PROG8290 – Assignment 4

Assig 1 Evaluating Risk Handling Strategies Learning Objectives and Outcomes ▪ Evaluate appropriate risk-handling strategies for a given scenario. Assignment Requirements The X-Axis is a renowned private cancer hospital located in Las Vegas. The hospital maintains a critical database in-house that includes patient data for all patients. You are the IT security manager at X-Axis. The power from the city to the company's data center has been unstable in recent months. The database was offline twice due to power issues, once for 6 hours and once for 10 hours. You are evaluating the risk to the organization of continued power issues and database availability. For this assignment: 1. Create a table in Microsoft Word similar to the following for avoidance, transference, and mitigation risk- handling strategies. Risk Handling Strategy Description Avoidance Transference Mitigation Fill in each empty cell with a description of at least two appropriate strategies or actions. Self-Assessment…

....

What are The baseline security practices for the SaaS environment. [U]

Prepare and submit a research paper using the topic below. Papers must: • Be formatted using APA guidelines• Include at least 3-5 references (use APA format)• Be 5-6 (single space) or 10-12 pages (double-space) - title page and endnotes are not part of page count Topic: The role of security in Internal Audit and IT controls

Perform a literature review to study and compare security mechanisms offered by any TWO cloud computing service providers e.g. Amazon, Microsoft, Google, Alibaba, IBM, etc. Analyze extensively and write a technical report on how the selected service providers guarantee security for the clients/customers data security     Submission Technical Report. Prepare a technical report (free format) with the following structure: Introduction Details review of selected service providers – review must include all security features and mechanisms to guarantees clients/customers data security Discussion – Suggest which service provider between the two that provide better security mechanisms and features Conclusion

What is the CVSS score?

Course Title: Information Security Question : What approaches can be used for the security of data in transit or data at rest? Also perform a comparative analysis of the approaches?

QUESTION 10 Consider the following two tables. Tablel: Course CourselD Title Credit ITDR2104 Programming 3 ITSY4114 Ethical Hacking 3 ITSY4111 Cyber Security Computer Graphics Operating Systems ITSW4111 3 ITDR3102 3 Table2: Student studentID Fname Lname CourseID 1001 Fatma Al Kalbani ITDR2104 1002 Laila Al Mukheini ITDR2104 1003 Hager Al Harthi ITSY4111 1004 Nada Al Badi ITSY4111 1005 Manar Al Mazidi ITSW4111 1006 Salim Alsaadi ITDR2106 Draw three tables that can result by executing each of the following SQL statements. (Put your answer in a document

What is CVSS scoring?

Principles of Information Security Q : Explain the following diagram

A security policy is a document that provides employees with clear instructions about acceptable use of company confidential information, explains how the company secures data resources and what it expects of the people who work with this information. Most importantly, the policy is designed with enough flexibility to be amended when necessary. You are working in organization X, and you are supposed to develop an issue-specific security policy issue is MOBILE COMPUTING   To develop the different sections of your policy, you can refer to SANS Policy Templates https://www.sans.org/information-security-policy/

research and evaluate testing models for data security compliance. no minimum word count

The SOX compliance standard requires IT infrastructure controls and security to protect financial data and recordkeeping. Explain this section's content?

What are main components of ACC Test Plan?

Online sources provide access to information on AES. Paper that is compliant with the Federal Information Processing Standard (FIPS) 197. Please provide the original text for me to rewrite it academically.

PurposeThis course project is intended to assess your ability to identify, design, and organize information technology (IT) security policies.Learning Objectives and OutcomesSuccessful completion of this project will ensure that you can develop draft IT security policies for an organization and apply learning constructs from the course. By the end of this project, you will be able to do the following:Evaluate compliance laws relevant to the U.S. Department of Defense.Assess policy frameworks appropriate for an organization in a given scenario.Evaluate security controls and standards for the seven domains of a typical IT infrastructure.Develop DoD-compliant policies for an organization’s IT infrastructure.Required Source Information and ToolsWeb References: Links to Web references in this document and related materials are subject to change without prior notice. These links were last verified on January 4, 2022. The following tools and resources will be needed to complete this…

PurposeThis course project is intended to assess your ability to identify, design, and organize information technology (IT) security policies.Learning Objectives and OutcomesSuccessful completion of this project will ensure that you can develop draft IT security policies for an organization and apply learning constructs from the course. By the end of this project, you will be able to do the following:Evaluate compliance laws relevant to the U.S. Department of Defense.Assess policy frameworks appropriate for an organization in a given scenario.Evaluate security controls and standards for the seven domains of a typical IT infrastructure.Develop DoD-compliant policies for an organization’s IT infrastructure.Required Source Information and ToolsWeb References: Links to Web references in this document and related materials are subject to change without prior notice. These links were last verified on January 4, 2022. The following tools and resources will be needed to complete this…

hi there, may i please get some help with a contingency table

Select all type of employees that can cause a data breach as mentioned on the topic discussion (Select 3 answers only) * Supervisor Malicious Employee Innocent Actions Employees Regular Employee Ranking File Employee Careless or Negligent Employee

Which aspect of the SOX compliance regulation requires adequate controls and security measures to protect the confidentiality and integrity of financial data and recordkeeping in an IT infrastructure? The content of this section must be clarified.

In order to ensure the confidentiality and integrity of financial information and recordkeeping in an IT infrastructure, which aspect of the SOX compliance regulation requires adequate controls and security measures? This section's content must be explained.