Outcomes addressed in this activity:
Unit Outcomes:
Need answer to this question?
Order an original paper Now!
We’re giving you a 15% discount on your first Order.
Discount Code: SKILNEW15
Use the above discount code during checkout
- Categorize the various security issues an organization might face.
- Prioritize potential security issues.
- Differentiate between the various levels of harm that might occur based on specific threats.
- Differentiate between various types of data and associated risk.
Course Outcome:
IT497-1: Analyze a complex computing problem to apply principles of computing and other relevant disciplines to identify solutions.
IT497-2: Design, implement, and evaluate a computing-based solution to meet a given set of computing requirements in the context of the program’s discipline.
IT497-6: Apply security principles and practices to maintain operations in the presence of risks and threats.
Purpose
For this Assignment, you will practice short answer analysis.
Assignment Instructions
Provide a short answer (substantial paragraph) for thirteen of the following topics:
4 from group 1 —- 4 from group 2 —- and 5 from Group 3
Indicate the question before the answer and organize answers by group.
Answers must have the following characteristics:
- Clear
- Concise
- Complete
Your objective will be to communicate the essence of each answer so that it is readily understood by the executive level of your organization (not security experts).
Group 1
Discuss the weakest link in the information security chain and provide an explanation to support your selection.
Describe the different types of users and indicate how they are treated in different and similar manners.
Discuss how to govern different types of users with policies.
Discuss acceptable use policies (AUPs).
Discuss the significance of a privileged-level access agreement (PAA).
Describe what security awareness policies (SAPs) are.
Describe what the best practices for user domain policies are.
Discuss the difference between least access privileges and best fit access privileges.
Describe some case studies and examples of user domain policies.
Group 2
Describe the following:
What the basic anatomy of an infrastructure policy is.
What the common Workstation Domain policies are.
What the common LAN Domain policies are.
What the common LAN-to-WAN Domain policies are.
What the common WAN Domain policies are.
What the common Remote Access Domain policies are.
What the common System/Application Domain policies are.
What the common telecommunications policies are related to the IT infrastructure.
What some IT infrastructure security policy best practices are.
What some case studies and examples of IT infrastructure security policies are.
Group 3
Discuss the following:
What the common data classification policies are.
What the common data handling policies are.
What the common business risks related to information systems are.
What a risk and control self-assessment (RCSA) is and why it is important.
What the common risk assessment policies are.
What the methods of quality assurance (QA) and quality control (QC) are.
What the common best practices for risk management policies are.
What some case studies and examples of risk management policies are.
Assignment Requirements
Provide a short answer (substantial paragraph) for thirteen of the topics.
4 from group 1 —- 4 from group 2 —- and 5 from Group 3
Indicate the question before the answer and organize answers by group.
Answers must have the following characteristics:
- Clear
- Concise
- Complete