Cmgt 441 week 5 team assignment information systems security review paper (riordan)

Page 1

ISS Review

Riordan Manufacturing: Information Systems Security Review CMGT441: Introduction to Information Systems Security Management

1

ISS Review

TABLE OF CONTENTS INTRODUCTION..................................................................................................................... 3 CURRENT RIORDAN OVERVIEW...................................................................................... 3 Sales and Marketing/Operations........................................................................................... 3 Finance and Accounting........................................................................................................ 4 Human Resources.................................................................................................................. 4 PHYSICAL SECURITY ISSUES/CONCERNS..................................................................... 4 Current Specifications........................................................................................................... 5 Recommendations.................................................................................................................. 5 Badge Access Control System.................................................................................................. 5 Alarm System....................................................................................................................... 6 CCTV................................................................................................................................. 6 Security Patrols.................................................................................................................... 6 Established Landscaping Guidelines......................................................................................... 7 NETWORK SECURITY ISSUES/CONCERNS.................................................................... 7 Current Specifications........................................................................................................... 7 Recommendations.................................................................................................................. 8 Cisco ASA 5500 Series........................................................................................................... 8 Disaster Recovery Plan.......................................................................................................... 8 Intrusion Detection and Prevention System................................................................................ 9 DATA SECURITY ISSUES/CONCERNS.............................................................................. 9 Current Specifications........................................................................................................... 9

2

ISS Review

3

Recommendations.................................................................................................................. 10 Strategy and Risk Assessment..................................................................................................

10 Upgrade of Physical Security Components.................................................................................

10 Practice Computer and Network Security..................................................................................

11 WEB SECURITY ISSUES/CONCERNS................................................................................ 11 Current Specifications........................................................................................................... 11 Recommendations.................................................................................................................. 11 Computer Database............................................................................................................... 12 Total Defense Security (TDS) Suite........................................................................................... 12 Identity Protection and Verification (IPV) Suite.......................................................................... 13 Secure Socket Layer (SSL) Certificate....................................................................................... 13 CONCLUSION.......................................................................................................................... 13 APPENDIXES............................................................................................................................ 15 Appendix A: Employee and Product Development Diagram (Figure 1)............................... 15 Appendix B: Inline Network-Based IDPS Architecture (Figure 2)....................................... 16 Appendix C: SWOT Analysis Examples (Figure 3)............................................................... 17 Appendix D: Sample Homepage for Riordan (Figure 4)....................................................... 18 REFERENCES.......................................................................................................................... 19

ISS Review

4

Riordan Manufacturing: Information Systems Security Review The word security means different things to different people. To an individual, security can mean the protection of one’s self and their property, while the meaning of security for a corporation or business can mean the protection of its information, assets, and personnel. It is one of many key factors that determine a person or organization’s ability to defend against unwanted or harmful actions. The purpose of this paper is to review Riordan Manufacturing’s (Riordan) existing Information Security Systems (ISS’s), determine their weaknesses, and develop solutions to those weaknesses by addressing security issues in the areas of physical, network, data, and the web. Current Riordan Overview As can be seen on the Intranet website, Riordan currently operates four manufacturing plants; three located in the United States (San Jose, California; Pontiac, Michigan; and Albany, Georgia) and one overseas (Hang Zhou, China). Each plant contains the same basic departments, to include Sales and Marketing, Operations, Finance and Accounting, Information Technology (IT), Legal, and Human Resources (Apollo Group, 2006). The problem; however, lies in all four plants Sales and Marketing, Operations, Finance and Accounting, and Human Resources departments, which have outdated and unconsolidated systems. Sales and Marketing/Operations

PURCHASE THE ANSWER FILE IMMEDIATELY VISIT http://www.fasthomeworkhelp.com

Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.