Placeholder

SEC 440 DeVry All Homework Assignments and You Decide Latest

$78.00

Quantity:

Product Description

SEC 440 DeVry All Homework Assignments and You Decide Latest

SEC 440 DeVry All Homework Assignments and You Decide Latest

SEC440

 

SEC 440 DeVry Week 1 Homework Assignment Latest

Selling Security to the Organization

Please type a three- to five-page (800 to 1,200 words) paper. Using APA style, assess the importance of developing a comprehensive security policy within the organization. What you need to convey to your CEO is that network attacks are continuing to make the news and organizations have reacted by increasingly spending more of their overall IT budget on security. Business executives are starting to have questions about what they’re receiving for their increased IT security spending. Make the case to justify this spending by describing at least five main sections of an information security policy and the business benefits generated if a company’s employees comply with each section. Use transition words, a thesis statement, an introduction, a body, a conclusion, and a reference page with at least two references. Use double-spaced, 12-point Arial font.

Assignment Grading Rubric

Graded Element Percentage
Assignment Content

  • Importance of developing a comprehensive information security policy
  • Discuss network attacks and their impact on security spending
80%
Required Length 10%
Spelling and Grammar 5%
APA Style 5%

Submit your assignment to the Dropbox located on the silver tab at the top of this page. For instructions on how to use the Dropbox, read these .next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=184″>step-by-step instructions or watch this Tutorial

.next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=232″>Dropbox Tutorial.

See the Syllabus section “Due Dates for Assignments & Exams” for due date information.

SEC 440 DeVry Week 3 You Decide Latest

Scenario | Scenario | Your Role | Key Players

The infectious company, Grocery Stores, Inc. has just been breached by what was first thought to be a remote attacker who infected the supermarket chain with a server based malware program. However, after a security assessment was performed, it was confirmed that it was an inside job. Apparently, a new and sophisticated plan was developed by a disgruntled employee. The attacker slipped malware onto servers at all of the company’s 200 grocery stores. The malware appears to have snatched card data from customers as they swiped their credit cards through the checkout counter machine and transferred the card data overseas.

Scenario description

You’ve been hired as an information security administrator for Grocery Stores, Inc. Your duty is to assess the situation and determine the best course of action to take to ensure that the security breach is contained and eradicated. You will need to interview key staff members and decide how which member(s) can best assist you in eliminating this risk.

What is Your Role in this scenario?

The fact that the malware was not the ordinary kind of key logger program that might capture keyboard presses as a customer logs into their online bank account, but was instead software programmed to lift credit card data as it was being transmitted to the servers at Gregory Stores, Inc, suggests that the malware program had to be written specifically to target our stores and deployed from inside the company network. It seems almost too much of a coincidence to believe that remote hackers would have a chance to infect every server with the appropriate malware by using traditional security flaws such as a misconfigured firewall, or even an out-of-date antivirus application. We have over 20 network administrators throughout multiple branch offices and satellite locations. Security was set up so that each network administrator had the same security access and privileges to each location. In hindsight, I believe that while having redundant or equal security privileges for all network administrators can be a good thing; it can also be a major security hole. That is because the administrators have access to the entire system and not just their local area network. The possibility that the security breach of Grocery Stores, Inc. was performed by an employee is very disturbing. We must review our current employee hiring policies and procedures to insure that we are performing the appropriate background checks and monitoring our employees to make sure that valuable customer data is both secured and protected from external threats and internal employees. We can’t have our I.T. professional circumventing the system because they have elevated privileges that give them unfettered access to valuable company data. We must review the current job descriptions and duties of all personnel who have access to customer data and only give access where appropriate. Also, during the termination and/or transfer process, we need to be sure that we have done the steps necessary to disable security access so that we do not have any rogue accounts. The recent security breach at Grocery Stores, Inc. indicates to us that our security policies and procedures need serious scrutiny and oversight. However, even if we were found compliant with all security controls and financial protection measures, the fact remains that we were hacked. A major concern at many corporations is the potential for a man-in-the-middle attack, where an attacker can install a sniffer program and pull out the data as it flows through. You can reduce the risk of this type of attack by encrypting the data at the time it transverses the network. I also want to review the training policies and procedures of our personnel to make sure that everyone understands the rules, is complying, and that there are punitive measures in place to reduce the risk of incidents like these from happening again. The security breach at Grocery Stores, Inc. has caused major damage to the reputation and trust that our customers and stakeholders have in this organization. This cannot be tolerated; security of our valuable data is paramount. As CEO of this company, I am responsible for insuring security of our critical data and compliance. Security must be an important concept to every employee from top to bottom. We must demonstrate adequate internal controls of business records and information security. We need a layered security program so that if one defense is unsuccessful, the attacker must poke through other defenses. Even with a layered security program, there’s no guarantee that the company can prevent every attack from succeeding. Good security requires constant care and it doesn’t take much for a vulnerable opening to develop. We will do everything possible now and review for potential updates monthly in the future. Learn more about the Key Players in this scenario. Given the scenario, your role and the information provided by the key players involved, it is time for you to make a decision.

If you are finished reviewing this scenario, close this window and return to this Week’s You Decide tab, in your course, to complete the activity for this scenario.

