Evaluation
kumar_469
group3.pptxSecurity Controls for Solomon Enterprise Presented by Group 3
Introduction
World wide E-Commerce Organization.
500 Employees and $200 million revenue.
Branches at 5 different locations in USA.
Central Data center in West Virginia.
Regional offices in Florida, Texas, Arizona, Montana, and Missouri.
Disaster recovery center in Billings, Montana.
Security Posture
Dedicated Security Operations Team.
Internal Audit Team.
Vulnerability Management.
Background checks in hiring process.
Security training sessions.
Time to Time security presentations.
Securely established tools.
Automated tools.
Administrative Controls
Administrative controls define the human factors of security.
Training and awareness
Disaster recovery plans
Separation of duties
Proper hiring & terminations
Physical Protection
Physical protection is the protection of data, personnel, software, and hardware from physical events or actions that could result in damage or serious loss of an enterprise (Shu, Yao & Bertino, 2015).
Solomon Enterprises, the enterprise is mainly exposed to the risk of theft, vandalism, fire, and terrorism.
The security system will be based on three components; access control, surveillance and testing.
Technical Controls
Firewall : A Firewall is simply a program or hardware device that filters the inbound and outbound traffic coming via internet connection into your private network or computer system.
Types of Firewalls :
1) Hardware (Installed on a router)
2) Software (Host based or Server based)
Firewall Technologies: Packet filtering, Application firewall, Virtual Private Networks (VPN),
Access Control Lists.
Types of encryption:
1) RSA it is asymmetric used by SSH(Secure shell) (1024&2048 bits)
2)AES (Advanced Encryption Standard) is symmetric most widely used. (128256 bits)
IAM & Logging
Identity Access Management(IAM)
1.Identifcation 2.Authentication3.Authorization
Password Management: Passwords can be compromised.
Solutions:
1) Use Multifactor Authentication(MFA)
2) USE Single Sign On(SSO) solutions for internal usage
Log Events: logs can help us identify the suspicious attempts to gain access to users accounts.
1.Syslog Server
2.ELK/FLUENTD
Security policies
Media destruction policy - IT personals must sanitize data properly before disposal of electronic media or computer systems. This policy needs to be followed in the cloud platform and LAN.
Acceptable use policy - are certain rules defined by the administrator to restrict the users in term of service usage. AUP is a structured document, which also acts as agreement, also referred to as a policy of fair use.
Incident response (IR) policy – this policy addresses various security incidents through logical incident response. IR policy plays a vital role in dealing with cyber threats.
Legislation/Regulations or industry standards
Federal Information Security Management Act (FISMA) can be defined as one of the most important regulations for the federal data security standards and guidelines.
This act was established in the year 2002.
The main purpose of FISMA when introduced was to reduce the security risk to federal data and information.
National Institute of Standards and Technology (NIST) plays a very important role in FISMA implementation.
Important security standards and guidelines required by FISMA is created by NIST
NIST marked the industry standards which includes NIST 800 series.
Network Security Tool
We all know communication is the prime source of productivity, as business needs to communicate with customers; managers etc.
Network Security Tool:
Network discovery
Network IDS
Vulnerability scanning
Penetration testing
Conclusion
Comprehensive security requires suitable reliance on technical, physical and administrative controls, implementing defense in depth and developing an all-inclusive security policy.
To provide a complete security solution it is essential that there is a combination of technical, physical and administrative controls in place.
We are also required to demonstrate forward thinking, taking into consideration the threats of tomorrow.
