User Account

All Pages

List at least three vulnerabilities described

Assignment Help Operation Management
Reference no: EM132182814

Dalton, Walton, & Carlton, Inc. is an architecture firm with approximately 250 employees in four cities in a regional area. The main office is in Kansas City, Mo, which houses 100 of the employees. The main office is located in a suburb neighborhood where physical security is not considered a concern. Their IT infrastructure is as follows: o They primarily use Microsoft servers and PCs with a number of Mac computers used to perform design work. They use Active Directory, have a Web Server for their Internet web site, four servers used as file shares (one in each office), four servers housing their architecture applications, a training server, five MS SQL database servers, and two Microsoft Exchange servers for email. o There are 20 Windows 2008 servers in the main office, twelve of which are virtualized on three physical servers. o System updates and patches are run from the main office. Most systems get Microsoft updates once a month, but some are missed. Also, most third party products (e.g., Adobe PDF & Flash) are not kept up to date. o Each satellite office has 3-4 servers for storing files and running local applications. o Each office has its own, decentralized wireless network connected to the production network. o Each employee has a desktop or laptop PC running Windows 7. HR personnel have laptops for conducting interviews. o They outsource their email spam filter and all HR applications to two separate third party companies. o The network sits behind a gateway router and firewall. Antivirus is in use, but is not automatically updated across the company. Employees often work remotely and only use their login and password to gain access to the corporate systems. o There is a Director of IT who has a full time staff of 5 employees, one of which does security duties part time. There are a few known issues with their IT infrastructure and organization: o Recently, a number of PCs and office equipment has been stolen out of the office. o It’s at the data owner’s discretion as to whether or not to secure their data files or folders. Many do not secure their files, while some lock them so only they have access. There have been rumors that customer data and intellectual property have been lost. o Two employees recently left your company and went to your biggest competitor, where they just landed a contract with your largest account. o Vendors are allowed access to the site and computers without authorization or supervision. o Onsite staff at each location provides IT support part time along with their other responsibilities. Password resets are done by giving out a generic password — Chiefs2011. You are an independent auditor brought in by Dalton, Walton, & Carlton’s management. They’ve tasked you with conducting an audit of their entire IT infrastructure, organization, and processed.

Review the case study and answer the following questions as if you were an IT Auditor on the case:

How would you gather and assess vulnerabilities in this case?

List at least three vulnerabilities described in the case.

Include the severity and likelihood of compromise for each vulnerability identified.

List known or assumed safeguards in place that reduce the vulnerability's impact or likelihood.

Include a list of any assumptions you are making.

Reference no: EM132182814

Questions Cloud

Discuss the functional areas of management : Using an example of a company of your choice, discuss the functional areas of management
Responsibility to help bangladesh raise working standards : What else could Peter do to remedy the situation? Does LWI have an ethical (or legal) responsibility to help Bangladesh raise working standards?
Monetary value of jobs in the health care industry : Briefly identify and discuss the various methods of determining the monetary value of jobs in the health care industry.
What is the average inventory amount that mungo can expect : The cost to place an order from the supplier is $30. What is the average inventory amount that Mungo can expect to hold at any one time?
List at least three vulnerabilities described : How would you gather and assess vulnerabilities in this case? List at least three vulnerabilities described in the case.
Difference between finite and infinite queuing population : Describe the difference between a finite and an infinite queuing population.
Whales hospital is in community that is changing : Whales Hospital is in a community that is changing. It had been an industrial city, but many of the industries have closed.
Probability of zero ferries in the ship yard : Negative exponential distribution, mean = 3.2 and STD= 0.6 First come first serve rule. Find the following: Probability of 0 ferries in the ship yard.
Take to improve your department performance : Imagine you run the HR department in that same manufacturing company. What is one step you could take to improve your department’s performance?

Reviews

Write a Review

Operation Management Questions & Answers

  Recommendation concerning the introduction of product

The management of Madeira Manufacturing Company is considering introduction of new product. What is your recommendation concerning the introduction of product.

  What is the minimum number of service bays fast lube needs

what is the minimum number of service bays fast lube needs to achive an anticipated production of 200 cars per 8 hour day.

  What is the standard deviation of demand

Our bottling plant uses approximately 1000 plastic bottles per day (normally distributed), while daily usage has a standard deviation of 70. Order lead time is 2 days (constant). What is the average demand during lead time for this item? What is the ..

  Setting room rates and making decorating decisions

The Director of Hospitality has significant influence in setting room rates and making decorating decisions.

  Significance to public human resource management

Define and identify the significance to public human resource management the terms/concepts/cases below :

  Difference in employee training and employee development

What is the difference between Employee Training and Employee Development?

  What would you change for round 5 to make it more successful

Total Quality Management is a way for the company to improve its sustainability, reduce production time, lower costs, and increase product demand.

  Taken to ensure all roommates have liability protection

What type of organization is best suited for this business activity? Why? What steps need to be taken to ensure all roommates have liability protection?

  Compute the amount of annual contributions

Stressed and penniless after months of day trading, Mr. Baruch decides to invest his savings into a conservative growth mutual fund.

  Discuss how the leadership is promoting change

discuss how the leadership is promoting change to the field of public administration. Justify your response with one or two examples.

  Integral part of leadership style

Describe why humor, should be or should not be, an integral part of a leadership style?

  Developing sales presentation

Developing a Sales Presentation. Your customers will be your instructor and fellow classmates. Develop a sales presentation catered to them. Your presentation should include a PowerPoint presentation, a brochure on your product and a business card (b..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd