The security consulting firm that you work for has been awarded a contract to implement a new IT Security Infrastructure to secure the Information Technology data assets of a local government agency. This agency has many remote workers that are in the field and need to connect back to the agency’s system servers. The remote workers use a wireless network infrastructure to connect their electronic pads to servers located within the local government’s facility. The remote workers have needs to access property records, cite zoning violations electronically, and validate building permits. The public demand to expand IT services has grown faster than its ability to provide an adequately secured infrastructure. In fact, this government entity was previously featured on the news for having minimal security controls and methods for accessing property tax information of citizens. The inadequate security allowed many construction trade businesses to illegally access property records and zoning violations. Your role in this project is to enhance and optimize the security mechanisms for accessing these systems.
Write a four to five (4-5) page paper in which you:
1. Create an information flow diagram, using Visio or Dia, which:
a. Illustrates how remote users will securely connect to the government agency’s network.
b. Illustrates the patch of network devices that data packets must travel to get from server to remote user’s device and back to
server.
Note: The graphically depicted solution is not included in the required page length.
2. Provide an equipment list of network security devices that would be needed to ensure the integrity and sensitivity of private
information. In this list:
a. Propose at least two (2) vendor brands per each device and the associate costs required to procure these items.
b. Identify the functionality each device serves and the expected benefits the government agency should experience upon the
successful installation of this equipment.
3. Develop a maintenance plan that should be recommended to the government agency to ensure having the latest security measures
available within the network in which you:
a. Describe the risks associated with not fulfilling the activities outlined within your maintenance plan.
b. Indicate specific activities, personnel / resources required, and frequency of execution.
4. Recommend at least four (4) physical security measures that could be developed to ensure the electronic perimeter of electronic
assets.
5. Recommend at least two (2) physical security vendors that could achieve the four (4) security measures you identified. Justify your
recommendations with your response.
6. Evaluate and consider activities that the Human Resources Department could perform in order to complement and instill security
from within the organization. Provide a rationale with your response.
7. Use at least three (3) quality resources in th.
Separation of Lanthanides/ Lanthanides and Actinides
The security consulting firm that you work for has been awarded a co.docx
1. The security consulting firm that you work for has been
awarded a contract to implement a new IT Security
Infrastructure to secure the Information Technology data assets
of a local government agency. This agency has many remote
workers that are in the field and need to connect back to the
agency’s system servers. The remote workers use a wireless
network infrastructure to connect their electronic pads to
servers located within the local government’s facility. The
remote workers have needs to access property records, cite
zoning violations electronically, and validate building permits.
The public demand to expand IT services has grown faster than
its ability to provide an adequately secured infrastructure. In
fact, this government entity was previously featured on the
news for having minimal security controls and methods for
accessing property tax information of citizens. The inadequate
security allowed many construction trade businesses to illegally
access property records and zoning violations. Your role in this
project is to enhance and optimize the security mechanisms for
accessing these systems.
Write a four to five (4-5) page paper in which you:
1. Create an information flow diagram, using Visio or Dia,
which:
a. Illustrates how remote users will securely connect to the
government agency’s network.
b. Illustrates the patch of network devices that data packets
must travel to get from server to remote user’s device and back
to
server.
Note: The graphically depicted solution is not included in
the required page length.
2. Provide an equipment list of network security devices that
would be needed to ensure the integrity and sensitivity of
private
information. In this list:
a. Propose at least two (2) vendor brands per each device and
2. the associate costs required to procure these items.
b. Identify the functionality each device serves and the
expected benefits the government agency should experience
upon the
successful installation of this equipment.
3. Develop a maintenance plan that should be recommended to
the government agency to ensure having the latest security
measures
available within the network in which you:
a. Describe the risks associated with not fulfilling the
activities outlined within your maintenance plan.
b. Indicate specific activities, personnel / resources required,
and frequency of execution.
4. Recommend at least four (4) physical security measures that
could be developed to ensure the electronic perimeter of
electronic
assets.
5. Recommend at least two (2) physical security vendors that
could achieve the four (4) security measures you identified.
Justify your
recommendations with your response.
6. Evaluate and consider activities that the Human Resources
Department could perform in order to complement and instill
security
from within the organization. Provide a rationale with your
response.
7. Use at least three (3) quality resources in this assignment.
Note: Wikipedia and similar Websites do not qualify as quality
resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size
12), with one-inch margins on all sides; citations and references
must follow APA or school-specific format. Check with your
professor for any additional instructions.
