CIS 349 Information Technology Audit and Control

Anonymous
timer Asked: Dec 6th, 2018
account_balance_wallet $20

Question Description

I need help with this writing assignment for my computer class.

Designing Compliance within the LAN-to-WAN Domain

Due Week 8 and worth 100 points

Note: Review the page requirements and formatting instructions for this assignment closely. Graphically depicted solutions, as well as the standardized formatting requirements, do NOT count toward the overall page length.

Imagine you are an Information Systems Security Officer for a medium-sized financial services firm that has operations in four (4) states (Virginia, Florida, Arizona, and California). Due to the highly sensitive data created, stored, and transported by your organization, the CIO is concerned with implementing proper security controls for the LAN-to-WAN domain. Specifically, the CIO is concerned with the following areas:

  • Protecting data privacy across the WAN
  • Filtering undesirable network traffic from the Internet
  • Filtering the traffic to the Internet that does not adhere to the organizational acceptable use policy (AUP) for the Web
  • Having a zone that allows access for anonymous users but aggressively controls information exchange with internal resources
  • Having an area designed to trap attackers in order to monitor attacker activities
  • Allowing a means to monitor network traffic in real time as a means to identify and block unusual activity
  • Hiding internal IP addresses
  • Allowing operating system and application patch management

The CIO has tasked you with proposing a series of hardware and software controls designed to provide security for the LAN-to-WAN domain. The CIO anticipates receiving both a written report and diagram(s) to support your recommendations.

Write a three to five page paper in which you:

  1. Use MS Visio or an open source equivalent to graphically depict a solution for the provided scenario that will:
    1. filter undesirable network traffic from the Internet
    2. filter Web traffic to the Internet that does not adhere to the organizational AUP for the Web
    3. allow for a zone for anonymous users but aggressively controls information exchange with internal resources
    4. allow for an area designed to trap attackers in order to monitor attacker activities
    5. offer a means to monitor network traffic in real time as a means to identify and block unusual activity
    6. hide internal IP addresses
  2. Identify the fundamentals of public key infrastructure (PKI).
  3. Describe the manner in which your solution will protect the privacy of data transmitted across the WAN.
  4. Analyze the requirements necessary to allow for proper operating system and application patch management and describe a solution that would be effective.
  5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Note: The graphically depicted solution is not included in the required page length.

Your assignment must follow these formatting requirements:

  • This course requires use of Strayer Writing Standards (SWS). The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.
  • Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
  • Include charts or diagrams created in Visio or an equivalent such as Dia or OpenOffice. The completed diagrams / charts must be imported into the Word document before the paper is submitted.

The specific course learning outcomes associated with this assignment are:

  • Analyze information security systems compliance requirements within the Workstation and LAN Domains.
  • Use technology and information resources to research issues in security strategy and policy formation.
  • Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.

Tutor Answer

Tutorlamb
School: Cornell University

Attached.

1

Running Head: COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN

Compliance Within the LAN-to-WAN domain
Student’s Name
Institution

COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN

2

Compliance Within the LAN-to-WAN Domain
Proposed Solution

WWW Server

Internet access

Network Address Translation
Mail Server

Firewall
VPN

Misuse detection system

DNS
Intrusion detection system

Data maintenance system (internal network)

Security within LAN-to-WAN
In networking, the LAN-to-WAN domain enables internet connection for companies and
allows communication or traffic from the WAN. It also acts as a gateway for communications
and traffic from the LAN. Implementation of sufficient and appropriate security protocols in the
institution networks by the management through the information technology department is

COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN

3

fundamental (Malik, 2003). These measures are vital because of cyber-attacks which increases
the vulnerability of internet connections to attacks by hackers or other malicious users of the
internet who can access the organizational LAN to corrupt or steal data and ravage the network
by installing malware in the network. According to Malik 2003, these attacks arise due to factors
such as weak security protocol, server downtime, sharing of files among individuals, unprotected
and weak passwords, social engineering and use of outdated client software.
Organizational management involves the exchange and use of confidential data which
makes these data values to people outside the institution. The value of this data calls for
enhanced security measures on the data and obliteration of all the risks involved to ensur...

flag Report DMCA
Review

Anonymous
awesome work thanks

Similar Questions
Related Tags

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors