Reference no: EM131147530
Assignment 1: Identifying Potential Malicious Attacks, Threats and Vulnerabilities
You have just been hired as an Information Security Engineer for a videogame development company. The organization network structure is identified in the below network diagram and specifically contains:
|
1) 2 - Firewalls
|
5) 2 - Windows Server 2012 Active Directory Domain Controllers (DC)
|
|
2) 1 - Web / FTP server
|
6) 3 - File servers
|
|
3) 1 - Microsoft Exchange Email server
|
7) 1 - Wireless access point (WAP)
|
|
4) 1 - Network Intrusion Detection System (NIDS)
|
8) 100 - Desktop / Laptop computers
|
|
|
9) VoIP telephone system
|
The CIO has seen reports of malicious activity being on the rise and has become extremely concerned with the protection of the intellectual property and highly sensitive data maintained by your organization. As one of your first tasks with the organization, the CIO requested you identify and draft a report identifying potential malicious attacks, threats, and vulnerabilities specific to your organization. Further, the CIO would like you to briefly explain each item and the potential impact it could have on the organization.
Write a four to five (4-5) page paper in which you:
Analyze three (3) specific potential malicious attacks and / or threats that could be carried out against the network and organization.
Explain in detail the potential impact of the three (3) selected malicious attacks.
Propose the security controls that you would consider implementing in order to protect against the selected potential malicious attacks.
Analyze three (3) potential concerns for data loss and data theft that may exist in the documented network.
Explicate the potential impact of the three (3) selected concerns for data loss and data theft.
Propose the security controls that you would consider implementing in order to protect against the selected concerns for data loss and data theft.
Use at least three (3) quality resources in this assignment (no more than 2-3 years old) from material outside the textbook. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
Explain the concepts of information systems security as applied to an IT infrastructure.
Describe the principles of risk management, common response techniques, and issues related to recovery of IT systems.
Describe how malicious attacks, threats, and vulnerabilities impact an IT infrastructure.
Explain the means attackers use to compromise systems and networks, and defenses used by organizations.
Use technology and information resources to research issues in information systems security.
Write clearly and concisely about network security topics using proper writing mechanics and technical style conventions.
|
Why was cady stantons attendance at the worlds convention
: Why was Cady Stanton's attendance at the World's Antislavery Convention in 1840 important to her development as a women's rights advocate?
|
|
Important method of health care delivery
: In a recent department head meeting, chief executive officer (CEO) Beranger discussed managed care and why Silver Creek Hospital is engaged in what she feels is an important method of health care delivery.
|
|
Should sex offender registration laws be changed
: Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required page length.
|
|
Why does calhoun oppose the incorporation of mexico into us
: Why does Calhoun oppose the incorporation of Mexico into the United States? What differences does Calhoun see between previous US expansion and the proposed incorporation of Mexico?
|
|
Explain the concepts of information systems security
: Explain in detail the potential impact of the three (3) selected malicious attacks. Propose the security controls that you would consider implementing in order to protect against the selected potential malicious attacks.
|
|
Identify the type of culture
: With reference to one appropriate organisational culture typography model, identify the type of culture that was in evidence at Sharpe Designs prior to the proposed relocation of the Accounts and Finance Department and the basis on which you think..
|
|
Use metrics to drive performance
: In the unit readings, you explored Cohen and Roussel's "Discipline 5: Use Metrics to Drive Performance." For this discussion, explore your organization's relationship to the core discipline, and respond to the following question: Would a greater emph..
|
|
Role for government in regulating this merger
: Find an example of a merger that has been in the news within the past 6 months. What is the economic justification for the merger? Are there any antitrust concerns with the merger? Is there a role for government in regulating this merger?
|
|
Write an eight pages essay on a film called the missing
: Write an eight pages essay on a Film called the missing. For this assignment you will be required to view one popular "Hollywood Style" feature film that you will select from the list provided for you.
|