After reading this week's materials, please respond to one or more of the following questions:
- Describe what is meant by "defense-in-depth" in security design. Give an example of a combination of security controls that you have seen implemented that show how the combination of security factors improve the overall security.
- The CIA triad is a common way of describing how confidentiality, integrity and availability concerns form the pillars of information security. Give an example from your experience or a technical article you've read that describes methods of improving security of information in each area of the CIA triad.
- Describe the administrative management practices of separation of duties, job rotation, and mandatory vacations and their role within operations security.