Assignment 1: Telecommuting and the Mobile Worker

Assignment 1: Telecommuting and the Mobile Worker

The number of American telecommuters is expected to increase by 29 million telecommuters or 43% of the workforce by 2016 as more work gets performed from remote locations. Mobile workers can work from wherever they are and use the IT / IS technology necessary to access co-workers, company or corporate infrastructure, intranets, and other information sources.

Write a two to three page paper in which you:

1. Describe the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.).

2. Describe how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings.

3. Determine four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Elaborate on each advantage and disadvantage.

4. Examine the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting.

5. Use at least three quality resources in this assignment. Note: Wikipedia and similar websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Demonstrate and plan for the integration of emerging technologies.

· Describe and evaluate the core concepts of data and information architecture.

· Design plans for business continuity.

· Use technology and information resources to research issues in enterprise architecture.

· Write clearly and concisely about enterprise architecture topics using proper writing mechanics and technical style conventions.

Grading for this assignment will be based on answer quality, logic / organization of the paper, and language and writing skills, using the following rubric.

Assignment 1: Telecommuting and the Mobile Worker
Criteria Unacceptable

Below 60% F

Meets Minimum Expectations

60-69% D

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Describe the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.).

Weight: 20%

Did not submit or incompletely described the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.). Insufficiently described the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.). Partially described the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.). Satisfactorily described the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.). Thoroughly described the impact of telecommuting on energy conservation, IT operational costs, “green computing,” and shifts in telecommuters’ lifestyles (e.g., parents, disability, etc.).
2. Describe how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings. Weight: 15% Did not submit or incompletely described how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings. Insufficiently described how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings. Partially described how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings. Satisfactorily described how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings. Thoroughly described how the business infrastructure should be designed so that employees will be able to continue to perform business functions in the event of a disaster (i.e., storm, hurricane, or earthquake) that destroys or makes it impossible to access the buildings.
3. Determine four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Elaborate on each advantage and disadvantage.

Weight: 25%

Did not submit or incompletely determined four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Did not submit or incompletely elaborated on each advantage and disadvantage. Insufficiently determined four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Insufficiently elaborated on each advantage and disadvantage. Partially determined four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Partially elaborated on each advantage and disadvantage. Satisfactorily determined four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Satisfactorily elaborated on each advantage and disadvantage. Thoroughly determined four advantages and four disadvantages of telecommuting from an IT manager’s point of view. Thoroughly elaborated on each advantage and disadvantage.
4. Examine the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting.

Weight: 25%

Did not submit or incompletely examined the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting. Insufficiently examined the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting. Partially examined the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting. Satisfactorily examined the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting. Thoroughly examined the effect of Bring Your Own Device (BYOD) to the IT infrastructure with regard to security, IT support, knowledge, and data management, green computing, and telecommuting.
5. 3 references

Weight: 5%

No references provided Does not meet the required number of references; all references poor quality choices. Does not meet the required number of references; some references poor quality choices. Meets number of required references; all references high quality choices. Exceeds number of required references; all references high quality choices.
6. Clarity, writing mechanics, and formatting requirements

Weight: 10%

More than 8 errors present 7-8 errors present 5-6 errors present 3-4 errors present 0-2 errors present

Assignment 2: IT Support for Virtual Teams

Global organizations have branches that are located in multiple countries. Some of these organizations develop software and take advantage of the global talent pool of software developers while others have global technical support teams, customer service, and so on. Virtual teams are created when two or more people work together from different locations, organizations, times zone, and / or time shifts. Global organizations use virtual teams in order to provide global support, reduce travel costs, reduce training costs, and take advantage of local cultural knowledge that may impact the organization’s operations.

Write a two to three page paper in which you:

1. Examine five issues that the IT department is likely to face when it comes to supporting virtual teams.

2. Describe five advantages and five disadvantages of using virtual teams for the organizations described in the scenario.

3. Describe challenges imposed by:

a. IT / IS national standards and propose how they could be handled or resolved.

b. Protocols and propose how they could be handled or resolved.

c. Procedures on virtual teams and propose how they could be handled or resolved.

4. Compare and contrast virtual teams and traditional teams with respect to communications, technology use, and team diversity.

5. Use at least three quality resources in this assignment. Note: Wikipedia and similar websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Describe the process of administering enterprise systems, including the use of virtualization and monitoring, and power and cooling issues.

· Use technology and information resources to research issues in enterprise architecture.

