IT Security Essay

All main networking, router, switches and servers will be in a closet that is only accessible to the networking team, this way it’s not

1. The relative advantages and disadvantages of at least three different measures used to protect operating systems.

Each computer lab will have a closet for convenience. This will offer greater signal coverage, design flexibility, and better options for resolving problems. Each lab will also have 32 computers: 30 student computers, 1 instructor computer, and 1 server in the closet for instructional

The workstation domain in the IT infrastructure is the area where the end user is in the most control. It is also where most users are able to connect to the IT infrastructure. The workstation domain refers to any endpoint device used by others. This can be a desktop computer, a laptop device, a special-purpose terminal or any smart device in the end user’s physical possession (Johnson 93). In more recent years, smartphones and mobile devices such as tablets have become a part of the workstation domain. Along with the workstation domain being the place where an end user has the most control, it is also easily susceptible to security breaches. There are a multitude of risks that exist and can cause vulnerabilities at the workstation domain. As the world continues to evolve so does the technology and the risks involved for an IT infrastructure. If security measures are correctly put in place than the workstation domain should run smoothly in an operation.

Any student who is logged into the network is protected by technologies put into place by our IT teams to protect most devices from viruses and threats. It is recommended that steps are taken to protect devices when away from the network.

With reports from the CIO that malicious activity is on the rise, analyzing the system is essential to guarantee that the data that is critical to the organization's success is secured. Since assaults must be executed on a framework with vulnerabilities, I should analyze the system to address concerns, for example, backdoors, patches and updates, security to server rooms, appropriate security for access of data, and so forth.

On July 24, 2013 Senator John Rockefeller introduced a bill into Congress with the name 'Cybersecurity Enhancement Act.' This law was proposed with the purpose of helping to establish a partnership between the public and private entities to research and enforce Cybersecurity in order to make the online experience safer for everyone. This bill allowed the Department of Homeland Security to lay a foundation for private sectors as well as the public to enhance the efforts of Cybersecurity. This platform would provide “the government and private sector to share information about cybersecurity threats, incident response, and technical assistance” (Skeath). This bill was first introduced in the Senate and it passed. The bill again passed through

Programming based security arrangements encode the information to keep information from being stolen. In any case, a malicious program or a hacker may degenerate the information with a specific end goal to make it unrecoverable or unusable. Likewise, encoded working frameworks can be adulterated by malware from a programmer, making the framework unusable. Equipment based security arrangements can avoid read and compose access to information and henceforth offers extremely solid insurance against altering and unapproved access.

Network security has changed significantly over the past years. There is more and more data to monitor and analyze in order to detect the activity of your data and systems. Securing a network has many variables. Password authentication, network access, patches, anti-virus protection, intrusion detection, firewall and network monitoring tools are just a few of the things you can do to protect yourself.

Security Controls for Threat 1 - According to SP 800-44, it is best-current-practice to put servers on a separate subnetwork to logically separate it from the LAN to have a more defensible network architecture. This design provides a logical layer of security between the workstations and the server; further, access control rules can provide additional security between the server and the internal network.

In the Workstation Domain security controls are one of the biggest challenges. Physical security threats are concerns associated more with attackers who gain physical access to the premises. The attackers can cause physical destruction of equipment or sabotage the equipment. The attacker can sabotage the system if the attacker has sufficient knowledge of the system, such as a former employee, and gains access to the system and then renders the system unusable, or deletes and changes information.

The steps to ensure that information is protected is the basis for this paper. I will cover protecting the operating systems through security concepts. First, I will explain the process of protecting Operating systems Kernel, Secondly, I will discuss implementing Access Control Third l will focus on. Patch Management, Forth I will rank the measure explain in this paper based on the most appropriate action.

Therefore, we construct a topological representation of critical security models that we intend to implement within the organization. Among the tools are firewalls, proxy servers, encryption facilities, logical security and access controls, antivirus software and auditing systems.

Many organizations focus almost exclusively on virtual security and nearly forget about the building or room that houses their data and whether it is properly secured. To be fully secure, a data center one must consider not only network, data and user security, but physical security as well (Chris, 2015).

A threat agent is the facilitator of an attack however; a threat is a constant danger to an asset.