operation security
priyanka.vee
ResidencyWeekendResearchProject1.pptxISOL631 – Operations Security
Residency Weekend Research Project
Fall 2019
Schedule
You must check-in and check-out at the times noted on the next slide in order to be counted present for this residency weekend. Failure to check-in or check-out at the appropriate time could result in you being counted absent for the entire weekend.
This schedule is also located in our iLearn course under the Residency Weekend folder.
During times on the schedule designated to work in groups, after checking in, you are welcome to work in your groups anywhere in the building. You are not confined to this classroom. However, you must remain in the building during those times.
Schedule
| Friday | |
| 4PM – 5PM | Check-in |
| 5PM-10PM | Class – instruction and group assignment |
| Saturday | |
| 8AM – 12PM | Class Instruction Work in groups on research project *Check in between 7:00-8:00 AM **Check out for lunch between 11:45 AM-12:00 PM |
| 12PM – 1:30PM | Lunch Check-in between 1:15 – 1:30PM |
| 1:30PM – 7:30PM | Work in groups *Check in between 1:15-1:30 PM PowerPoints submitted by Midnight EST. |
| Sunday | |
| 8AM – 1PM | Presentations *Check in between 7:45-8:00 AM – BE ON TIME! Research papers submitted by 1pm EST. |
Research
Proper Resources for Research
When asked to completed a research paper in the UC School for Computer and Information Sciences, you must use scholarly, peer-reviewed articles.
A peer-reviewed article is one that has “been evaluated by several researchers or subject specialist in the academic community prior to accepting it for publication” and is “also known as scholarly or refereed.”
Your professor or the UC Librarian team can help you determine whether or not an article is peer-reviewed.
Proper Resources for Research
Examples of sites with peer-reviewed resources
UC Library Site
EBSCOhost
JSTOR
Google Scholar
Examples of sites with unacceptable resources
PC Magazine
Cisco
Ars Technica
University Resources
The UC Library provides a myriad of online resources to assist students with proper research
Resources referring to Information Security can be found inside the UC Library site
There is a link to these resources in the Residency Weekend folder under Content in iLearn.
Proper Format is Important
All papers written for courses within the School for Computer and Information Sciences must follow the American Psychological Association (APA) writing style.
APA Title Page
Header (Upper Left Corner)
The words Running head:
One space then BRIEF TITLE
Example: Running head: BRIEF TITLE
Header (Upper Right Corner)
Page Number (number only) – page number should start after the title page
Title and Identification (Center of Page, Double Spaced)
Full Title
Author
School
Professor
Date (Month date, year format)
APA Abstract
An ABSTRACT is a brief summary of the entire study (paper) presented at the beginning, directly after the Title Page, (generally located on page 2).
An ABSTRACT contains specific information: introduction (purpose), methods, results, and discussion
In-Text Citations
Used whenever directly quoting or paraphrasing from another author’s work
For paraphrasing, use author, date format:
(Author last name, year)
Direct quote citation:
(Author, year, p. #)
Unknown publication data:
“n.d.” in its place
References
Center “References” at the top of the page
Formatting:
Format
Paragraph
Hanging
Authors are listed last name first, followed by first and middle initials
References are listed in alphabetical order by the author’s last name
References
One Author:
Crick Jr., R. T. (2014).
Two Authors:
Parker, T., & Benton, G. (2008).
Three to Seven Authors
Weller, H. G., Crafton, H. P., Potter, H. J., Rowling, J. K., & Kirk, J. T. (2005).
More than Seven Authors
Davis, M., Thompson, F., Judd, A., Royce, E., Bullock, S., Knight, S., … Gartner, J. (2006).
Same author: List by Year.
Same year: Alphabetize by source title and add a letter to the year (1999a).
References - Book
Author, A. A. (Publication Year). Title of work: Subtitle. Location: Publisher.
Separate multiple authors with commas
Up to 7 authors
More than 7, follow with ellipsis (…), skip to last author, list final author
Use an ampersand (&) instead of the word “and”
Examples:
Author, A. A., & Author, B. B. (Eds.). (Date of publication). Title of book. City: Publisher.
References - Journal
Model:
Author, A. A., & Author, B. B. (Date of publication). Title of article. Title of Periodical, volume number(issue number if available), page numbers.
Sample:
Koch Jr., R. T. (2006). Building connections through reflective writing. Academic Exchange Quarterly, 10(3), 208-213.
References – Online Journal
Online journals will require either a URL or (more favorable) a DOI.
DOI Sample:
Kenneth, I. A. (2000). A Buddhist response to the nature of human rights. Journal of Buddhist Ethics, 8. doi:0000000/000000000000
Rules of Copying and Paste
Here are some IMPORTANT rules and considerations to use when using web-research, books or forums in the course! 1. DO include the URL (web address), book or forum that you took the information from, in addition to the proper APA reference for the work. 2. DO include quotation marks or <<>> around quoted (i.e. copied and pasted) material. 3. DO introduce the quoted material with YOUR OWN WORDS about why you are providing that quotation.
