Skip to Content (press Enter/Return)
preview

Nt1310 Unit 1

opinion Essay
1023 words
Open Document
1023 words
  • Small
  • Normal
  • Large
  • Huge
bookmark

Although the organization has already tackled and overcome several significant security failings which have resulted in the exposure of its network infrastructure to various vulnerabilities, as these failings became public it has caused significant damage to the perception and reputation of Advanced Research. As a result there is a clear need to develop, define, and implement an enhanced network topology and infrastructure in order to ensure that all critical functions are protected and that there is no possibility of unauthorized access to the network or any service being obtained. Following an analysis of previous incidents it is apparent that there are several recurring areas which would need to be protected and these should be considered …show more content…

In this essay, the author

  • Opines that advanced research needs to develop, define, and implement an enhanced network topology and infrastructure to ensure that all critical functions are protected.
  • Explains that intellectual property is considered a serious risk if there is any unauthorized access to the network or associated systems.
  • Argues that the blitz solution is the most effective way of addressing the requirements of advanced research.
  • Opines that blitz is a powerful testimonial to its quality, as it can simulate various degrees of attack behavior to ensure that the network is always protected at an optimal level.

It is also a situation which can be evaluated at no commercial risk to the organization due to the vendor’s provision of test solutions which can be used to ascertain the overall suitability before full deployment would be assumed and the product would then need to be purchased. It would therefore be recommend that an evaluation system be utilized at the earliest opportunity, with a view to implementing a production level solution once the system has been evaluated successfully. Each of these steps would be co-ordinated through Change Control procedures with relevant approval from business units and management respectively to carry out any works outside of scheduled business hours. While a hardware solution of this type would be important in enhancing the overall security of the network, and organization as a whole, it should only form part of the solution which would also need to include an analysis and overview of the remaining systems and devices which would also need to be appraised and evaluated in terms of their respective security. All critical and security patches for operating systems should be installed in a mandatory fashion for example, and there should be consistency in terms of operating systems where possible to reduce the surface area of any potential

Get Access
Check Writing Quality
Related
  • explanatory
  • opinion
  • comparative
  • Cyber Security Business Continuity Plan
    explanatory essay
    The cyber security department will ensure that the organization will have continual protected access to the organization’s network. The protected access of the network will be available 24 hours a day and 7 days out of the week. The protected access will also be available during emergencies. Emergencies will not hamper or hinder the organization’s ability to access the network. Arrangements have been put in place for emergencies to have protected access to the network. The cyber security department will continual strive to improve their services. “Cyber-attacks on a Process Control Network (PCN) pose a risk to the operation” (Henry, 2009, p.223). The uninterrupted, protected access to the organization’s network is the top priority of the cyber security department.

    In this essay, the author

    • Explains that the cyber security department will ensure uninterrupted, protected access to the organization's network 24 hours a day and 7 days out of the week.
    • Explains that network hackers are constantly inventing ways to break into the computer systems of organizations. they have the time, capability, and experience to infra trace any system.
    • Explains that the cyber security department will use the information from the annual swot analysis to design and redesign the organization's network.
    • Explains that cyber security uses a layered concept to protect the system. the layers of security are application, service and infrastructure.
    • Explains that the cyber security department is devoted to the continual protection and improvement of the organization's network.
    • Explains mcgee, vasireddy, and xie's framework for ensuring networks.
    1119 words
    Read More
  • Networking and Security
    explanatory essay
    How Does Network Security Work? Network Security doesn’t use one cure all treatment to solve the problem of maintaining the Usability, Reliability, Integrity, and the maintaining the safety of the data. With Network Security, networking technicians use multiple layers of security, so that if one layer fails the others are there to pick up the slack until the first layer is fix. Some parts of the security of a net...

