Evaluation

profilekumar_469
Group4.pptx
Home>Information Systems homework help>Evaluation

By

Group 4

Introduction-Karthik Myneni

Administrative Controls-Srinivas Nidamanuri

Physical Controls-Shajiraj Rajan

Technical Controls-Purushotham Teegala

Security Policies-Jithender Kallem

Legislations/Regulations /Industry standards-Naga Beerella

Network security Tools-Jhansi Bharathi Madavarapu

Conclusion-Karthik Myneni

Solomon Enterprises Security Policy

Residency Class : 7/19 -7/21

1

Introduction

The protection of IT infrastructure is important steps towards cyber security, (Dewey, 2018, p. 40).

The Solomon Enterprises is in the quest to develop a security plan to mitigate cyber-related attacks.

This presentation is about the current security plan and the future control to protect information.

2

Residency Class : 7/19 -7/21

Administrative Controls

The employees working in regional offices shall be trained on the newest techniques used by the attackers to execute malicious attacks.

Additionally, the employees shall enter an agreement to protect the sensitive and critical information of the Solomon Enterprises.

3

Residency Class : 7/19 -7/21

Physical Controls

Physical control measures to maintain good physical security are:

Perimeter security

Badges

Biometrics

Intrusion Detection and CCTV

Access Control systems

Residency Class : 7/19 -7/21

4

Technical Controls

Technical control to provide security and avoid technical disasters.

Event logging

Elastic Search, LogStash, Kibana (ELK) stack for event logging (Berman, 2018).

Access Level Control

Secured authorization by implementing different access level controls.

Firewall

Why Proxy Firewall (Application level Gateway) suits my organization (Dosal, 2018)?

5

Residency Class : 7/19 -7/21

Security Policies

A security policy is a written document in an Organization plotting how to shield the companies from dangers, including computer security threats, and how to deal with circumstances when they do happen.

Approaches and strategies:

Acceptable Use Policy (AUP)

Data Destruction Policy

Data Authorization Policy

Incident Response (IR) Policy

Remote Access Policy

Business Continuity Plan (BCP)

6

Residency Class : 7/19 -7/21

Regulations

The following are the cyber related laws that affect the operations and governing of Solomon Enterprises.

The Cyber security Information Sharing Act (CISA) .

The Cyber security Enhancement Act of 2014.

7

Residency Class : 7/19 -7/21

The Industry Standards

The security standards provide guidance on how the Solomon Enterprises should operates.

The following are the major industry standards that influence operations the Solomon Enterprise.

The Standard on the disclosure of consumers’ information.

The standard on the use of consumers’ information.

8

Residency Class : 7/19 -7/21

Network Security

Network security has turned out to be progressively critical to organizations. With the appearance of the web, security turned into a noteworthy concern and the historical backdrop of security permits a superior of security innovation.

SNORT, an open source, free product and ground-breaking system interruption recognition and avoidance device. Snort is a most generally utilized open source Network Intrusion Detection and Prevention System (NIDPS).

9

Residency Class : 7/19 -7/21

Conclusion

Organization’s need to control the administrative, technical, and physical control to ensure the organization is working smoothly.

The main objective of physical security is to protect the assets of the organization and the facilities of the organization.

10

Residency Class : 7/19 -7/21

References

Ahn, J. (2018). Issues Presented by Cybersecurity Information Sharing Act 2015. Yonsei Law Review, 28(4), 259-282. doi:10.21717/ylr.28.4.8

Aldawood, H., & Skinner, G. (2019). Reviewing Cyber Security Social Engineering Training and Awareness Programs—Pitfalls and Ongoing Issues. Future Internet, 11(3), 73. doi:10.3390/fi11030073

Berman, D. (2018). Using the ELK Stack for SIEM. Retrieved from: https://logz.io/blog/elk-siem/

Dewey, M. (2018). Leveraging Industry Standards for User Programmable FPGA Instrumentation. 2018 IEEE AUTOTESTCON. doi:10.1109/autest.2018.8532540

Dosal, E. (2018). The Different Types of Firewall Architectures. Retrieved from: https://www.compuquip.com/blog/the-different-types-of-firewall-architectures

Gaigné, C., & Larue, B. (2016). Quality Standards, Industry Structure, and Welfare in a Global Economy. American Journal of Agricultural Economics, 98(5), 1432-1449. doi:10.1093/ajae/aaw039

Libicki, M. (2015). Sharing Information About Threats Is Not a Cybersecurity Panacea. doi:10.7249/ct425

 Harris.S. (2013). Physical and Environmental Security. In CISSP Exam Guide.6th ed., pp. 427-502.

Infosec. (2018). The Importance of Physical Security in the Workplace. Retrieved from: https://resources.infosecinstitute.com/importance-physical-security-workplace/

Oriyano.S. (2014). Physical Security. In Cehv8: Certified Ethical Hacker Version 8 Study Guide, pp. 393-409.

Wailgum.T. (2005). Metrics for Corporate and Physical Security Programs | CSO Online. Retrieved from http://www.csoonline.com/article/2118531/metricsbudgets/metrics-for-corporate-and-physical-security-programs.html

11

Residency Class : 7/19 -7/21

Thank you

7/21/19

Residency Class

12