Rules of Copying and Paste
4. DO limit the quoted material to a paragraph or less (a snippet) to entice the reader into following the URL (link) you then provide. 5. DO use an 80/20 (80% your own work) rule of thumb for posting that is, for every sentence of quoted material, you should give us at least 4 sentences from you. It is important to add a few sentences to orient us to why this quote is appropriately contained in your post.
Rules of Copying and Paste
Students who use more than 20-25% of quoted or paraphrased material in their paper will see their grade reduced proportionately for lack of originality
Group Assignment
Randomly Assigned
Research Paper
Minimum of 1,250 words / Maximum 1,800 words (Double spaced )
APA style
At least 7 works cited
At least 5 of your references have to be scholarly peer-reviewed articles
Research paper will be checked for plagiarism so be sure to correctly cite your sources!
80/20 rule for all submissions
Scenario
You work for a high-tech company with approximately 390 employees. Your firm recently won a large DoD contract, which will add 30% to the revenue of your organization. It is a high-priority, high-visibility project. You will be allowed to make your own budget, project timeline, and tollgate decisions.
You must develop the proper DoD security policies required to meet DoD standards for delivery of technology services to the U.S. Air Force Cyber Security Center (AFCSC), a DoD agency. To do this, you must develop DoD-approved policies and standards for your IT infrastructure (see the “Tasks” section below). The policies you create must pass DoD-based requirements. Currently, your organization does not have any DoD contracts and thus has no DoD-compliant security policies or controls in place.
Scenario
Firms computing environment includes the following:
12 servers running Microsoft Server 2012 R2, providing the following:
Active Directory (AD)
Domain Name System (DNS)
Dynamic Host Configuration Protocol (DHCP)
Enterprise Resource Planning (ERP) application (Oracle)
A Research and Development (R&D) Engineering network segment for testing, separate from the production environment
Microsoft Exchange Server for e-mail
Symantec e-mail filter
Websense for Internet use
Two Linux servers running Apache Server to host your Web site
390 PCs/laptops running Microsoft Windows 7 or Windows 8, Microsoft Office 2013, Microsoft Visio, Microsoft Project, and Adobe Reader
Tasks
You must:
Select a team leader for your project group.
Create policies that are DoD compliant for the organization’s IT infrastructure.
Note DOD-specific requirements for the organization’s IT infrastructure and U.S. compliance laws that may affect the firm
Include DoD-compliant policies, standards, and controls that affect the User, Workstation, LAN, and LAN-to-WAN Domains
Develop a list of compliance laws required for DoD contracts.
List controls placed on domains in the IT infrastructure.
List required standards for all devices, categorized by IT domain.
Include DoD-compliant policies, standards, and controls that affect the WAN, Remote Access, and System/Application Domains
Develop a deployment plan for implementation of these polices, standards, and controls.
List all applicable DoD frameworks in the final delivery document.
Write a professional report that includes all of the above content-related items.
Research Presentation
Goal is to summarize your research paper
PowerPoint Presentation is required and must be submitted inside of iLearn
Must present for at least 10 minutes but no more than 15 minutes
Your group will be randomly selected for presentation
All group members must participate in the presentation to receive credit
| Component | Exemplary (3) | Adequate (2) | Inadequate (1) | Score |
| Project overview | Effectively and insightfully develops a set of testable, supportable and impactful study hypotheses. | Develops a set of testable and supportable hypotheses. | Hypotheses are not testable or justifiable. | |
| Justification for hypotheses | The introduction section provides a cogent overview of conceptual and theoretical issues related to the study hypotheses. Demonstrates outstanding critical thinking. | The introduction section provides a logical overview of conceptual and theoretical issues related to the study hypotheses. Demonstrates competent critical thinking. | Very little support for the conceptual and theoretical relevant to the study hypotheses was provided. Provides little evidence of sound critical thinking. | |
| Supporting evidence | Provides clearly appropriate evidence to support position | Provides adequate evidence to support position | Provides little or no evidence to support position | |
| Review of relevant research | Sophisticated integration, synthesis, and critique of literature from related fields. Places work within larger context. | Provides a meaningful summary of the literature. Shows understanding of relevant literature | Provides little or no relevant scholarship. | |
| Maintains purpose/focus | The project is well organized and has a tight and cohesive focus that is integrated throughout the document | The project has an organizational structure and the focus is clear throughout. | The document lacks focus or contains major drifts in focus | |
| Methodology Sample Procedures Measures Data analytic plan | Identifies appropriate methodologies and research techniques (e.g., justifies the sample, procedures, and measures). Data analytic plan is suitable to test study hypotheses. Provides appropriate justification for controls. Project is feasible | Identifies appropriate methodologies and research techniques but some details are missing or vague. | The methodologies described are either not suited or poorly suited to test hypotheses. The methodology is under-developed and/or is not feasible. | |
| Grammar, clarity, and organization | The manuscript is well written and ideas are well developed and explained. Sentences and paragraphs are grammatically correct. Uses subheadings appropriately. | The manuscript effectively communicates ideas. The writing is grammatically correct, but some sections lack clarity. | The manuscript is poorly written and confusing. Ideas are not communicated effectively. | |
| References and citations | Properly and explicitly cited. Reference list matches citations | Properly cited. May have a few instances in which proper citations are missing. | The manuscript lacks proper citations or includes no citations. |