    In this essay, the author

    • Explains network security is important because it protects your personal information on the internet, keeps small and large business networks up and running, and speeds up the transfer rate of data.
    • Explains that network security is a set of activities that have been designed to protect your network or computer.
    • Explains that network security doesn't use one cure all treatment to solve the problem of maintaining usability, reliability and integrity. network technicians use multiple layers of security, so that if one layer fails, the others pick up the slack.
    • Explains that network security protects you from many attacks every time you go on the internet, such as viruses, worms, trojan horses, spyware, adware, zero day attacks, hacker attacks and denial of service attacks.
    • Explains that hackers are trying to make more complex software or files to get into computers and network. the companies creating the network security softwares are constantly updating their software so that they catch the majority of the new software that the intruder is making.
    • Explains a virtual private network and anti-spyware software that helps protect your computer from pop-ups and slow performance.
    • Explains that a firewall scans your computer to find malicious programs like viruses and worms that try to reach you via the internet. firewalls can also be used in facilities to restrict the access of the users on the internet from accessing certain websites.
    • Explains that a denial of service attack tries to block users from accessing information or the internet by flooding the network with tons of pointless packets.
    • Explains that viruses are injected into a computer or network and save themselves inside the hard drive in an inconspicuous place and make copies of themselves. worms can spread rapidly and without human intervention. the morris worm was the first to be taken to court.
    • Explains that email spoofing is a type of attack where an email is faked to trick the recipient to put forth personal personal information.
    • Explains that a trojan horse is an email attachment or pop-up that offers seemingly harmless software that looks enticing to people. once the person has downloaded the program, the malicious program targets the boot sector of the hard drive.
    • Describes packet sniffing as a third-party program that grabs bits of information from packets to find out secret information or passwords for the network.
    • Explains cross-site scripting, where malicious website developers put a script into the website that when clicked on releases virus or other unwanted software onto the computer or network.
    • Explains phishing is a way cybercriminals install malicious programs on your computer by making fake email messages, websites, and phones calls.
    • Explains that isp's are companies and organizations that provide users access to the internet and other services. they can be private, commercial, non-profit, or even community-owned.
    • Explains that network security involves knowing the main components of a network, such as protocols, ip addresses, and unique identifiers that run throughout the network.
    • Explains that network address translation (nat) is the process of changing the private internet protocol to a public internet protocol so that the end users can still connect directly to the network from which they are connected to.
    • Explains that tcp and udp ports use the internet protocol to communicate over 300 ports over the internet.
    • Explains ethical hacking, where a hacker is hired to find faults or weaknesses in the company's network, meets with the networking security personnel and discusses what they can do to prevent black hat hackers from coming in.
    • Explains that digital subscriber lines are another way of providing internet to consumers. unlike cable modems, they are connected via satellite.
    • Describes the notorious hacker george hotz, known for unlocking iphones to allow it to be used with other wireless carriers. he also developed limera1n a jailbreak tool that allows iphone users to break into their phones.
    • Explains cert.cert software engineering institute.carnegie mellon university, 2014.
    1684 words
    Read More
  • Csc652 Unit 2 Network Security
    explanatory essay
    Security capabilities in various products or service are highly crucial to the overall network security.

    In this essay, the author

    • Explains that a secure network must be secure and protected against malicious attacks and should have accurate response time, high accessibility, scalability, integrity, reliability, and provide appropriate billing information.
    • Explains that security capabilities in various products or services are highly crucial to the overall network security.
    • Explains that the infrastructure security layer consists of both network transmission facilities and individual network elements protected by the security dimensions.
    • Explains that the infrastructure layer represents the fundamental building blocks of services, networks, and applications.
    • Explains that the applications security layer emphasizes on security of network-based applications accessed by service providers.
    • Explains that these applications are enabled by network services and include basic file transport (using ftp for eg) and web browsing, fundamental and high-end applications, network-based voice messaging and email.
    • Explains that network-based applications may be provided by application service providers, enterprises hosting them, or service providers acting as asps.
    • Explains that the management security plane is concerned with the protection of oam&p functions of network elements, transmission facilities, and office systems and data centers.
    • Explains that the management security plane supports fault capacity administration provisioning security functions. the network carrying the traffic for fcaps activities may be in-band or out of band with respect to the service provider's user traffic.
    • Explains that the control security plane is concerned with safeguarding the activities that enable the efficient delivery of information, services and applications across the network.
    • Describes machine-to-machine communication of information that allows machines to determine the best route or switch traffic across the underlying transport network.
    • Explains that the network carrying these messages may be in-band or out of band with respect to the service provider's user traffic.
    • Explains that the end-user security plane addresses security of access and use of the service provider's network by customers.
    • Explains that this plane represents actual end-user data flows. they may use a network that only provides connectivity, value-added services, or access network-based applications.
    • Explains the security architecture, which defines a security structure for the end-to-end security solution, and identifies security issues that need to be addressed to prevent intentional and accidental threats.
    • Explains that the intersection of each security layer and every security plane represents a security perspective where security dimensions are applied to counter the threats.
    • Explains that only authorised persons or devices can access data that is transiting a network element or communication link.
    • Recommends providing a record identifying each device that accessed data and that the action was performed.
    • Explains that network security must be designed according to a standard security architecture.
    • Explains that the services security layer focuses on security of services ranging from basic transport as well as connectivity to service enablers that are necessary for providing internet to value-added services.
    • Explains that at this layer there are 4 possible targets for security attacks — the application and service provider, the middleware provided by third-party integrators and the app user. a security plane is a certain type of network activity protected by security dimensions.
    848 words
    Read More
  • Proposal: Network Security
    opinion essay
    The organization had just secured a government contract worth millions of dollars. The sensitive nature of the information requires the company evaluate and address security measures. With any network, there are many threats, both internal and external, that can result in loss of productivity, loss of data and even theft of information. I will address several of these threats and propose measures to ensure a protected environment and to mitigate these risks.

