User Account

All Pages

Complete a risk assessment to identify potential threats

Assignment Help Other Subject
Reference no: EM131037333

Threat Management and Disaster Recovery Final Paper

Part 1

I would like you to complete a limited Risk Assessment for a fictional enterprise. This analysis, of course, will require you to make lots of assumptions and guesses which need to be noted and documented in your paper. To limit the scope of the paper, I want to limit your analysis to threats to the data and servers located in a centralized server room and threats to connectivity to any wide area network (WAN) clients. You will not analyze any threats to individual workstations and desktops. What follows is a description of the server room and connectivity of those servers.

This "made-up" Enterprise is a medical practice with an Electronic Medical Record (EMR) that we will call "Medco" containing patient data.

This EMR is needed on a 24 hour basis as this is a cardiology specialty and is used in clinic rooms AND importantly, it is used by emergency physicians in the local trauma center for treatment of patients suffering from life threatening heart issues. This requires a WAN connection to be made available 24 hours a day.

The Environment

Servers
 -Server 1 is Microsoft Exchange Server
 -Server 2 is Domain Controller
 -Server 3 is a Citrix Server (delivering applications as Thin Clients to desktops and some of the WAN clients)
 -Server 4 is Web Server running IIS to present main application as web pages
 -Server 5 is a Server Running Microsoft SQL Server with patient data

The Servers are connected to the LAN using routers and switches.

The Servers are connected to the Internet using a single Firewall via a single connection to a single Internet Service Provider (ISP).

The Servers do connect to a WAN using this Internet connection using a VPN and the nodes on this WAN (clinics around the state) each have a single connection to an ISP in their local area.

Physically all the Servers are in a single unlocked room that has no fire suppression equipment other than the typical building sprinkler system and there are two sprinkler systems in the server room.

The servers are connected to a trunk electrical line that is not part of the medical centers emergency power system and there is no line conditioning.

For temperature control, the server room relies on the existing building HVAC system with heat exchangers located on the roof of the building. There is one air conditioning vent and one room thermostat serving the server room.

The Assignment

Using the NIST Special Publication 800-30, complete a Risk Assessment to identify potential threats for which a matching vulnerability exists in the above described environment. You can pretend that you are the Security officer in charge of this Assessment and also for your control recommendation you can make decisions from your Risk Matrix as if you were upper management.

This part of the paper should be at least 3 pages and should be no more than 5 pages not including items such as interview forms or spreadsheets.

Part II

Unfortunately, before your recommendations from your Risk Assessment (Part I) were implemented a power supply on one of the servers failed and created a fire that destroyed the server with the database and all the patient data was lost. After the disaster, the practice returned to paper patient records and management gave you the charge to rebuild the system with more safeguards and importantly a more complete plan for data backup and data restore. For the second part of this paper I would like to choose a backup strategy (tape, disk array backup, cloud backup, mirrored servers and distributed database, etc) to make recovery from any future disaster within a short time possible. I want you to fully describe your solution to backup and recovery and detail some of the particulars of why you chose that solution. This will entail giving the pros and cons of the alternatives you considered and reasons for your choice of this particular solution.

This part of the paper should be also at least 3 pages and no more than 5 pages not including any tables or figures.

Reference no: EM131037333

Questions Cloud

Organizational capabilities and management plan : Thoroughly describe at least 4 of the different elements below that are commonly found in grant proposals, and explain their importance:Statement of need- Description of existing system/program/technology and Organizational capabilities and manageme..
Comment on the amplifier linearity : For the circuit in Fig. 9.14, assuming α = 1 and IRC =5 V, use Eqs. (9.48) and (9.49) to find iC1 and iC2, and hence determine vod =vC2 -vC1 for input differential signals vid ≡ vB1 - vB2 of 2 mV, 5 mV, 10 mV, 15 mV, 20 mV, 25 mV, 30 mV, 35 mV,and..
Construct an entity-­relationship model for the database : Construct an entity-­relationship (ER) model for the database. Make sure you include in your model details of entities, relationships, attributes, keys and cardinality for relationships
How to utilize the graduated pendulum to measure the speed : Explain how to utilize the graduated pendulum to measure the speed of a vehicle traveling in a horizontal circular arc of known radius r.
Complete a risk assessment to identify potential threats : Threat Management and Disaster Recovery Final Paper. Using the NIST Special Publication 800-30, complete a Risk Assessment to identify potential threats for which a matching vulnerability exists in the above described environment
Compare with the case of static equilibrium in same position : compare with the case of static equilibrium in the same position.
Compare p with the minimum gripping force ps : Compare P with the minimum gripping force Ps required to hold the sphere in static equilibrium in the 30° position.
The current-mirror-loaded differential amplifier : 9.112 For the current-mirror-loaded differential amplifier inFig. P9.112, find: (a) differential input resistance, Rid (b) Ad (c) CMRR Assume β = 100, |VBE | = 0.7 V, |VA | = 60 V, Vt = 0.7 V, and kΩ (W/L) = 2 mA/V2.
Plot the tensions in wires 1 and 2 : plot the tensions in wires 1 and 2 and the magnitude N of the force normal to the slot as functions of time t for the interval ≤ t ≤ 5 s.

Reviews

Write a Review

Other Subject Questions & Answers

  Form of capital you would rely on for emotional support

Discuss which form of capital you would rely on for emotional support and help through difficult times if abused. Explain your rationale

  User defines convention issues

Does the user conform to the conventions of their chosen social media platform?

  Historical scenario surrounding tyco international

Research is required to do the work. Briefly summarize the historical scenario surrounding Tyco International. • How do you think the spending and the loans were able to go on for so long?

  Argentina does not have large holdings of u.s. treasuries

Why you think Argentina probably does not have large holdings of U.S. Treasuries

  Reveal information about the owner

Research a social networking site and identify personal pages that reveal information about the owner that could make them a target for burglary. Once you identify the information, document your findings in a report and provide the link to the social..

  Explain the actions of the colonists

Write a  letter to the editor of your local newspaper explaining your feelins about the actions of the colonists. Be sure to give examples.

  Explain nokias strategy to mitigate risks

Consider and explain Nokia’s strategy to mitigate risks and improve their relationships with China, when referring to the “Internet Exercise:

  Used to study cognitive psychology

Create a 10- to 15-slide Microsoft® PowerPoint® presentation lecture for your class in which you address the following: Describe the history of cognitive psychology. Explain how and why psychometric studies are used to study cognitive psychology.

  Human sexuality topic discussion

Also, state the ethical principle (nonmaleficence, beneficence, autonomy/liberty, justice/fairness, social utility) that is related to your article and explain its relation.

  Kind of an analysis about the movie network

What is the major weakness of television today? What can media literate consumers do about it? What is the major strength of television today?

  Explain how does dominant culture produce limits of its own

Anthropology- explain how Does dominant culture produce limits of its own forms of counter-culture.

  Describe the presence of the public or private sector

Describe one of the national planning approaches covered in the annual report. Explain how prevention, protection, mitigation, response, and recovery were integrated into the approach. Describe the presence of the public or private sector in the an..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd