User Account

All Pages

Provide a security and privacy risk assessment for the DAS

Assignment Help Other Subject
Reference no: EM132365951

Assessment item - Privacy and Data Protection Assessment

Task

Scenario

The Department of Administrative Services (DAS) provides a number of services to other departments in an Australian State Government. These services include HR and personnel management, payroll, contract tendering management, contractor management, and procurement. These services have all been provided from the Department's own data centres.

As a result of a change in Government policy, DAS is moving to a "Shared Services" approach. This approach will mean that DAS will centralise a number of services for the whole of Government (WofG). The result of this move will be that each Department or Agency that runs one of these services for its own users, will be required to migrate its data to DAS so that it can be consolidated into one of the DAS centralised databases. DAS will then provide these consolidated services to all other Departments and Agencies within the Government.

Another Government policy mandates a "Cloud first" approach to the process of updating or acquiring software or services. Following these strategic policy changes from Government, DAS has decided to:

• Purchase a HR and personnel management application from a US based company that provides a SaaS solution.
o The application will provide DAS with a HR suite that will provide a complete HR suite which will also include performance management. The application provider has advised that the company's main database is located in a Cloud datacentre based in California in the United States, with a replica database located in a cloud datacentre in Dublin, Ireland. However, all data processing, configuration, maintenance, updates and feature releases are provided from the application provider's processing centre in Bangalore, India.
o Employee data will be uploaded from DAS daily at 12:00 AEST. This will be initially transferred to Bangalore in India for processing before being loaded into the main provider database in California.
o Employees will be able to access their HR and Performance Management information through a link placed on the DAS intranet. Each employee will use their internal agency digital ID to authenticate to the HR and Performance management system. The internal digital ID is generated by each agency's Active Directory instance and is used for internal authentication and authorisation.
• Move the DAS payroll to a COTS (Commercial Off The Shelf) application that it will manage in a public cloud;

Tasks
After your successful engagement to provide a security and privacy risk assessment for the DAS, you have again been engaged to consider some additional questions that DAS management has raised.

Prepare a presentation for DAS Management using the TRA you recently completed on the security and privacy of employee data. Your presentation is to show:

1. Discuss how the operational solution using anSaaS application, and the location(s) of the SaaS provider for HR management may affect the security posture of DAS.

2. Explain if either the operational solution, or the operational location(s), or both, increase or mitigate the threats and risks identified for the security and privacy of employee data?

3. Discuss the security and privacy implications for DAS of the data processing location?

4. Discuss any issues of data sensitivity that you think should be considered with either the chosen solution or the storage/processing locations?

5. Discuss any issues of data sovereignty that should be considered?
Your presentation is to be completed in PowerPoint slides.
• The presentation should be a maximum of 30 slides, including introduction, conclusions and recommendations.
• Each slide should have speaking notes in the Notes section which expand on the information in the slide.
• Images and quotations used in slides must be referenced on that slide.
• The slide deck does require a reference list. References are to be included on a Reference list slide(s), but these are not counted as part of the slide deck limit.

Your presentation should highlight the significant points of your argument, but you should include the detail in the speaking notes section of your slides.

Rationale
This assessment task will assess the following learning outcome/s:
• be able to examine the legal, business and privacy requirements for a cloud deployment model.
• be able to evaluate the risk management requirements for a cloud deployment model.
• be able to critically analyse the legal, ethical and business concerns for the security and privacy of data to be deployed to the cloud.

Presentation
Your presentation is to be completed in either PowerPoint or Google slides. Your presentation must not exceed 30 slides of content.
• The presentation should be a maximum of 30 slides, including introduction, conclusions and recommendations.
• Each slide should have speaking notes in the Notes section which expand on the information in the slide.
• Images and quotations used in slides must be referenced on that slide.
• The slide deck does require a reference list. References are to be included on a Reference list slide(s), but these are not counted as part of the slide deck limit.

Your presentation should highlight the significant points of your argument, but you should include the detail in the speaking notes section of your slides.

Verified Expert

Impact of SaaS provider for HR management on security posture of DAS is discussed in the task. The operational solution to mitigate threats and risks is explained in the solution. Security and privacy implications detected for security and privacy as well as data sensitivity considered with selected solution along with the issues involved with data sovereignty.

Reference no: EM132365951

Questions Cloud

Some countries have very limited information : The vast difference in page count is due to the fact that some countries are quite easy to study and some countries have very limited information.
Explain the advantages of 802.11 standards : Briefly explain the advantages and disadvantages of each. If you locate such a guide online, please make sure you give credit where credit is due.
Opportunity to help a worthy community project : Tell Carolyn Clark that employee volunteerism is important to the company and that while her performance evaluation will not be affected by her decision
List and discussed four categories as it relates to space : List and discussed the four categories as it relates to space? What is the Three-D approach as it relates to CPTED? You must write a minimum of two paragraphs.
Provide a security and privacy risk assessment for the DAS : ITC568 - Cloud Privacy and Security - Charles Sturt University - provide a security and privacy risk assessment for the DAS, you have again been engaged
Is it good to allow procedural arguments : Question: Is it good to allow procedural arguments?
Advantages of the current strategic plan at ez pleeze : How to explain 2 advantages of the current strategic plan at EZ Pleeze
Identify three sources of unintended software : Using an Internet search engine, identify three sources of unintended software that could be installed on a user's machine. In a 500- to 750-word essay.
Examining guidance in systems software engineering domain : After examining guidance in the systems software engineering domain from the Department of Homeland Security (DHS), develop your own practical SwA Core Body.

Reviews

len2365951

9/4/2019 11:38:44 PM

Q3. Implications for DAS of data processing location (20 marks) Comprehensive discussion of the security and privacy implications for DAS of the chosen data processing location that includes well considered and argued reasoning Q4. Issues of data sensitivity (20 marks) Comprehensive exploration of data sensitivity issues that includes well thought out reasoning Q5. Issues of data sovereignty (20 marks) Comprehensive exploration of data sovereignty issues that includes well thought out reasoning

len2365951

9/4/2019 11:38:38 PM

Questions HD Q1. Does the operational solution and locations affect DAS security (20 marks) Comprehensive exploration of the use of SaaS and given locations affect the existing security of data that includes well considered and argued reasoning Q2. Does the operational solution and locations increase or mitigate threats and risks to DAS security (20 marks) Comprehensive discussion of how this solution and its locations will increase or mitigate threats and risks to security of DAS that includes well considered and argued reasoning

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd