Discussion
manbkk610
Week3CyberDefenceandCountermeasures.zipWeek 3 Cyber Defence and Countermeasures/cf_anchor_hosp_scenario.docx
IT4070
Anchor Hospital Scenario
You are a network specialist hired by Anchor Hospital to address network infrastructure vulnerabilities. Your initial work is broad and expected to encompass the following:
Understanding the network.
Firewalls.
Physical security.
Cloud solutions.
Intrusion detection.
VPN solutions.
Incident response and countermeasures.
Policy and regulatory issues.
Network exposure assessment and control.
Company Information
Anchor Hospital is a small independent care facility in a stand-alone building that houses its IT staff and assets in the basement. The IT infrastructure and staff of six serve 1,200 employees and other users.
Physical Security
The hospital is on a 10-acre campus in an urban neighborhood. Its IT-related physical security consists of:
A contracted security firm, which supplies two 24/7 guards: one of whom conducts hourly foot patrols, and the second who monitors cameras and performs additional security-related functions.
High-definition cameras that record continuously, located at all points of building entry and sensitive access points including the server room.
Three locked data-center doors requiring key card access that records all traffic. All staff have access cards for their respective departments; only IT staff, janitors, and upper management have access to the IT facility.
IT Overview
Network
Hospital connected to the Internet.
Network segmented into virtual LANs for medical data, IT, and finance user groups.
Hardware
Windows 2008 domain servers: email, file/print, data servers.
Routers connect switches to VLANs.
Switches connect desktops and servers to network.
Web server located in the DMZ.
100 antimalware-protected Windows XP workstations with Internet access.
Wireless access point.
Software
Windows firewall on a workstation at the edge of the network.
SNORT intrusion detection system (IDS), located in front of the Windows firewall.
MS Office installed on workstations.
Enterprise-level proprietary medical software.
Oracle Enterprise Resource Planning (ERP) software.
2017 version of free AVG Antivirus.
1
2
Week 3 Cyber Defence and Countermeasures/cf_asst_template.docx
Remove or Replace: Header Is Not Doc Title
Assignment Template
Learner Name:
Lab Screenshots and Narrative
Insert and title all lab screenshots in the order they were taken. Briefly describe what you learned or observed in the lab below each screenshot. Be specific.
|
[Screenshot section, Step #]
|
|
[Screenshot section, Step #]
|
|
[Screenshot section, Step #]
|
|
[Screenshot section, Step #]
|
|
[Add as necessary]
|
Assignment
[Add your assignment responses here.]
1
2
Week 3 Cyber Defence and Countermeasures/Cyber Defence- Week 3.docx
Discussion – 1 page
Physical Security
Securing physical assets is an important and sometimes overlooked aspect of IT security.
Discuss, based upon your research or professional experience, best practices that are often employed to enhance physical security and prevent unauthorized access to network operations centers.
Assignment –
Physical Security Recommendation
Overview
Physical security is often an overlooked area of IT security. Planning for and maintaining physical defense of IT assets is of paramount concern for IT security professionals.
In this assignment you identify weaknesses in Anchor Hospital’s physical security and recommend a control to mitigate possible social engineering attacks.
Preparation
· Make sure you have completed the unit lab and saved your screenshots before beginning work on the assignment.
· Review the Anchor Hospital Scenario (linked in Resources) as needed.
Instructions
Briefly describe what you learned from or observed in the lab and include it in the section with your screenshots in the Assignment Template (linked in Resources). Be specific.
Anchor Hospital has vulnerabilities in its defense against social engineering attacks.
· Identify two significant attributes of the hospital’s physical security that leave it vulnerable to a social engineering attack. Explain how each might be exploited. State any assumptions not explicitly defined in the scenario that are required to support your explanation.
· Suggest a nonpolicy control that effectively addresses the vulnerability and explain why it would be effective.
· Write a specific policy no longer than one page to address the vulnerability.
Additional Requirements
· Label your document clearly.
· Use an appropriate typeface and size, such as Times New Roman, 12 points, for body copy. Use double-spacing.
· Apply current APA style and formatting as appropriate.
