Write a network security plan
Lesson 12
Chapter 25 Security Management Systems
Chapter 36 Disaster Recovery
z
Lesson 12 Network Security Plan, Weeks 15-16
Documenting business processes is a necessary first step in preparing for recovery in the event of a breach or natural disaster.
Read: Chapter 25 Security Management Systems
Chapter 36 Disaster Recovery
Assignment: Final Project
z
Final Project
You are the Chief Information Security Officer (CISO) for a fictional or real company or government organization and you’ve been asked to write a network security plan. Consider the harm a network security breach could do to your business, such as lost revenue, loss of customer confidence or customer litigation. Some topics to consider for your plan are, email communications, identity management, password policies, encryption, remote access, risk management, attack vectors for your organization, and potential vulnerabilities in your organization.
Create an associated PowerPoint presentation and use PowerPoint to record narration of your charts. The presentation should be approximately 15 minutes in narration length.
The paper should include a cover page, citations in APA format, and a list of references. No abstract is required. The paper should be 8-10 pages in length, not including tables and figures.
z
Template
Purpose
A network security plan should be manageable, understandable, and enforceable. This plan should guide users in the appropriate use of email, electronic devices, the Internet and aspects pertinent to your organization. It should also be relatively painless to use this plan.
Scope
If you choose a real or fictional organization that is huge, you might want to limit the scope of your plan to just one portion of the organization. Perhaps there are regional or responsibility unique security aspects.
Please feel free to make changes to this template and, by all means, delete my writing.
z
Template Continued
Company Security Guidelines for Employees
While this is a final exam, I don’t want this to become an unmanageably large assignment. I don’t expect this to be a plan that could be put in place in an organization; I think it should be representative of what could be included in a Security Plan. Below you will find some suggestions for Security Plan content that you can expand on. Feel free to add your own content and recognize that I am not requiring you to include all of the areas below.
z