Reference no: EM131418809
Assignment
Suppose that you are currently employed as an Information Security Manager for a medium-sized software development and outsourcing services company. The Software Development Director has asked you to provide a detailed analytical report for her department regarding the most common Web application threats and the manner in which their products could compromise customer financial data.
She wants your recommendations on which threats and/or vulnerabilities the company should focus on and your recommendation for mitigation. The products in question use Microsoft SQL Server databases and IIS Web servers.
Write a paper with no less than four pages in which you:
1. Analyze the common threats/vulnerabilities to data systems such as Web applications and data servers. Speculate on the greatest area of vulnerability and potential for damage and / or data loss of such data systems.
2. Devise at least one attack scenario, as an example, where a hacker could use the area of vulnerability that you chose above in order to gain access to a network or sensitive data. Examine the primary ways in which the hacker could execute such an attack, and suggest the strategic manner in which a security professional could prevent the attack.
3. Explore the primary role that the human element could play in adding to the attack scenario, if appropriate. You may wish to decide if the human component is critical in protection from that type of attack.
4. Draw specific lessons and recommendations as part of the conclusion, and have a strong concluding paragraph. Be sure to revise your introduction to reflect what the paper accomplished once you finish your first draft.
5. Use no less than five quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
• Include a cover page containing the title of the assignment, your name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
• Describe security concerns, tools, and techniques associated with Web servers and Web applications.
• Identify the means of hacking Web browsers.
• Summarize the manner in which database servers and applications are compromised and examine the steps that can be taken to mitigate such risks (e.g., SQL injection).
• Use technology and information resources to research issues in ethical hacking.
• Write clearly and concisely about topics related to Perimeter Defense Techniques using proper writing mechanics and technical style conventions.
|
Difference between ethnocentric-polycentric and regiocentric
: How do the global marketing strategies of Harley-Davidson and Toyota differ? Describe the difference between ethnocentric, polycentric, regiocentric, and geocentric management orientations.
|
|
What is meant by sensitivity analysis
: What is a model? Identify some of the basic characteristics of a model. List some of the benefits associated with the usage of mathematical models in system analysis. What are some of the problems/concerns?
|
|
How do you view yourself as a person working in affairs
: How do you view yourself as a person working in student affairs? From the list below, choose the area in which you would like to work and relate the reasons for your choice. You may choose others that may not be listed. This is by no means a comp..
|
|
Advantageous to hire employees
: When is it to an organization's advantage to hire employees who need training, and when is it advantageous to hire employees who are already trained?
|
|
Explore the primary role that the human element could play
: Explore the primary role that the human element could play in adding to the attack scenario, if appropriate. You may wish to decide if the human component is critical in protection from that type of attack.
|
|
What are the basic goals of marketing
: What are the basic goals of marketing? Are these goals relevant to global marketing? What is meant by “global localization?” Is Coca-Cola a global product? Explain. A company’s global marketing strategy (GMS) is a crucial, competitive tool. Describe ..
|
|
Develop a comprehensive outline for a test
: Select a system of your choice and develop a comprehensive outline for a test and evaluation plan. Identify the categories of test, and describe the inputs and outputs for each category.
|
|
Examples of what a company
: Identify and describe what factors influence the degree to which an organization will engage in recruiting. What are some examples of what a company does to reach the relevant labor market for the jobs they are recruiting for?
|
|
Prepare a presentation for the parents
: Prepare a presentation for the parents, providing pertinent information they might like to include in a Sexual Assault Prevention program aimed at the children in their community. Suggest the psychoeducational and supportive approaches that can be..
|