Assignment
Question 1:
Write at least 500 words analyzing a subject you find in this Article "Cyber Risks to Next Generation 911"
Why is the future of computing in the cloud? Consider the concept of fractional ownership.
Question 2:
Discuss sqlmap, an automated tool for sql injection and database takeover in 500 words or more. How does it work? Where do you get it? How much does it cost? Who developed it? Why do we need an automated tool for sql injection? Are there other 'tools' like this available?
Question 3:
In 500 words or more, discuss the risk and costs of compromised data integrity breaches. Focus on integrity not confidentiality. Look at military, education, science, medicine, finance, utilities, municipalities, etc.
Question 4:
Discuss, in your own words using 500 words or more, the relationship between users and roles in databases. Explain why we use roles rather than simply assigning rights and privileges to each individual user. Consider how to handle new hires and job changes.
Question 5:
Read five articles and discuss the principle of least privilege in at least 500 words. Explain how this principle impacts data security.
Question 6:
Discuss, in 500 words, how you would advise your current employer to use encryption to reduce the vulnerabilities of their data at rest, in use, and in transit (or in motion). Identify at what points you think their data is at the highest risk. Consider where the data is when it at rest, in transit, or in use and the potential vulnerabilities associated with each of those locations.
Question 7:
Discuss in 500 words, how much redaction is necessary to anonymize an electronic health record. Is it enough to redact the name? The name and address? Is a medical record like a finger print?
Question 8:
Discuss in 500 words or more why Oracle 12c has introduced two new roles - AUDIT_ADMIN and AUDIT_VIEWER. Include a discussion of what database auditing is and what it does. Consider why these new roles were introduced and what problem they are meant to resolve. Do not simply define the roles. Explain why they are useful.
Question 9:
Describe in 500 words the disaster recovery plan and who is responsible at your place of employment. Consider the critical business functions and your recovery point objectives and recovery time objectives.
Question 10:
Considering that some people seem willing to post just about any personal data on the Internet, how reasonable do you feel that the HIPAA rules for database security and the penalties for violations are? Please write 500 words showing your understanding of HIPAA compliance rules. Consider specific aspects of the rules and exceptions including safe harbor.
Question 11:
In 500 words or more, explain PCI compliance to the database administrator at a large retailer. Consider the consequences for non-compliance.
Question 12:
Discuss SOX in 500 words or more. How do logging and separation of duties help comply with SOX? How might database auditing and monitoring be utilized in SOX compliance? How can a dba use automation to comply with SOX frameworks?
Question 13:
Discuss in 500 words or more the relationship between NIST and FISMA.
Question 14:
Discuss in 500 words or more the use of blockchain for the protection of one of medical, financial, or educational records.
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also includes a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.