Reference no: EM132774639
Assessment
Purpose: The purpose of this assessment is to demonstrate student awareness of current industry and research trends in the field of information security. Analyse and evaluate the organizational adoption of security controls. Design solutions for concrete security problems for distributed applications This assessment contributes to learning outcomes c, d.
Assessment topic: Security Plan and Training Program
Task Details: The assignment requires you to design a security plan based on a given case study. The learning outcomes of this assignment are to recognize the threats that exists in your current or future work place. Through your research, identify the threats, outline security guidelines and develop a robust and pragmatic training programme. You are required to complete and submit a security plan based on the following scenario.
Case Study Scenario: No computer or workstation is immune to compromise. University information and network assets are of significant value and protecting them is the responsibility of everyone handling these assets. Every department is expected to develop a security plan.
The security team is responsible for administering the security of information from deliberate and accidental threats. The security management team is responsible to address security in some key areas such as social engineering attacks, password security and other possible threats to the organization. The IT Security Plan and process is the first step to eliminating the bulk of vulnerabilities which cause compromises:
Prepare a report to address the following:
1. Take an inventory of your physical and information assets (what are you protecting)
2. Perform a risk assessment to determine what level of security is needed to protect your information assets.
3. Evaluate your findings and discuss recommendations to correct deficiencies and/or improve security with departmental and IT staff
4. Develop a security plan and security policy
5. Develop a training program to create awareness of the policy among the users of the organization
Harvard Anglia referencing style.