You have just been hired as a Network Security Analyst for ACME Inc. (a medium size company). This company has 200 employees in several offices. Management has decided to hire a security expert because of few recent security breaches have caused significant company downtime.
Your job is to evaluate the current situation and make recommendations to the existing IT management staff.
You have decided to follow these steps:
• Document current security configurations.
• Interview management and employees from each department.
• Recommend a security policy.
During the documentation phase you discovered:
• The company has a firewall, but it is not configured properly.
• The company has virus scanning software on all of the desktops, and the signatures are managed by the individual users.
• The company has a single Windows 2008 domain with 3 sites with the following properties:
• The file systems are a mix of FAT32 and NTFS. All users are local administrators.
• No Windows security policies exist, not even a password policy.
• Auditing is not enabled.
• Internet access is not monitored or filtered.
• E-mail is not protected with virus protection software.
During the interview phase you discovered:
• Employees have not been trained on the basics of computer security.
• Most employees are using blank passwords.
• Employees spend an average of two hours per day casually surfing the Internet.
• Employees have access to the company network by using their ISP and a VPN connection. The VPN uses PPTP with PAP authentication.
ACTIVITY
Using your text book and any other source you might find create the following:
1. A document reporting your findings about the current state of security at ACME Inc. for the board of directors.
2. A security policy for the following areas:
• Acceptable Use Policy
• Password Protection Policy
• Remote Access Policy
• Anti-Virus Process
3. Make sure site your sources including your textbook.
NOTE: THE TEXT BOOK FOR THIS COURSE IS MANAGEMENT OF INFORMATION SECURITY, 3RD EDITION BY MICHAEL E. WHITMAN