Include a cover page containing the title of the assignment, the
student’s name, the professor’s name, the course title, and the
3. date. The cover page and the reference page are not included in
the required assignment page length.
Include charts or diagrams created in Visio or one of its
equivalents such as Dia. The completed diagrams / charts must
be imported into the Word document before the paper is
submitted.
The specific course learning outcomes associated with this
assignment are:
Describe and apply the 14 areas of common practice in the
Department of Homeland Security (DHS) Essential Body of
Knowledge.
Describe best practices in cybersecurity.
Describe system, application, network, and telecommunications
security policies and response.
Evaluate the ethical concerns inherent in cybersecurity and how
these concerns affect organizational policies.
Use technology and information resources to research issues in
cybersecurity.
Write clearly and concisely about topics associated with
cybersecurity using proper writing mechanics and technical
style conventions.
Points: 100
Case Study 2:
Developing the Forensics, Continuity, Incident Management,
and Security Training Capacities for the Enterprise
Criteria
Unacceptable
Below 60% F
Meets Minimum Expectations
60-69% D
Fair
4. 70-79% C
Proficient
80-89% B
Exemplary
90-100% A
1a. Determine how defined roles of technology, people, and
processes are necessary to ensure resource allocation for
business continuity.
Weight: 10%
Did not submit or incompletely determined how defined roles of
technology, people, and processes are necessary to ensure
resource allocation for business continuity.
Insufficiently determined how defined roles of technology,
people, and processes are necessary to ensure resource
allocation for business continuity.
Partially determined how defined roles of technology, people,
and processes are necessary to ensure resource allocation for
business continuity.
Satisfactorily determined how defined roles of technology,
people, and processes are necessary to ensure resource
allocation for business continuity.
Thoroughly determined how defined roles of technology,
people, and processes are necessary to ensure resource
allocation for business continuity.
1b. Explain how computer security policies and data retention
policies help maintain user expectations of levels of business
continuity that could be achieved.
Weight: 5%
Did not submit or incompletely explained how computer
security policies and data retention policies help maintain user
expectations of levels of business continuity that could be
achieved.
Insufficiently explained how computer security policies and
data retention policies help maintain user expectations of levels
5. of business continuity that could be achieved.
Partially explained how computer security policies and data
retention policies help maintain user expectations of levels of
business continuity that could be achieved.
Satisfactorily explained how computer security policies and
data retention policies help maintain user expectations of levels
of business continuity that could be achieved.
Thoroughly explained how computer security policies and data
retention policies help maintain user expectations of levels of
business continuity that could be achieved.
1c. Determine how acceptable use policies, remote access
policies, and email policies could help minimize any anti-
forensics efforts. Give an example with your response.
Weight: 10%
Did not submit or incompletely determined how acceptable use
policies, remote access policies, and email policies could help
minimize any anti-forensics efforts; did not submit or
incompletely gave an example with your response.
Insufficiently determined how acceptable use policies, remote
access policies, and email policies could help minimize any
anti-forensics efforts; insufficiently gave an example with your
response.
Partially determined how acceptable use policies, remote access
policies, and email policies could help minimize any anti-
forensics efforts; partially gave an example with your response.
Satisfactorily determined how acceptable use policies, remote
access policies, and email policies could help minimize any
anti-forensics efforts; satisfactorily gave an example with your
response.
Thoroughly determined how acceptable use policies, remote
access policies, and email policies could help minimize any
anti-forensics efforts; thoroughly gave an example with your
response.
2. Suggest at least two (2) models that could be used to ensure
business continuity and ensure the integrity of corporate
forensic efforts. Describe how these could be implemented.
6. Weight: 10%
Did not submit or incompletely suggested at least two (2)
models that could be used to ensure business continuity and
ensure the integrity of corporate forensic efforts; did not submit
or incompletely described how these could be implemented.
Insufficiently suggested at least two (2) models that could be
used to ensure business continuity and ensure the integrity of
corporate forensic efforts; insufficiently described how these
could be implemented.
Partially suggested at least two (2) models that could be used to
ensure business continuity and ensure the integrity of corporate
forensic efforts; partially described how these could be
implemented.
Satisfactorily suggested at least two (2) models that could be
used to ensure business continuity and ensure the integrity of
corporate forensic efforts; satisfactorily described how these
could be implemented.
Thoroughly suggested at least two (2) models that could be used
to ensure business continuity and ensure the integrity of
corporate forensic efforts; thoroughly described how these
could be implemented.
3. Explain the essentials of defining a digital forensics process
and provide two (2) examples on how a forensic recovery and
analysis plan could assist in improving the Recovery Time
Objective (RTO) as described in the first article.
Weight: 10%
Did not submit or incompletely explained the essentials of
defining a digital forensics process; did not submit or
incompletely provided two (2) examples on how a forensic
recovery and analysis plan could assist in improving the
Recovery Time Objective (RTO) as described in the first article.
Insufficiently explained the essentials of defining a digital
forensics process; insufficiently provided two (2) examples on
how a forensic recovery and analysis plan could assist in
improving the Recovery Time Objective (RTO) as described in
the first article.
7. Partially explained the essentials of defining a digital forensics
process; partially provided two (2) examples on how a forensic
recovery and analysis plan could assist in improving the
Recovery Time Objective (RTO) as described in the first article.
Satisfactorily explained the essentials of defining a digital
forensics process; satisfactorily provided two (2) examples on
how a forensic recovery and analysis plan could assist in
improving the Recovery Time Objective (RTO) as described in
the first article.
Thoroughly explained the essentials of defining a digital
forensics process; thoroughly provided two (2) examples on
how a forensic recovery and analysis plan could assist in
improving the Recovery Time Objective (RTO) as described in
the first article.
4. Provide a step-by-step process that could be used to develop
and sustain an enterprise continuity process.
Weight: 10%
Did not submit or incompletely provided a step-by-step process
that could be used to develop and sustain an enterprise
continuity process.
Insufficiently provided a step-by-step process that could be
used to develop and sustain an enterprise continuity process.
Partially provided a step-by-step process that could be used to
develop and sustain an enterprise continuity process.
Satisfactorily provided a step-by-step process that could be used
to develop and sustain an enterprise continuity process.
Thoroughly provided a step-by-step process that could be used
to develop and sustain an enterprise continuity process.
5. Describe the role of incident response teams and how these
accommodate business continuity.
Weight: 5%
Did not submit or incompletely described the role of incident
response teams and how these accommodate business
continuity.
Insufficiently described the role of incident response teams and
how these accommodate business continuity.
8. Partially described the role of incident response teams and how
these accommodate business continuity.
Satisfactorily described the role of incident response teams and
how these accommodate business continuity.
Thoroughly described the role of incident response teams and
how these accommodate business continuity.
6a.
Suggest two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
Weight: 10%
Did not submit or incompletely suggested
two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
Insufficiently suggested
two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
Partially suggested
two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
Satisfactorily suggested
two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
Thoroughly suggested
two (2) awareness and training efforts
that could assist in preventing anti-forensic efforts.
6b. Determine how having a knowledgeable workforce could
provide a greater level of secure behavior. Provide a rationale
with your response.
Weight: 10%
Did not submit or incompletely determined how having a
knowledgeable workforce could provide a greater level of
secure behavior; did not submit or incompletely provided a
rationale with your response.
Insufficiently determined how having a knowledgeable
workforce could provide a greater level of secure behavior;
insufficiently provided a rationale with your response.
9. Partially determined how having a knowledgeable workforce
could provide a greater level of secure behavior; partially
provided a rationale with your response.
Satisfactorily determined how having a knowledgeable
workforce could provide a greater level of secure behavior;
satisfactorily provided a rationale with your response.
Thoroughly determined how having a knowledgeable workforce
could provide a greater level of secure behavior; thoroughly
provided a rationale with your response.
6c. Outline the steps that could be performed to ensure
continuous effectiveness.
Weight: 5%
Did not submit or incompletely outlined the steps that could be
performed to ensure continuous effectiveness.
Insufficiently outlined the steps that could be performed to
ensure continuous effectiveness.
Partially outlined the steps that could be performed to ensure
continuous effectiveness.
Satisfactorily outlined the steps that could be performed to
ensure continuous effectiveness.
Thoroughly outlined the steps that could be performed to ensure
continuous effectiveness.
7. 3 references
Weight: 5%
No references provided
Does not meet the required number of references; all references
poor quality choices.
Does not meet the required number of references; some
references poor quality choices.
Meets number of required references; all references high quality
choices.
Exceeds number of required references; all references high
quality choices.
8. Clarity, writing mechanics, and formatting requirements
Weight: 10%
More than 8 errors present