Designing Compliance within the LAN-to-WAN Domain

User Generated

QVNZBAQPW

Computer Science

CIS 349

Description

Assignment 4: Designing Compliance within the LAN-to-WAN Domain


Note: Review the page requirements and formatting instructions for this assignment closely. Graphically depicted solutions, as well as the standardized formatting requirements, do NOT count toward the overall page length.

Imagine you are an Information Systems Security Officer for a medium-sized financial services firm that has operations in four (4) states (Virginia, Florida, Arizona, and California). Due to the highly sensitive data created, stored, and transported by your organization, the CIO is concerned with implementing proper security controls for the LAN-to-WAN domain. Specifically, the CIO is concerned with the following areas:

  • Protecting data privacy across the WAN
  • Filtering undesirable network traffic from the Internet
  • Filtering the traffic to the Internet that does not adhere to the organizational acceptable use policy (AUP) for the Web
  • Having a zone that allows access for anonymous users but aggressively controls information exchange with internal resources
  • Having an area designed to trap attackers in order to monitor attacker activities
  • Allowing a means to monitor network traffic in real time as a means to identify and block unusual activity
  • Hiding internal IP addresses
  • Allowing operating system and application patch management

The CIO has tasked you with proposing a series of hardware and software controls designed to provide security for the LAN-to-WAN domain. The CIO anticipates receiving both a written report and diagram(s) to support your recommendations.

Write a three to five page paper in which you:

  1. Use MS Visio or an open source equivalent to graphically depict a solution for the provided scenario that will:
    1. filter undesirable network traffic from the Internet
    2. filter Web traffic to the Internet that does not adhere to the organizational AUP for the Web
    3. allow for a zone for anonymous users but aggressively controls information exchange with internal resources
    4. allow for an area designed to trap attackers in order to monitor attacker activities
    5. offer a means to monitor network traffic in real time as a means to identify and block unusual activity
    6. hide internal IP addresses
  2. Identify the fundamentals of public key infrastructure (PKI).
  3. Describe the manner in which your solution will protect the privacy of data transmitted across the WAN.
  4. Analyze the requirements necessary to allow for proper operating system and application patch management and describe a solution that would be effective.
  5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Note: The graphically depicted solution is not included in the required page length.

Your assignment must follow these formatting requirements:

  • Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
  • Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
  • Include charts or diagrams created in Visio or an equivalent such as Dia or OpenOffice. The completed diagrams / charts must be imported into the Word document before the paper is submitted.

The specific course learning outcomes associated with this assignment are:

  • Analyze information security systems compliance requirements within the Workstation and LAN Domains.
  • Use technology and information resources to research issues in security strategy and policy formation.
  • Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.

User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

Attached.

Running head: DESIGNING COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN 1

Designing Compliance within the Lan-To-Wan Domain
Student’s name
Institutional affiliation

DESIGNING COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN

2

Designing Compliance within the Lan-To-Wan Domain
Public Key Infrastructure (PKI) defines the exact mechanisms and rules that jointly offer
an outline for discussing the essentials of security. PKI is imperative since it helps various
organizations to apply safe internet presentations. In other words, PKI is essential since it
supports the computers to identify the people and the organizations they converse with for secure
data transmission. Some of the fundamentals of the (PKI) include; authentication, access control,
confidentiality, non-repudiation, and integrity. The Diagram on the internet supply within the
organization and other work organization

Virginia Station

Internet
Head Office

Florida Station

Arizona
California station
Remote users

DESIGNING COMPLIANCE WITHIN THE LAN-TO-WAN DOMAIN

3

The diagram shows the performance and the way the organization conducts is roles. This
also shows how the internet is connected to the organization hence connecting with people and
other organizations. Based on the different issues that are presented by the organization, it is
important for a solution to be created. In other words, it the diagram shows the primary source of
the internet and the various sections through which the web is used within the organization.
There are different branches of the workstation which is in need of the internet to facilitate its
activities. Based on the existence of the branch workstation, the information transmitted to it
from the central office can be acquired by people who are unwanted hence it is important for a
solution to be created (Hollman, Bickford, & Hollman, 2017).
Integrity
Integrity defines the process whereby; data is not interfered with or altered for different
reasons. This type of assurance of the safety of the information is impor...


Anonymous
Really helpful material, saved me a great deal of time.

Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4

Similar Content

Related Tags