User Account

All Pages

Explain the necessary components within a security policy

Assignment Help Computer Network Security
Reference no: EM131155797

Remote Access Security Policy

Organization: XYZ Health Care Provider:

XYZ Health Care is a provider of health services to senior citizens. It performs its mission with a virtual force of Registered Nurses and Nurse Practitioners. The nurses visit their elderly patients in their homes and monitor their health. At the end of the day, the nurses are required to connect back to corporate networks and upload all of the patient records for the day. Keep in mind that this organization is subjected to HIPAA rules and its required to make the data available to its patients and authorized patient representatives within 48 hours.

Some of the RISKS:

• Brute force user ID and password attacks
• Users or employees unaware of the risks, threats, and dangers of the Internet and shard WI-FI or broadband Internet Access
• Multiple Access attempts and logon retries
• Unauthorized access to IT Systems, applications, and data
• Privacy data or confidential data is compromised remotely
• Data leakage occurs in violation of data classification standard
• A remote worker's laptop is stolen
• A remote worker requires access to the patient medical records system through the Public Internet

Scope: Control Identification and Creation of a Remote Access Policy

Using or textbooks, internet and other resources, identify the necessary components / sections within a security policy and then craft the actual policy for XYZ Healthcare and address the risks within policy that are prevalent with Remote Access.

Your submission must include the following:

1) Control Matrix: A listing of the risk and 1 or more countermeasure to address the risk.

2) A Section that identifies the necessary components of the policy and why they are important: This does not refer to the controls but more specifically sections within the policy. (You may research the Internet or SANS for sample policies, the sections were also discussed in class).

3) The actual policy, when developing the policy please ensure that it can be used at XYZ Healthcare.

4) Based on the white paper provided? What are the four goals of effective metrics as defined in the paper. In your own words explain your understanding of the metric and where and how it can be beneficial.

Paper Requirements

1) APA Format (Where applicable)
2) Minimum of 3 - 5 references
3) Safe - Assignment comparison will be done

Reference no: EM131155797

Questions Cloud

Describe three examples in which databases could be used : Describe three (3) examples in which databases could be used to support decision making in a large organizational environment. Describe three (3) examples in which data warehouses and data mining could be used to support data processing and trend a..
Improve the reliability of supply chain : Jill has heard that in order to improve the reliability of her supply chain that she should add a capacity cushion. But, exactly what is a capacity cushion and why would a manufacturing company desire to have a large one? Discuss the advantages an..
What fraction of water vapor is removed from the air : Your dehumidifier removes water vapor from air by cooling the air to 12 °C. What fraction of water vapor is removed from the air?
Determine the number of kanban card : In setting up a kanban control system you need to determine the number of kanban card sets needed. If the expected demand during lead time is 25 per hour, the safety stock is 20 percent of the demand during lead time, the container size is 5, and ..
Explain the necessary components within a security policy : Using or textbooks, internet and other resources, identify the necessary components / sections within a security policy and then craft the actual policy for XYZ Healthcare and address the risks within policy that are prevalent with Remote Access.
Processes referring to realistic examples : Provide a discussion on how an operations manager can "Green" service processes referring to realistic examples.
Design a relational database so that it is at least in 3nf : Explain typical situations when denormalizing a table is acceptable. Provide one (1) example of denormalizing a database table to justify your response. Explain the significant manner in which business rules impact both database normalization and..
What is the relative humidity of the stream : The stream is to be cooled to 25 °C at constant pressure. To avoid condensation, the exhaust stream is mixed with dry air prior to cooling. How much air is needed? Report the result in moles of dry air per mole of gas.
Utilization of the washing machine : Yesterday, three employees were sick and only 2,100 pounds of clothes were washed. What was the utilization of the washing machine yesterday?

Reviews

Write a Review

Computer Network Security Questions & Answers

  Mini case: cisco systems

Mini Case: Cisco Systems

  Strategy for dealing with the risk

For each malicious attack and threat identified, choose a strategy for dealing with the risk (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance)

  Present the project to the board of directors

Suppose the VoIP project sponsor wants you to present the project to the board of directors. Particularly, the sponsor would like you to discuss the quality of the project. It is worth noting that during the deployment of the VoIP system the quali..

  Protect the system from these procedural attacks

Summarise the procedures and tools hackers use for information gathering, target systems scanning, back-door opening and log-file clean-up. Alternatively, give an account of a hacker story from a technical perspective, including the tools employed..

  How the user master record in sap plays an important role

Discuss how the user master record in SAP plays an important role in ensuring assignment of appropriate rights, activity groups / roles and authorisations for individual users.

  What is the definition of privacy as it relates to

1introduction to the management of information security?2.which trend in it has eliminated the we have technology

  Pros and cons to the project using predictive sdlc

Write brief description of the Pros and Cons to approaching the project using the 'Predictive' SDLC, then the Pros and Cons to approaching the project using the 'Adaptive' SDLC.

  Describe the organizational authentication technology

Identify and describe the organizational authentication technology and network security issues and make a list of access points internal and external (remote).

  Discuss the type of encryption

Identify the key reasons for selecting your wireless home router. Discuss the type of encryption it uses and explain the reason(s) why you believe this method of encryption is more superior than its contemporaries.

  Compare the different threats and vulnerabilities

Compare Different Threats and Vulnerabilities. Collaborative discussion, submit, individually, the different kinds of data breaches, the threats and vulnerabilities that lead to the breaches, and the severity of each.

  Principles of computer security and what mechanisms

What are the three ‘principles' of computer security and what ‘mechanisms' can be used in achieving these principles? Explain the role of a digital signature in information security.

  Fms attack and chopchop attack

[Wireless LAN Security-WEP] What is the main difference between the FMS attack and Chopchop attack? Clearly explain your answer

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd