Reference no: EM133561548 , Length: word count:3500
Advanced Enterprise Security
Research Assessment
Purpose of this assignment:
The purpose of this assignment is to support the following topic Learning Outcomes (LO) for this topic:
LO1 Explain the purpose of a range of typical business information systems.
LO2 Describe the categories of threats facing businesses and organisations.
LO3 Identify significant national and international law, regulation, industry best practice and international standards that relate to the practice of cyber security and information security.
LO4 Compare information security management and governance frameworks for use in organisations.
LO5 Analyse security incidents and risks and identify controls and prevention techniques.
LO6 Develop a cyber security or information security program outline for a specific issue in enterprise information security.
LO7 Construct a contingency plan that includes incident response, disaster recovery and business continuity.[Not assessed in this assignment]
LO8 Critically analyse publications in enterprise information security.
Background:
In your role as Chief Information Security Officer (CISO) of a large healthcare provider organisation called CardiacRescuers, specialising in heart health, you are responsible for the organisation's overall cybersecurity, information protection and data privacy. You manage a security team and report to the CEO and Board of the organisation. The CardiacRescuers Board has asked you to prepare a research paper with a suggested protection plan and recommendations for advanced protection in one of the following areas: ransomware, critical infrastructure resilience, cybersecurity using artificial intelligence, or using a zero-trust approach.
This assignment is designed to allow you to explore the contemporary area of global information security management focusing on one of the following areas important to CardiacRescuers:
1. Protecting CardiacRescuers against ransomware.
2. Ensuring critical infrastructure resilience for CardiacRescuers?
3. How can CardiacRescuers employ cybersecurity using artificial intelligence?
4. A zero-trust approach to cybersecurity for CardiacRescuers.
It will enable you to come to grips with at least one of the issues in depth. It will also introduce the skills required to produce a short academic paper in the specified format. The research paper must include an outline of a practical cybersecurity or information security program for CardiacRescuers.
Task:
You will write a paper of between 2800 and 3300 words (including the abstract but excluding the reference list). You must research the topic and include references to show that you have explored and critically analysed the academic literature. You can include popular materials (news articles and web articles) for your examples; however these are not acceptable as your primary source of information. A paper listing unsubstantiated opinions will not be accepted - this is a research and program development task. A template and instructions for the format of the paper are provided in the assessment link.
You are encouraged to devise an outline for your paper and discuss this with your lecturer during the semester.
Remember that this is a paper about the security application from an enterprise perspective, not a report on information security. Whilst some aspects of information security may be present, it is not the main topic.
Format of the assignment
It should be written as an academic paper and must include the following:
1. A separate title page containing the topic code and name, student name, student identification, semester, year, and the title of the paper.
2. An abstract outlining the topic chosen, plus a summary of your research, and this must not exceed 300 words.
3. The main text of your paper. This should be 2800 to 3000 words.
4. References used in your text. (An academic paper does not have a Bibliography, as only the references cited in the text are listed at the end). A list of end-text references formatted according to the Flinders APA Referencing.