Reference no: EM13797609
Description:
Elizabeth Chan is the CEO of a 1 year old electronics company. The company designs, develops and manufactures the Micro Midget Widget - this is Elizabeth's own invention and it is a small but important component in a wide range of complex video and other specialised hardware. Elizabeth is an engineer but she has no modern technical understanding of IT security issues. Elizabeth has had no problems with IT Security until very recently when the Company's network was subject to a series of attacks. In the period of 3 days, the company's website was defaced, a serious virus infected the company e-mail and large quantities of data were corrupted. Elizabeth's IT security risk management concerns are wide ranging. She needs to determine whether the same hackers are likely to hack the company again. She believes the recent attacks suggest the hackers were interested in either proprietary theft of sensitive information for personal and/ or financial gain or, to disrupt the affected company in such a way as competitors have an edge. There is also an evidence of a previous disgruntled employee planning for revenge against Elizabeth. Elizabeth has become very worried about cyberterrorism and is concerned that she may inadvertently allow her unprotected system to be the launch pad for a major denial of service attack on the Australian NII. She is also very concerned about becoming a victim of e-crime. She believes that her company ought to develop a Forensic Readiness plan so as to be prepared for possible action against the hackers who have been attacking her company. Since the company is relatively new she can build whatever security controls and purchase whatever new hardware you recommend.
Task:
1. Based on the above information, use your own imagination to come up with a company structure.
2. Identify the risks the company currently facing and how these risks can be managed. Your discussion can be categorized under the broad categories of people, process and technology. .
Describe the types of attack which might be made against company's database, possible reasons for attack, and some methods which may be used to secure the database.
3. Your client wants to add some E-Commerce functionality to her business and to use mobile wireless devices to help in this process. Give details of the basic IT security controls that she will need for the wired network and also provide two alternatives to deal with the security of his wireless network.
4. Draw a basic system architecture for the company including your security controls - it is a simple LAN, some databases, a mail server and a web server and a small wireless network.
5. Illustrate the legal and ethical issues will your client face if the data in her databases or files is lost or damaged?
6. Provide details of the broad categories of Federal and South Australian criminal legislation can be used to prosecute hackers and computer criminals in South Australia.
7. Advise how your client can ensure her organisation is forensically ready for possible action against intruders to company network.
8. Analyse the company's existing Information security policy. Evaluate the gaps and provide an overview of suitable security policy for your Client.
Increasing effectiveness of the program
: What would you change to increase effectiveness of the program and why?
|
Individual assignment values reflection
: Individual Assignment Values Reflection
|
Calculate how far will the car have traveled in this time
: An automobile traveling 95 km/ h overtakes a 1.10-km-long train traveling in the same direction on a track parallel to the road. If the train's speed is 75 km/h, how long does it take the car to pass it, and how far will the car have traveled in t..
|
Appropriate for a professional discussion
: What have been some of your positive or negative experiences working with people of different backgrounds? Explain. Please keep your responses appropriate for a professional discussion.
|
Analyse the company''s existing information security policy
: Analyse the company's existing Information security policy. Evaluate the gaps and provide an overview of suitable security policy for your Client.
|
Leadership objectives for the department
: You are a newly hired fire or police chief (you may choose which) and are expected to address the city manager with your leadership objectives for the department. Start by writing an introductory speech to identify your leadership style and how yo..
|
Is a change management process needed
: How does the plan address issues of validity and reliability, or credibility, transferability, dependability, and confirmability. Is a change management process needed
|
Private sector-first responders and volunteer experience
: Write 400-600 words that respond to the following questions with your thoughts, ideas, and comments. Be substantive and clear, and use examples to reinforce your ideas:
|
Current trends and expectations of the positions
: Human resource managers must constantly evaluate whether their hiring practices are consistent with current trends and expectations of the positions to be filled. Many agencies work from generalist practices, but the first-response community is un..
|