User Account

All Pages

Develop a comprehensive security and privacy program

Assignment Help Computer Network Security
Reference no: EM133955691

Assignment:

Everything needed to solve this question is here. Nothing outside what is posted is necessary.

Security Program Development

This exercise is designed to have you begin developing a security program. To accomplish this goal, you must think through the case scenario below. Remember that every organization is different, and the security program needs to be effective, applicable and achievable.

The Scenario:

ElectricVehicleMotors (EVM) creates and sells several specialized motor vehicles for personal and business use. EVM has invested significant funds into their Intellectual Property (IP) used within the battery management system called "ChargeIT" This system enables drivers to plan trips around charging stations and reliably calculates remaining power to make sure no one runs out of battery power before reaching one of their available charging stations.

Other features of the EVM fleet of vehicles include auto-pilot mode for highway driving and several on-board sensors to allow for lane departure alerts, emergency braking, and self-parking capabilities. Owners of EVM vehicles have the option of allowing the EVM corporation to continuously monitor on-board diagnostics, performance data, and location information for a small monthly charge.

Security features of this motor vehicle include biometric authentication via face, fingerprint, or voice recognition to unlock and operate the vehicle. EVM vehicles are considered the most exotic and technologically advanced vehicles on the road today.

While the general public considers this one of the most advanced motor vehicles in production to date, the majority of the population is concerned with the security of their private data, including location, travel habits, speed, and stored biometric data. Understanding the importance of security and privacy from the start, the EVM CEO and Board of Directors have invested considerable amounts of money to develop a comprehensive security and privacy program. Failure to protect their IP could result in competitors gaining market advantage as well as allowing malicious hackers the opportunity to find weaknesses within the system information control and processing units, which could result in serious accidents and driver harm.

Your role:

You are the Chief Information Security Officer (CISO) at EVM. It is your responsibility to protect the information and information systems, including IP, supporting design and development environments and the customer vehicle monitoring systems. Should any system be compromised, the CISO is responsible for incident response and disaster recovery utilizing high-availability systems.

After reviewing the scenario above, this assignment is designed to get you thinking about developing a security program that takes a holistic approach to security throughout the organization. Remember that it is important to demonstrate your thought process in explaining your responses to the questions below, and relate the answers to the scenario.

  1. List in the order of importance: risk assessments, policies, metrics, and security strategy.
  2. Discuss the relationship that risk assessments, policies, metrics, and the security strategy play in the development of the information security program.

[Hint: Compare and contrast the importance and dependencies on the 4 topic areas listed above.]

Reference no: EM133955691

Questions Cloud

Describe the cloud-based service : Which describes the cloud-based service they've selected, and assess their selection in terms of the business-critical attributes that are necessary.
Describe the role of device drivers in a linux system : Describe the role of device drivers in a Linux system and explain how to manage kernel modules.
Discuss differences between hotplug and coldplug devices : Discuss the differences between hotplug and coldplug devices and explain the mechanism used by Linux to enable the hotplug devices.
Introduce to personal privacy and security : Critique any benefits and harms that big data and artificial intelligence introduce to personal privacy and security.
Develop a comprehensive security and privacy program : The EVM CEO and Board of Directors have invested considerable amounts of money to develop a comprehensive security and privacy program.
Compare deployment of at least two clustering algorithms : Compare and contrast the deployment of at least TWO (2) clustering algorithms (in Orange).
Contrast the public-key encryption and decryption functions : A symmetric key cipher has a single key and the decrypting function is the inverse of the encrypting function.
Discuss the devsecops maturity models : During this module, you explored DevOps and DevSecOps. Discuss the DevSecOps Maturity Models and their impact on an organization's security posture.
Conducting an arp attack on your virtual machine is legal : Explain why conducting an ARP attack on your virtual machine is legal.

Reviews

Write a Review

Computer Network Security Questions & Answers

  An overview of wireless lan security - term paper

Computer Science or Information Technology deals with Wireless LAN Security. Wireless LAN Security is gaining importance in the recent times. This report talks about how vulnerable are wireless LAN networks without any security measures and also talk..

  Computer networks and security against hackers

This case study about a company named Magna International, a Canada based global supplier of automotive components, modules and systems. Along with the company analysis have been made in this assignment.

  New attack models

The Internet evolution is and is very fast and the Internet exposes the connected computers to attacks and the subsequent losses are in rise.

  Islamic Calligraphy

Islamic calligraphy or Arabic calligraphy is a primary form of art for Islamic visual expression and creativity.

  A comprehensive study about web-based email implementation

Conduct a comprehensive study about web-based email implementation in gmail. Optionally, you may use sniffer like wireshark or your choice to analyze the communication traffic.

  Retention policy and litigation hold notices

The purpose of this project is to provide you with an opportunity to create a document retention policy. You will also learn how to serve a litigation hold notice for an educational institute.

  Tools to enhance password protection

A report on Tools to enhance Password Protection.

  Analyse security procedures

Analyse security procedures

  Write a report on denial of service

Write a report on DENIAL OF SERVICE (DoS).

  Phising email

Phising email It is multipart, what are the two parts? The HTML part, is it inviting the recepient to click somewhere? What is the email proporting to do when the link is clicked?

  Express the shannon-hartley capacity theorem

Express the Shannon-Hartley capacity theorem in terms of where is the Energy/bit and is the psd of white noise.

  Modern symmetric encryption schemes

Pseudo-random generators, pseudo-random functions and pseudo-random permutations

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd