You have been hired as a security specialist by an organisation that has fallen prey to a recent cyber-attack. When analysing the organisation’s systems, you realise that the company does not have a defence strategy in place to prevent unauthorised access to its systems. Describe and analyse two commonly used security strategies. In your answer, also explain the practical implementation of each strategy.

You have been hired as a security specialist by an organisation that has fallen prey to a recent cyber-attack. When analysing the organisation’s systems, you realise that the company does not have a defence strategy in place to prevent unauthorised access to its systems. Describe and analyse two commonly used security strategies. In your answer, also explain the practical implementation of each strategy.

Management Of Information Security

6th Edition

ISBN:9781337405713

Author:WHITMAN, Michael.

Publisher:WHITMAN, Michael.

Chapter4: Information Security Policy

Section: Chapter Questions

Problem 1E

See similar textbooks

Similar questions

What are the most important IT security issues facing companies today? Have these changed in the last five years, and will they continue to change? How should companies prepare themselves for security threats and problems in the future? Explain with enough details to show how each part works.
Can you elaborate on whether or not working in cyber security is monotonous? Give a thorough explanation of your solution, including how and why you came to that conclusion.
You have been engaged by an architectural firm with eight employees, each of whom has a networked desktop computer, to create an organization-wide security policy. Management has emphasized the importance of ease of use and the limited time available for staff training. What degree of security should policy reflect?
A key role of penetration testing as used by IT security professionals is to identify system weaknesses of various kinds. According, pen testing is an important method for protecting organizations from unwanted attacks or intrusions. Why is it important to understand the risks presented by weak physical security? How does defense in depth prevent attacks? What considerations inform decisions regarding which physical controls should be implemented and for what reasons?
Your firm has around 200 workers and contractors, and you are in charge of training them all on computer security. What topics would you cover in the fundamental security training session that you would conduct for workers who are not involved in IT? What type of further training on matters pertaining to security would be acceptable for staff after they have a firm grasp on the fundamentals?
Count on the fact that you'll have to implement some kind of security model to guarantee the privacy of the students in your class. Take a look at each cell using the CNSS model and provide a brief remark on how you may approach the three parts that make up that cell.
For all of our security demands, we are heavily reliant on technology. What are some of the most prevalent physical security holes you've seen in your own business or any other organisation you've worked in?
Most people are aware of the need of having proper security rules in place and constantly implementing those policies. Discuss why it is so important to design, implement, and maintain security rules in your organisation.