    In this essay, the author

    • Explains that the organization had just secured a government contract worth millions of dollars. the sensitive nature of the information requires the company evaluate and address security measures.
    • Explains that access to the office area is controlled by physically keyed doors. employees work in an open cubical environment and have the ability to physically secure paperwork and personal items but not computer equipment.
    • Opines that physical and logical security concerns along with mitigating both internal and external threats are needed.
    • Opines that physical security can be enhanced by implementing an access control system that is centrally manageable and provides logging of access attempts.
    • Recommends placing a firewall into service to protect against hackers, denial of service attacks, and other external threats. a more centrally managed system like the cisco asa 5500-x series firewall would be easier to administer.
    • Explains that threats to networks and it resources come in many different forms and require organizations to take several actions to mitigate the risks. building access control systems, access policies and locking computer systems enhance physical security.
    • Recommends implementing a solid anti-virus/anti-spyware program and keeping pcs and servers up-to-date with the latest security patches.
    1220 words
    Read More
  • Protecting Yourself Online
    comparative essay
    In this paper we will discuss some basic steps to better secure your system. We will discuss the following four (4) areas:

    In this essay, the author

    • Explains that in this paper, they will discuss basic steps to better secure your system.
    • Advises against using chat programs like irc, icq, yahoo, etc., as they expose your ip address, leaving room for the other person to scan your computer looking for ways to break in.
    • Recommends upgrading your anti-virus protection regularly. six-month-old signature files won't guarantee you a virus free pc.
    • Recommends using an anti-virus program that will scan emails for mal-ware, scan sites before you connect to them, and provide real-time scanning.
    • Advises that if someone has to send you a doc file, ask them to convert it into *.rtf or*.txt format and then send.
    • Explains how to disable java and active x in ms ie. they recommend using a personal firewall software, such as zone alarm and visual zone.
    520 words
    Read More
  • Providing Services to the Ageing Population
    opinion essay
    At this stage, all operation segments must be tested and analyzed for further improvements before expanding to other regions. Otherwise, with an incorrect initial model, it will be difficult to resolve issues later and may hinder the systems efficiency.

    In this essay, the author

    • Explains that the focus now is to identify and briefly describe the types of application framework that will be required to carry out the proposed business functions.
    • Opines that the company can expect to see a secure infrastructure that supports efficiency and productivity.
    • Explains that a temporary employment firm has decided to expand its operation within the home health care industry. the segment targeted will be the ageing population.
    • Opines that an information systems infrastructure needs to be established that is able to integrate with external systems of other participating organizations.
    • Explains that powerbuilder is a rapid application development (rad) tool to build object oriented clients and server applications. sybase stored procedures will be used to access and fetch records in the database tables.
    • Recommends implementing active directory infrastructure consisting of a single forest split into various domains for each regional location. the active directory infrastructure will separate each site and manage all objects within the organizational unit containers.
    • Proposes a single platform brand to allow easy management and consistency across the network. lenovo imaging technology center is optimal for this purpose as it separates the hardware build layer from the operational software.
    • Explains that the first step is to create a set of data and security standards that will be consistently enforced in all regions.
    1577 words
    Read More
  • Security Breach Research Paper
    comparative essay
    With a rise in security breaches experienced by companies in the last few years, it is no wonder that businesses are implementing stronger security policies. Two topics that deserves to be addressed by businesses are PC protection software and external access to corporate networks. There may be no sure way to prevent attacks on the corporate network but there are steps companies can make to limit such activities. This paper will discuss the possible guidelines that companies may implement to strengthen security policies.

    In this essay, the author

    • Opines that businesses are implementing stronger security policies, such as pc protection software and external access to corporate networks. there are steps companies can take to limit such activities.
    • Recommends that all company computers and employee-owned computers should have company-sanctioned pc protection software. companies should install wide-ranging security software that includes anti-malware, safe browsing, firewall, and other security capabilities.
    • Recommends that employees refrain from accessing work-related documents while on a public network unless absolutely necessary (nsa), or access company files through their mobile carrier’s network.
    • Recommends companies adopt strong password policies, enforce employee password guidelines, and change passwords periodically. by using a non-unique password, individuals are risking access to corporate network and/or files.
    • Opines that companies should be proactive in preventative measures so attackers don't have a chance to gain access to sensitive company data.
    523 words
    Read More
  • Case Study: Corrupting The Computer At The Broadway Café
    explanatory essay
    Potential risks and security breaches have been on the rise with a growing number of skillful hackers. This results in an increase to external threats to personnel and businesses. However, when complex security measures and the appropriate level of controls are utilized, there is a reduction to the potential risk and loss due to failure or breach. Therefore, such practice will enhance system reliability.

    In this essay, the author

    • Assumes that jason had no intention of corrupting the computer with the usb storage drive. also, plugging usb drives into the computers at the broadway café is probably a common practice among employees.
    • Explains that jason has initiated an internal attack by utilizing the usb storage drive on the café’s computer. the drive must of stored some sort of virus that now has access to the computer and possibly the system network.
    • Explains that the usb owner's objective may have been to inject malware or disrupt the computer software, while data theft could create vulnerabilities for future attacks.
    • Explains that there are several risks scenarios that can be directly and indirectly related to the broadway café. the objective is to determine the optimal (cost vs. benefit) level on controls to help mitigate risks.
    435 words
    Read More
  • AMP Canada Case Study
    explanatory essay
    Maher (1999) states that the different packages on the market have different strengths in different areas, it is important for the customer to recognise this and select the package with the strengths that are appropriate. Only when top management have reached consensus on what the business requires, should package vetting and selection begin.

    In this essay, the author

    • Explains the purpose of the project management plan to define the approach to be taken by the amp canada case study implementing sap in 1 year time with the vendor – sap business partner.
    • Explains that the team implementing the new system were required to do both functional and systematic requirements thus affecting the implementation of the system.
    • Explains that the user requirements were not taken into consideration thus affecting the purchasing orders, poor management of inventory, the manufacturing and finance department weren't integrated.
    • Explains amp canada implemented sap with optimum within 1 year thus requiring the pmp to include plans for the following areas: communication, procurement, staff, quality and risk.
    • States that project procurement management involves acquiring goods and services from outside the performing organisation. the amp canada procurement plan objectives for this project are to:
    • Recommends selecting a vendor to migrate the current jba system to sap with the existing business processes.
    • Describes the formal agreement that provides amp canada with certainty regarding service level agreements and fixed prices for the chosen implementation.
    • Explains that the contractor must complete the service within the established project schedule of 1 year.
    • Explains that amp canada will provide a single walkthrough of the jba existing solution to representatives from multiple vendors at the same time.
    • Explains that the following table outlines the key project team roles and responsibilities for the project.
    • Explains that the project manager is responsible for the day-to-day management of projects and the achievement of agreed/defined project objectives.
    • Reports to the project control group on progress and issues/barriers to achieving the projects business objectives.
    • Describes the business requirements, business process and application documentation, user acceptance testing, and relevant project documentation.
    • Explains that the "business user" is an integral part of the development team. the role provides the key focus for design decisions.
    • Explains that the technical lead drives the system design and manages the business requirements translation to a sound application design.
    • Explains that the consultant drives business requirements and primarily represents the business user’s goals and objectives.
    • Explains liaising with the project manager to ensure requirements gathering are on track with timeframes and deliverables.
    • Explains the importance of maintaining business relationships with users and sponsors throughout the life of the project, ensuring requirements are communicated effectively.
    • Explains that a developer models and interprets user requirements and converts them into prototypes and deliverable code, using the business requirements documents and user comment as input.
    • Explains how they work with business analyst and technical lead to define business requirements, build and test, create prototypes and finished programs as required.
    • Explains that the quality assurance analyst is responsible for the testing of the production ready code during the implementation phase for business acceptability against business requirements.
    • Explains that carton, adam & sammon suggest quality baselines that ensure quality management of the project (2008). these points have been applied to the case study.
    • Explains how sakthivae points out the risk factors which are applied to amp canada to identify risk control factors.
    • Explains that managing the scope of a project is the most important function of the project manager. effective scope management ensures the successful management of other key project management areas.
    • Explains that effective communication is one of the key aspects of any project. project managers are tasked to ensure that all aspects are communicated to the team in an effective and professional manner.
    • Explains that a request for proposal (rfp) will be issued in order to solicit proposals from various sap business partners’ vendors.
    • Opines that staffing is one of the major issues with any it project. good technology staffs, especially those with deep experience, are difficult to find.
    • Opines that the duration for which sap is implemented does not guarantee it will be beneficial, as projects and project management are exposed to environment whereby requirements are changing along with the business needs.
    • Explains that the global component of the project is aimed at providing a band-aid to amp.
    2642 words
    Read More
  • Security Guidelines For Network Security
    opinion essay
    Network management processes that have the backing of senior management are paramount in ensuring that the organization develops security for its network. The management needs to play a great role and incorporate security guidance into their network. The network security guidelines provided here should govern how the network should operate in the area of security, how the network would be developed to maintain security, how security is organized to support upcoming needs, and how the network will comply with the operational and regulatory security needs (Gupta, Chandrashekhar, Sabnis, & Bastry, 2007).

    In this essay, the author

    • Outlines the various network security guidelines that are secure both for the users within an organization and for remote users.
    • Opines that network management processes that have the backing of senior management are paramount in ensuring that the organization develops security for its network.
    • Explains the policy that defines how the remote users connect to the main network in an organization while outlining the requirements that each has to fulfill so as to successfully access the network.
    • Explains that the remote access policy should apply to all employees, agents, vendors, and contractors with company owned or personal computers and other devices that are frequently used to access the network of the organization.
    • Explains that the remote access network policy aims at preventing damages to the company's network. this helps curb data loss and prevents the network from being compromised.
    • Recommends that remote access to the company's network using vpn, dial-in, and other means should follow the recommendations that are approved to allow remotely access. the remote computers will run a suitable antivirus all the times so as to offer real time protection.
    • Explains that remote users will have to use virtual private networking (vpn) or dial-in modems to access the network.
    • Explains that a firewall, anti-viruses, and ipsec are required for vpn users to be authenticated.
    • Opines that dial-in clients should have firewalls that are well-installed and operational. users who fail to meet the criteria should be directed to where they can access suitable software.
    • Opines that administrators' passwords in the network need to be safely safeguarded and should not be given out to other users. employees failing to adhere to the password policy should be disciplined appropriately.
    • Concludes that the paper outlines the various network security guidelines that are secure both for the users within an organization and for remote users.
    • Explains that antivirus definitions need to be updated at least once in a day. computers connected to the network should be protected from malicious activities using the firewall.
    • Explains that remote users accessing sensitive data need transcription services while transmitting the same.
    • Opines that employees should adhere to the password policy outlined in oecd's policy options for internet economies. strong passwords are necessary to safeguard the organization’s resources.
    • Explains that the guidelines defined while using the internet define the approval guidelines that guide the it team in ascertaining how users will get connected to private networks.
    • Opines that the company needs to cultivate a culture of security within the organization.
    1738 words
    Read More
Get Access