Assignment:
Phase I - Identify potential weaknesses from either the Aircraft Solutions or Quality Web Design Company
In this phase you will choose either Aircraft Solutions or Quality Web Design as the company you will work with. The scenarios are in Doc Sharing in the Course Project select area. You will then identify potential security weaknesses.
Security weaknesses - You should choose two from the following three areas (hardware, software, and policy - excluding password policies) and identify an item that requires improved security.
To define the asset or policy with sufficient detail to justify your assessment, your assessment should include:
* the vulnerability associated with the asset or policy
* the possible threats against the asset or policy
* the likelihood that the threat will occur (risk)
* the consequences to mission critical business processes should the threat occur
* how the organization's competitive edge will be affected should the threat occur
To clarify an item that requires improved security, you should identify one of these items:
* one hardware and one software weakness
* one hardware and one policy weakness
* one software and one policy weakness
Other required elements include:
* Cover sheet
* APA-style
* In-text citations and Reference section
* Minimum length 3 pages, maximum length 5 pages (not counting cover sheet, diagram(s), references). Do not exceed the maximum length.
Phase II: the Course Project (comprised of Phase I and II) - Recommend solutions to the potential weaknesses from either the Aircraft Solutions or Quality Web Design Company
In this phase of the project you will include Part I (presumably improved as needed based upon Week 3 feedback) and then you will recommend solutions for the security weaknesses you identified in the Phase I.
Definition of the solution - Hardware solutions should include vendor, major specifications with an emphasis on the security features, and location of placement with diagram. Software solutions should include vendor and major specifications, with an emphasis on security features. Policy solutions should include the complete portion of the policy that addresses the weakness identified. Any outsourced solution should include the above details and the critical elements of the service level agreement.
Justification - You should address the efficacy of the solution in terms of the identified threats and vulnerabilities; the cost of the solution, including its purchase (if applicable); and its implementation, including training and maintenance.
Impact on business processes - You should discuss any potential positive or negative effects of the solution on business processes and discuss the need for a trade-off between security and business requirements using quantitative rather than simply qualitative statements.
Other required elements include:
Cover sheet
APA-style
In-text citations and Reference section
5 reference minimum