Web Application Security Challenges
This assignment consists of two (2) sections: a written paper and a PowerPoint
presentation. You must submit both sections as separate files for the
completion of this assignment. Label each file name according to the
section of the assignment it is written for.
You are the Chief Security Officer
(CSO) for an e-Commerce company and are concerned about security for your
e-Commerce applications. Specifically, your company’s Board of Directors has
requested a detailed forward-looking plan with emphasis on securing your Web
presence assets. Read the article titled, “Web application security is growing
problem for enterprises” located at http://www.infoworld.com/d/security-central/web-application-security-growing-problem-enterprises-843?page=0,0.
Also, be sure research at least four (4) other articles concerning the
challenges of Web application security.
Section 1: Written Paper
Write an eight to ten (8-10) page paper in which you:
Summarize the current state of Web application
security for your Board of Directors to understand. Determine any common
themes that need to be addressed specific to the Web security.
Describe the techniques and technologies you would use
that you would implement to mitigate these security challenges and
explain why you chose these techniques and technologies.
Analyze the internal security procedures and practices
you will use to validate the security of your enterprise’s Web applications.
Represent your Board recommendations graphically using
Visio or Dia. Note: The graphically depicted solution is not
included in the required page length.
Use at least four (4) quality resources in this
assignment. Note: Wikipedia and similar Websites do not qualify as
Section 1 of your assignment must
follow these formatting requirements:
Be typed, double spaced, using Times New Roman font
(size 12), with one-inch margins on all sides; citations and references
must follow APA or school-specific format. Check with your professor for
any additional instructions.
Include a cover page containing the title of the
assignment, the student’s name, the professor’s name, the course title,
and the date. The cover page and the reference page are not included in
the required assignment page length.
Include charts or diagrams created in Visio or Dia. The
completed diagrams / charts must be imported into the Word document before
the paper is submitted.
Section 2: PowerPoint Presentation
Create a persuasive eight to ten (8-10) slide
PowerPoint presentation (not including the cover slide) in which you:
Detail your Board recommendations.
Create bulleted speaking notes for your presentation
to the executive board in the Notes section of the PowerPoint. Note:
You may create or assume any fictitious names, data, or scenarios that
have not been established in this assignment for a realistic flow of
Use a professional technically written style to
graphically convey the information.
The specific course learning
outcomes associated with this assignment are:
Analyze the role and importance of audit and compliance
to Web application security.
Explain the value and importance of vulnerability and
security assessments for Web applications.
Use technology and information resources to research
issues in securing Web-based applications.
Write clearly and concisely about Web application
security topics using proper writing mechanics and technical style