Task Description You are hired by Advanced Medicos Limited (AML), a healthcare product sell company, as a cybersecurity consultant to help in security management and to address the contemporary and emerging risks from the cyber threats the company is facing. AML is providing a platform for Australian customers to sell their product online. The vision of the company is to be among the top 5 nation-wide. The board from the advice by Chief Information Officer (CIO) and Chief Information Security Officer (CISO) has concluded that they should get to point that the key services such as web portal should be able to recover from major incidents in less than 20 minutes while other services can be up and running in less than 1 hour. In case of a disaster, they should be able to have the Web portal and payroll system fully functional in less than 2 days. The company is a new company which is growing rapidly. While the company uses its database server to store the information of its customers’ private data, credit card info, etc. it has a poordesigned network with a low level of security. As the company is responsible for the privacy and the security of customer personal info, credit card details, the security of payment transactions, etc. they have decided to improve their information security. Therefore, they have hired you to do the following task: Vulnerability assessment and Business Impact Analysis (BIA) exercise: 1. Perform vulnerability assessment and testing to assess a fictional business information system. 2. Perform BIA in the given scenario. 3. Communicate the results to the management. Existing IT infrastructure of AML: – Office 365 Emails Hosting – 2 Web server providing web services and payment options – A physical database server storing customer information – DHCP and DNS servers – Servers located in a server room accessible by all staff – There is no virtual/cloud storage – The backup files are stored on a single computer connected to the internal network