizations.
• Explain the role of access controls in implementing a security policy.
• Explain how businesses apply cryptography in maintaining information security.
• Analyze the importance of network principles and architecture to security operations.
• Use technology and information resources to research issues in information systems security.
• Write clearly and concisely about network security topics using proper writing mechanics and technical style conventions.
|
Which payment option would you prefer
: You need a kidney replacement and thus you will be paying for it. The doctor offers you two options to pay: $40,000 in 4 years or $65,000 in 10 years. The current discount rate is 8%. Which payment option would you prefer.
|
|
What is the equivalent rate with semiannual compounding
: An interest rate is 12% when expressed with quarterly compounding. What is the equivalent rate with semiannual compounding? The two-year zero rate is 6% and the three-year zero rate is 6.5% (both continuously compounded). What is the forward rate for..
|
|
Determine selection processes for recruiting new employees
: Determine two (2) selection processes for recruiting new employees that could apply to your chosen scenario and then identify five (5) selection criteria that you could use when hiring new employees. Next, analyze the effect of the five (5) identi..
|
|
What is the four year forward price
: An investment asset provides an income of $1 at the end of the first year and at the end of the second year, its spot price is $20 and the risk-free rate for all maturities (with continuous compounding) is 10%. What is the four year forward price? Wh..
|
|
Determine the impact of five potential logical threats
: Identify at least five potential physical threats that require attention. Determine the impact of at least five potential logical threats that require attention.
|
|
Hedging strategy using eurodollar futures
: Suppose you want to buy a house for $500 thousand and sell it in 5 years. Suppose the bank offers you an adjustable rate mortgage with interest only payments for the first 5 years. The rate will adjust with 6-month LIBOR and interest payments will be..
|
|
What is the price of the cash-or-nothing call option
: Dianca is trying to use Monte Carlo simulations with 3,000 trials to price a package of two exotic options. The first option is the so-called cash-or-nothing call option that delivers a fixed cash amount R if the European counterpart is in the money ..
|
|
Design a compensation and benefits package
: Design a compensation and benefits package related to your dream job. Rationalize your compensation and benefits package. Be sure to indicate the research and considerations that went into the design of the compensation and benefits package
|
|
European put based on the blackscholes-merton model
: Jeff is so optimistic about his employer’s stock that on Feb. 19, he sold one hundred contracts of European put options on Google at the premium of $4.73 apiece (see the selected options in the table below). What is the implied volatility underlying ..
|