Assessment Details:This assessment is designed to assess your technical skills in investigation IS security, risk threats and management to an organization. The assessment is also assessing your skills to evaluate risk management techniques and IS auditing. You are required to select an organization that uses information systems to perform daily business operations. You have to identify the most valuable assets for the organisations and investigate the security threats and mitigation techniques. You have also to propose/evaluate the risk management techniques adopted by the selected organization to ensure the reliability, confidentiality, availability, and integrity. You have also to discuss audit plan and processes used by the organization and investigate the impact of human factors on security and risk management. Task Specifications This assessment includes two tasks as follows:
Task-1: Assume you are working at MBC TV broadcasting organisation. MBC allows the employees to use their own computing devices – such as smartphones, laptops and tablet PCs to work with them and use them in addition to or instead of organisation -supplied devices. The MBC organisation provides information systems services to the staff and customers. You have to write a report to answer the followings related to the selected organization:
1. Mobile devices are highly vulnerable and can be exposed. Discuss two types of threats against mobile devices. Illustrate how these devices are vulnerable to destruction and abuse.2. Propose with justification two types of security protection techniques for mobile devices and how they can be used to mitigate threats.3. Assume the MBC organization used Linux Web Server (Apache) to host the organization web site. Discuss how the organization can ensure the availability of the web service using Linux web server.4. Discuss the impact of employee on information security of the MBC organization. Provide risk management recommendation to reduce the risk of employee when they use mobile devices for work.5. Linux server supported with different tools for auditing. Illustrate Linux server auditing tools and discuss how they can be used by the selected organization to monitor and analyzing the web server and email server problems.You may need to make some assumptions with the required justifications. Please note you have to use Harvard reference style.
Task-2: Access control is granting or denying approval to use specific resources. Technical access control consists of technology restrictions that limit users on computers from accessing data. In this task you have to understand access control (ACL) list and files system security using Linux. You have to demonstrate the way and commands of complete the followings tasks using Linux:
1. Demonstrate the way of creating two directories ‘{StudentID1}’ and ‘{StudentID2} under main directory ‘SBM4304’. Where, StudentID1 and StudentID2 are the student ID of two students. Illustrate the command/s can be used to set full access to SBM4304 directory.2. Demonstrate the way of creating three users; {u1}, {u2} and {u3}, where u1, u2 and u3 are the first name of three students. Illustrate the commands available in Linux to create directories and users and set and view the required permissions. In your report, you have to provide the commands you need during the process of conducting the requirements of Task-2.
Submission you have to submit a report in word format include your answer for Task-1 and Task-2. You have to include cover page that include your student ID and full name. In completing this assessment successfully,
#Sales Offer!| Get upto 25% Off: