Emerging GROUP & sELF REFLECTION
IT Infrastructure Revision of Solomon Enterprise:
Group 9
Shravani Kasturi
Amarender Reddy Chada
Srikanth Darapuneni
Goutham Reddy Godala
Deekshith Burra
Kranthi Kumar Nallapu
INTRODUCTION
Internet business models are unique enterprises with special needs of infrastructures.
Virtual business space provides a more significant cost-effective platform, but the environment needs distinct security features, both virtual and physical.
Solomon Enterprise is using an encrypted virtual private network to facilitate global internet communication from all stakeholders to the datacenter and regional office facilities.
Security Posture - It employed a disaster recovery plan to mitigate abrupt business delays with its disaster recovery site in Montana.
The entire business is virtually managed, and critical financial transactions are carried online through the private VPN.
Most of the business correspondence is virtual, and no to less conventional business premises are required compared to the retail business counterparts.
The company also provides information technology infrastructure to both business premises and flexible work sites, such as telecommuting.
ADMINISTRATIVE CONTROLS
Staff should adhere to professional health and safety measures at all times; any employee found guilty of alcoholic or abusive drugs will lead to disciplinary actions.
Internet and email policy to control and govern explicit content and expose the network to malicious threats.
Proper password protection, daily backup, Incident reporting channels should be educated.
Handling of sensitive equipment, storing and moving ledgers to be maintained
Restrict unnecessary idle time, entertainment of the third party in the facility
Delegating proxy to perform an assigned task without consulting superiors in case of absence or inability
Emergency contact in case of a crisis, reporting authority, rescue responsibilities should be documented and stored safely for quick access by the authority.
PHYSICAL CONTROLS
Physical control is the implementation of security measures in a defined structure used to deter or prevent unauthorized access to sensitive material.
Data is a vital resource to drive organizations in the information-rich business space (Garcia, 2007).
A poorly secured facility can be prone to an intruder entering and stealing sensitive information through the main entrance than a back door or network hole.
The facility should be thoroughly guarded with the advanced technology with surveillance cameras, Physical security guards at every entrance, including offloading or loading entrances.
Solomon Enterprise does not pose any physical control measures at the time of the case study, and a physical control policy should be implemented alongside the administrative control procedures.
This scenario influences enforcing two types of measures to physical controls.
- On-site security controls and
-Off-site security education for telecommuting employees are two vital segments.
Telecommuting devices are vulnerable for extreme exposure to adversary intrusion.
Educating telecommuters on company policy, data access, VPN usage, and engaging them positively to be part of the security protocol can enlighten employees to use devices for the purpose and to reduce unnecessary usage of company resource.
TECHNICAL CONTROLS
Access control systems: For security of operations and technology management, firewall security can be assured by access control systems(Ting, 2019).
User Identification: User identification with their company is a necessary security control which must be followed. CCTV cameras and physical control systems can be implemented for those without the user identification cards to keep the workplace premises restricted from intruders.
Upgrade and Backup with Cloud Computing: Cloud computing mechanism can be installed in the enterprise and information which is sensitive shall be migrated to the cloud spaces.
TECHNICAL CONTROLS
Data Analytics with IDPS: Data analysis is a continuous activity which needs to be performed to ensure that security is controlled at the workplace. It ensures protection from malicious traffic and malicious programs at the organization (Curzi, 2016).
Two factor and multi factor authentication : Multi factor authentication systems for privileged security and protection of information can be installed in the data management and information server rooms. It requires a physical key access, OTP generation and then fingerprint / face / retina scan to be true to allow the user to access the information stored behind the access system.
SECURITY POLICY
Data recovery and Business Continuity Plan is a policy to improve productivity and response in an unlikely event to continue business practices ethically.
Every user should obtain access password with two-step verification to authenticate access to computing devices
Centralized antivirus and Internet security are additional measures to make a virus-free network.
Biometric readers can be installed to authenticate users to access files and drives of the computer
Automatic logs are a vital source of tracing weak links in the network, making changes in location, or improving security practice in the campus and off-campus activities via the network.
To ensure sufficient mitigation scales to allow users at their responsibility to use VPN and other modes of distant communication to access business information
Especially server backups and sensitive personal information and financial transactions should have mandatory encrypted storage policy.
LEGISLATION/REGULATION OR INDUSTRY STANDARDS
LEGISLATION/REGULATION OR INDUSTRY STANDARDS
NETWORK SECURITY TOOLS
Network security tools to Solomon Enterprise needs meticulous observations:
Honey pots- The company should invest in creating virtual honeypots to detect and determine the type of attacks executed on the network
Wireshark- Applying this analyzer needs industrial compatibility and a piece of sound technical knowledge, as this tool is not an intrusion detection system (IDS) but a protocol analyzer
SNORT- security, intrusion detection systems are supplement tools to improve security in a network
Web Application Firewall- What tools are instrumental in monitoring, detecting, and alerting your company when an someone is trying to gain unauthorized access to your organizations network
CONCLUSION
Remarkable reputation and spiking annual turnover can expose potential vulnerability to the organization's data center and distributed client extensions.
Cybercrime is on the rise and reportedly increasing in the past few years. The western world is abnormally overloaded by the incoming internet traffic to compromise weak networks with inadequate security controls
Solomon Enterprises is an established, successful entity, but the information technology deployment is not strong enough to defend its existence. There are multiple weak links in the home network except for the firewalls and VPN facilities
The company is lacking new IT compatibility and unaware of the emerging cyber threats costing millions of dollars to many established companies. With the help of a manager or consultant, the identified flaws can be addressed more vividly and make Solomon Enterprises' future-ready cyber thrilling experience to its customers.
REFERENCES
Bossler, A. M., & Berenblum, T. (2019) Introduction: new directions in cybercrime research, Journal of Crime and Justice, 42(5), 495-499. doi: 10.1080/0735648X.2019.1692426
Clement, J. (2020, Clement, J). Global digital population as of April 2020. Retrieved June 05, 2020 from, https://www.statista.com/statistics/617136/digital-population-worldwide/
O’Dea, S. (2020, February 28). Number of smartphone users worldwide from 2016 to 2021. Retrieved June 05, 2020 from, https://www.statista.com/statistics/330695/number-of-smartphone-users-worldwide/
Walkowski, D. (2019, August 22). What are Security Controls? Retrieved June 05, 2020, from https://www.f5.com/labs/articles/education/what-are-security-controls
Cram, W.A., Proudfoot, J.G, & D’Arcy, J (2017) Organizational information security policies: a review and research framework, European Journal of Information Systems, 26(6), 605-641. doi: 10.1057/s41303-017-0059-9
ANY QUESTIONS??
THANK YOU