The growth and explosion of the internet has led to a global market place. Companies can sell products all over the world and never have to leave the bounds of their physically secure location. With this move to a global economy, we see an increase in security threats to organisations, individuals and agencies.
All these models must have an information system to process, store, and retrieve information for their internal stakeholders, customers, and external users.
Information systems have inherent risks and vulnerabilities to attacks from internal users, external customers, hackers and criminals. Organisations must have a robust security program in place to meet these attacks and be proactive in their security stance.
Your group has the responsibility of creating a robust security policy that covers all the needs of the organisation. The security policy identifies administrative, physical, and technical controls that must be in place to identify security risks and develop mitigation strategies to minimise the effects of these risks. You will evaluate the IT infrastructure of Solomon Enterprises and its global business model.
Solomon Enterprises employees 500 people in five different locations throughout the domestic United States. Solomon Enterprises generates $200 million in annual revenue through its business model so they would be a huge target for hackers or criminals. Their business products can be purchased through an online web site.
They have one central database/data centre located in West Virginia and regional offices in Florida, Texas, Arizona, Montana, and Missouri. Customers, clients, and users have access via the Internet throughout the world. The company has a disaster recovery site located in Billings, Montana. Solomon Enterprises users can work remotely or within one of the regional offices.
They have a VPN connection that ensures that their connection is encrypted. The central data centre has a firewall and each regional office has a firewall to monitor traffic and keep unauthorised access from the facility.
They have company issues devices located within the office and laptops that can be taken for remote access. All these devices are running Windows XP and their server is running Windows 2003.
The goal of your group is to develop a plan that evaluates the current security posture of the organisation of the company and what controls need to be put into place to safeguard their information. You only have the brief synopsis for guidance so if something is not identified either it is not being done or they do not have enough information to provide you.
Use your text as the key source when determining what security controls need to be in place for your company. Ensure that you cover each component that we have discussed within our class room videos in order to increase the security posture of your organisation.
4-page written paper. Five scholarly sources in addition to your text. The entire paper must be properly APA formatted with an APA running header, all references properly formatted, and cited within your writing.
Minimum components that must be covered
Introduce your organisation, security posture and business model
Can you please apply it to a health care organisation?
What security policies will need to be built into your company’s overall existing security program to ensure that data is safeguarded, i.e., media destruction policy, incident response policy, acceptable use policy, etc.
I would appreciate if you could discuss about HIPAA regulations as well in Health Care industry with three references in APA format.