User Account

All Pages

Is web server running iis to present main application

Assignment Help Computer Network Security
Reference no: EM131309958

Threat Management and Disaster Recovery Final Paper This is a two part assignment that will be submitted as one final paper

Part 1

I would like you to complete a limited Risk Assessment for a fictional enterprise. This analysis, of course, will require you to make lots of assumptions and guesses which need to be noted and documented in your paper. To limit the scope of the paper, I want to limit your analysis to threats to the data and servers located in a centralized server room and threats to connectivity to any wide area network (WAN) clients. You will not analyze any threats to individual workstations and desktops. What follows is a description of the server room and connectivity of those servers.

This "made-up" Enterprise is a medical practice with an Electronic Medical Record (EMR) that we will call "Medco" containing patient data.
This EMR is needed on a 24 hour basis as this is a cardiology specialty and is used in clinic rooms AND importantly, it is used by emergency physicians in the local trauma center for treatment of patients suffering from life threatening heart issues. This requires a WAN connection to be made available 24 hours a day.

The Environment

Servers

• Server 1 is Microsoft Exchange Server

• Server 2 is Domain Controller

• Server 3 is a Citrix Server (delivering applications as Thin Clients to desktops and some of the WAN clients)

• Server 4 is Web Server running IIS to present main application as web pages

• Server 5 is a Server Running Microsoft SQL Server with patient data The Servers are connected to the LAN using routers and switches.

The Servers are connected to the Internet using a single Firewall via a single connection to a single Internet Service Provider (ISP).

The Servers do connect to a WAN using this Internet connection using a VPN and the nodes on this WAN (clinics around the state) each have a single connection to an ISP in their local area.

Physically all the Servers are in a single unlocked room that has no fire suppression equipment other than the typical building sprinkler system and there are two sprinkler systems in the server room.

The servers are connected to a trunk electrical line that is not part of the medical centers emergency power system and there is no line conditioning.

For temperature control, the server room relies on the existing building HVAC system with heat exchangers located on the roof of the building. There is one air conditioning vent and one room thermostat serving the server room.

The Assignment

Using the NIST Special Publication 800-30, complete a Risk Assessment to identify potential threats for which a matching vulnerability exists in the above described environment. You can pretend that you are the Security officer in charge of this Assessment and also for your control recommendation you can make decisions from your Risk Matrix as if you were upper management.

This part of the paper should be at least 3 pages and should be no more than 5 pages not including items such as interview forms or spreadsheets.

Part II

Unfortunately, before your recommendations from your Risk Assessment (Part I) were implemented a power supply on one of the servers failed and created a fire that destroyed the server with the database and all the patient data was lost. After the disaster, the practice returned to paper patient records and management gave you the charge to rebuild the system with more safeguards and importantly a more complete plan for data backup and data restore. For the second part of this paper I would like to choose a backup strategy (tape, disk array backup, cloud backup, mirrored servers and distributed database, etc) to make recovery from any future disaster within a short time possible. I want you to fully describe your solution to backup and recovery and detail some of the particulars of why you chose that solution. This will entail giving the pros and cons of the alternatives you considered and reasons for your choice of this particular solution.

This part of the paper should be also at least 3 pages and no more than 5 pages not including any tables or figures.

You should do your own work and any reference materials explicitly cited in the paper and put in quotes if directly transcribed. The paper will be submitted online through the Turnitin assignment and will be checked for plagiarism.

Reference no: EM131309958

Questions Cloud

What distinguishes computer from typical household appliance : Describe exactly what steps you would take to back up your work after you have typed in the HelloPrinter.java program.
Distinguish between gain contingency and a loss contingency : Distinguish between a gain contingency and a loss contingency, and highlight the accounting treatment for each type of contingency.
Create a linked list structure music that contains the data : Create a linked list structure Music that contains the data fields Name, Artist, Number_of _Songs, and a pointer to the list. Create the structure with 3 members and fill in data for each member.
What is the relationship between property rights : What is the relationship between property rights, corruption, and economic progress? How important are anti corruption efforts in the effort to improve a country's level of economic development?
Is web server running iis to present main application : is Web Server running IIS to present main application as web pages? Is a Server Running Microsoft SQL Server with patient data The Servers are connected to the LAN using routers and switches?
Is it a growth company or a growth stock : A biotechnology firm is growing at a compount rate of more than 21 percent a year. The stock of this company is priced about 65 times next year earnings. is it a growth company or a growth stock?
How does the war on drugs affect families of today : 496 African American Social Justice and Civil Rights Assignment:Discuss some of the individuals portrayed in American Violet and examine the different ways in which each individual was impacted as a consequence of the raid and subsequent results of..
Discuss the role of a central bank in a country : Discuss the role of a central bank in a country, particularly in implementing monetary policy. Comment on any regulatory requirements imposed on the central bank in performing their responsibilities
Discuss five trends in the external environment : Discuss five trends in the external environment scanning process that will affect most businesses.

Reviews

Write a Review

Computer Network Security Questions & Answers

  Plan a high-level backup and disaster recovery plan

Plan a high-level backup and disaster recovery plan for a business. Discuss the security of the network and suggest best practices for securing the business network.

  Is internet pose threats to traditional client server system

Hures is a leading human resource service provider. To keep up with growing business demands,it implemented its first information system in 1987 purchasing a main frame computer that servedso-called dumb terminals on the users' desktops.

  Security of information in business organisations

Definitions and descriptions of the terms, 'integrity', 'availability' 'confidentiality', 'authenticity' and 'non-repudiation' in relation to the security protection of information assets in the chosen topic environment, i.e. what is it about thes..

  Describing use of kerberos for mutual authentication

Answer the following in relation to a scenario where Bob and Alice use Kerberos for mutual authentication. When Bob receives a ticket from Alice, how does he know it is genuine?

  Identify three commercially available technology solutions

Identify three commercially available technology solutions (products or services) which could be used to address cybersecurity problems specific to DR / BCP.

  How is your firewall implementation

Imagine you have installed and configured firewalls in all of the right places within your organization's network. Like any other organization, you try to stay current by deploying the latest and greatest in firewall technology.

  Attributes of company organizational culture

Some attributes of a corporation's organizational culture are so obvious that even an independent observer can feel them. Provide an example of such an observation and describe what cultural phenomenon it defines.

  How system derive secret key for des from user-s password

Known risks of the UNIX password system, it has been recommended that the system be replaced by an alternative system that uses public key cryptography, RSA for example. How might the system derive the secret key for DES from the user's login pas..

  Analyze issue using social contract and rule utilitarianism

Analyze issue using Social Contract, Kantianism, Act Utilitarianism, Social Contract Theory, Virtual Ethics and Rule Utilitarianism.

  A network-based attack and client-based attack

Imagine working for an organization in which you were assigned to protect mission critical cloud-based Web applications that several of your third-party customers need to have access to on a regular basis.

  Search the web for news on computer security breaches

Search the web for news on computer security breaches that occurred during April-August 2015. Research one such reported incident. Prepare a report focusing on what the problem was, how and why it occurred and what are the possible solutions.

  Design a test methodology for the sungrafix network

Designing Test Methodology for the SunGrafix Network? Reports on incident response and escalation procedures, with information on updating the security policy for employees, management, and network administration.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd