ppts
Introduction
The protection of IT infrastructure is important steps towards cyber security, (Dewey, 2018, p. 40).
The Solomon Enterprises is in the quest to develop a security plan to mitigate cyber-related attacks.
This presentation is about the current security plan and the future control to protect information.
1
Residency Class : 7/19 -7/21
Administrative Controls
The employees working in regional offices shall be trained on the newest techniques used by the attackers to execute malicious attacks.
Additionally, the employees shall enter an agreement to protect the sensitive and critical information of the Solomon Enterprises.
2
Residency Class : 7/19 -7/21
Physical Controls
Physical control measures to maintain good physical security are:
Perimeter security
Badges
Biometrics
Intrusion Detection and CCTV
Access Control systems
Residency Class : 7/19 -7/21
3
Technical Controls
Technical control to provide security and avoid technical disasters.
Event logging
Elastic Search, LogStash, Kibana (ELK) stack for event logging (Berman, 2018).
Access Level Control
Secured authorization by implementing different access level controls.
Firewall
Why Proxy Firewall (Application level Gateway) suits my organization (Dosal, 2018)?
4
Residency Class : 7/19 -7/21
Security Policies
A security policy is a written document in an Organization plotting how to shield the companies from dangers, including computer security threats, and how to deal with circumstances when they do happen.
Approaches and strategies:
Acceptable Use Policy (AUP)
Data Destruction Policy
Data Authorization Policy
Incident Response (IR) Policy
Remote Access Policy
Business Continuity Plan (BCP)
5
Residency Class : 7/19 -7/21
Regulations
The following are the cyber related laws that affect the operations and governing of Solomon Enterprises.
The Cyber security Information Sharing Act (CISA) .
The Cyber security Enhancement Act of 2014.
6
Residency Class : 7/19 -7/21
The Industry Standards
The security standards provide guidance on how the Solomon Enterprises should operates.
The following are the major industry standards that influence operations the Solomon Enterprise.
The Standard on the disclosure of consumers’ information.
The standard on the use of consumers’ information.
7
Residency Class : 7/19 -7/21
Network Security
Network security has turned out to be progressively critical to organizations. With the appearance of the web, security turned into a noteworthy concern and the historical backdrop of security permits a superior of security innovation.
SNORT, an open source, free product and ground-breaking system interruption recognition and avoidance device. Snort is a most generally utilized open source Network Intrusion Detection and Prevention System (NIDPS).
8
Residency Class : 7/19 -7/21
Conclusion
Organization’s need to control the administrative, technical, and physical control to ensure the organization is working smoothly.
The main objective of physical security is to protect the assets of the organization and the facilities of the organization.
9
Residency Class : 7/19 -7/21
References
Ahn, J. (2018). Issues Presented by Cybersecurity Information Sharing Act 2015. Yonsei Law Review, 28(4), 259-282. doi:10.21717/ylr.28.4.8
Aldawood, H., & Skinner, G. (2019). Reviewing Cyber Security Social Engineering Training and Awareness Programs—Pitfalls and Ongoing Issues. Future Internet, 11(3), 73. doi:10.3390/fi11030073
Berman, D. (2018). Using the ELK Stack for SIEM. Retrieved from: https://logz.io/blog/elk-siem/
Dewey, M. (2018). Leveraging Industry Standards for User Programmable FPGA Instrumentation. 2018 IEEE AUTOTESTCON. doi:10.1109/autest.2018.8532540
Dosal, E. (2018). The Different Types of Firewall Architectures. Retrieved from: https://www.compuquip.com/blog/the-different-types-of-firewall-architectures
Gaigné, C., & Larue, B. (2016). Quality Standards, Industry Structure, and Welfare in a Global Economy. American Journal of Agricultural Economics, 98(5), 1432-1449. doi:10.1093/ajae/aaw039
Libicki, M. (2015). Sharing Information About Threats Is Not a Cybersecurity Panacea. doi:10.7249/ct425
Harris.S. (2013). Physical and Environmental Security. In CISSP Exam Guide.6th ed., pp. 427-502.
Infosec. (2018). The Importance of Physical Security in the Workplace. Retrieved from: https://resources.infosecinstitute.com/importance-physical-security-workplace/
Oriyano.S. (2014). Physical Security. In Cehv8: Certified Ethical Hacker Version 8 Study Guide, pp. 393-409.
Wailgum.T. (2005). Metrics for Corporate and Physical Security Programs | CSO Online. Retrieved from http://www.csoonline.com/article/2118531/metricsbudgets/metrics-for-corporate-and-physical-security-programs.html
10
Residency Class : 7/19 -7/21
Thank you
7/28/19
Residency Class
11