You can return and review this scenario again at any time. What would you to resolve this scenario?

YOU DECIDE

Activity

Based on your assessment of the security breach and interviewing the staff in the scenario, develop a server malware protection policy that accounts for the concerns of the stakeholders involved in mitigating the risk of a malware attack; network security controls that prevent the infiltration of viruses, worms, and/or malware; and reducing the chances that the attack originates from an internal source. Please draft an 800–1,200 word paper and submit it to the Dropbox. Use transition words, a thesis statement, an introduction, a body, a conclusion, and a reference page with at least two references. Also, use double-spaced, 12-point Arial font.

Grading Rubric

Grading Element Percentage
Assignment Content

  • Assess what occurred during the security breach and the points made during the interview
  • Content of your proposed Server Malware Protection policy
80%
Required Length 10%
Spelling and Grammar 5%
APA Style 5%
Total 100%

Note! Submit your assignment to the Dropbox l

SEC 440 DeVry Week 5 Homework Assignment Latest

Security Measures Paper

You have just been hired as the security administrator of a major organization that was recently breached by a social engineer. After a thorough analysis of the network security, you have determined that there was no security plan in place and no standard operating procedures for e-mail, acceptable use, physical security, and incident response.

Please type a three to five page (800 to 1,200 word) paper using APA style, explaining your recommendations and why you think that they are necessary.

Use transition words, a thesis statement, an introduction, a body, a conclusion, and a reference page with at least two references. Use double-spaced, 12-point Arial font.

Assignment Grading Rubric

Graded Element Percentage
Assignment Content

Discuss a security plan and procedures for each of the following specific topics: e-mail, acceptable use, physical security and incident response

80%
Required Length 10%
Spelling and Grammar 5%
APA Style 5%

Submit your assignment to the Dropbox located on the silver tab at the top of this page. For instructions on how to use the Dropbox, read these .next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=184″>step-by-step instructions or watch this Tutorial

.next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=232″>Dropbox Tutorial.

See the Syllabus section “Due Dates for Assignments & Exams” for due date information.

SEC 440 DeVry Week 7 Homework Assignment Latest

HIPAA Compliance

You are a security engineer for a hospital group based in Cincinnati, OH. Your group has just acquired a small hospital in Alba, IA. Currently, everything except insurance billing is done on paper forms. The company CSO has asked you to draft a memo that gives an overview of what will be necessary to bring this small hospital into HIPAA security compliance. Please draft an 800- to 1,200-word paper and submit it to the Dropbox.

Please type a three- to five-page (800 to 1,200 word) paper using APA style, explaining your recommendations and why you think that they are necessary.

Assignment Grading Rubric

Graded Element Percentage
Assignment Content

  • Discuss the components of an overall compliance plan
  • Discuss specific Administrative, Physical and Technical safeguards that should be implemented
80%
Required Length 10%
Spelling and Grammar 5%
APA Style 5%

Submit your assignment to the Dropbox located on the silver tab at the top of this page. For instructions on how to use the Dropbox, read these .next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=184″>step-by-step instructions or watch this Tutorial

.next.ecollege.com/default/launch.ed?ssoType=DVUHubSSO2&node=232″>Dropbox Tutorial.

See the Syllabus section “Due Dates for Assignments & Exams” for due date information.

SEC 440 DeVry All Homework Assignments and You Decide Latest

SEC 440 DeVry All Homework Assignments and You Decide Latest

 

ABS,AC,ACC,ACCT,ACT,ADJ,AH,AJS,AMP,ANT,ART,BA,BAM,BBA,BCOM,BIO,BIOS,BIS,BMGT,BPA,BSA,BSE,BSHS,BSOP,BUS,BUSN,CARD,CEIS,CHEM,CIS,CIT,CJA,CJS,CMC,CMGT,COLL,COM,COMM,COMP,CPN1,CRJ,CRMJ,CRT,CS,CWV,DBM,EBUS,ECE,ECET,ECN,ECO, ECOM,ECON,ECT,EDU,EED,EMM,ENG,ENGL,ENT,ENTR,ESE,ETH,ETHC,FIN,FIS,FP,GB,GBM,GED,GEN,GENERALQUESTIONS,GLG,GM,GSCM,HCA,HCS,HHS,HIS,HIST,HLT,HOSP,HPE,HRM,HSA,HSM,HTM,HTT,HUM,HUMN,IFSM,INFT,INT,IS,ISCOM,IT,ITB,JADM,JUS,JWI, LAS,LAW,LAWS,LDR,LEG,LIT,LTC,MA,MAT,MATH,MGMT,MGT,MIS,MKT,MKTG,MTH,NETW,NR,NRS,NSCI,NTC,NUR,NURS,OI,OMM,OPS,ORG,PA,PAD,PCN,PHI,PHL,PHYS,PM,POL,POLI,POS,PPA,PRG,PROJ,PSC,PSY,PSYC,PSYCH,QNT,QRB,RDG,REL,RELI,RES,SBE,SCI,SEC,SOC,SOCS,SPE,SRM,STAT,STR,SYM,TCH,UNV,WEB,XACC,XBIS,XCOM,XECO,XMGT

There are no reviews yet.

Add your review