· Write clearly and concisely about enterprise architecture topics using proper writing mechanics and technical style conventions.

Grading for this assignment will be based on answer quality, logic / organization of the paper, and language and writing skills, using the following rubric.

Assignment 2: IT Support for Virtual Teams
Criteria Unacceptable

Below 60% F

Meets Minimum Expectations

60-69% D

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Examine five issues that the IT department is likely to face when it comes to supporting virtual teams.

Weight: 15%

Did not submit or incompletely examined five issues that the IT department is likely to face when it comes to supporting virtual teams. Insufficiently examined five issues that the IT department is likely to face when it comes to supporting virtual teams. Partially examined five issues that the IT department is likely to face when it comes to supporting virtual teams. Satisfactorily examined five issues that the IT department is likely to face when it comes to supporting virtual teams. Thoroughly examined five issues that the IT department is likely to face when it comes to supporting virtual teams.
2. Describe five advantages and five disadvantages of using virtual teams for the organizations described in the scenario.

Weight: 25%

Did not submit or incompletely described five advantages and five disadvantages of using virtual teams for the organizations described in the scenario. Insufficiently described five advantages and five disadvantages of using virtual teams for the organizations described in the scenario. Partially described five advantages and five disadvantages of using virtual teams for the organizations described in the scenario. Satisfactorily described five advantages and five disadvantages of using virtual teams for the organizations described in the scenario. Thoroughly described five advantages and five disadvantages of using virtual teams for the organizations described in the scenario.
3a. Describe challenges imposed by IT / IS national standards and propose how they could be handled or resolved.

Weight: 10%

Did not submit or incompletely described challenges imposed by IT / IS national standards and did not submit or incompletely proposed how they could be handled or resolved. Insufficiently described challenges imposed by IT / IS national standards and insufficiently proposed how they could be handled or resolved. Partially described challenges imposed by IT / IS national standards and partially proposed how they could be handled or resolved. Satisfactorily described challenges imposed by IT / IS national standards and satisfactorily proposed how they could be handled or resolved. Thoroughly described challenges imposed by IT / IS national standards and thoroughly proposed how they could be handled or resolved.
3b. Describe challenges imposed by protocols and propose how they could be handled or resolved.

Weight: 10%

Did not submit or incompletely described challenges imposed by protocols and did not submit or incompletely proposed how they could be handled or resolved. Insufficiently described challenges imposed by protocols and insufficiently proposed how they could be handled or resolved. Partially described challenges imposed by protocols and partially proposed how they could be handled or resolved. Satisfactorily described challenges imposed by protocols and satisfactorily proposed how they could be handled or resolved. Thoroughly described challenges imposed by protocols and thoroughly proposed how they could be handled or resolved.
3c. Describe challenges imposed by procedures on virtual teams and propose how they could be handled or resolved.

Weight: 10%

Did not submit or incompletely described challenges imposed by procedures on virtual teams and did not submit or incompletely proposed how they could be handled or resolved. Insufficiently described challenges imposed by procedures on virtual teams and insufficiently proposed how they could be handled or resolved. Partially described challenges imposed by procedures on virtual teams and partially proposed how they could be handled or resolved. Satisfactorily described challenges imposed by procedures on virtual teams and satisfactorily proposed how they could be handled or resolved. Thoroughly described challenges imposed by procedures on virtual teams and thoroughly proposed how they could be handled or resolved.
4. Compare and contrast virtual teams and traditional teams with respect to communications, technology use, and team diversity.

Weight: 15%

Did not submit or incompletely compared and contrasted virtual teams and traditional teams with respect to communications, technology use, and team diversity. Insufficiently compared and contrasted virtual teams and traditional teams with respect to communications, technology use, and team diversity. Partially compared and contrasted virtual teams and traditional teams with respect to communications, technology use, and team diversity. Satisfactorily compared and contrasted virtual teams and traditional teams with respect to communications, technology use, and team diversity. Thoroughly compared and contrasted virtual teams and traditional teams with respect to communications, technology use, and team diversity.
5. 3 references

Weight: 5%

No references provided Does not meet the required number of references; all references poor quality choices. Does not meet the required number of references; some references poor quality choices. Meets number of required references; all references high quality choices. Exceeds number of required references; all references high quality choices.
6. Clarity, writing mechanics, and formatting requirements

Weight: 10%

More than 8 errors present 7-8 errors present 5-6 errors present 3-4 errors present 0-2 errors present

Assignment 3: Virtualization and the Cloud Computing World

The popularity and rapid adoption of Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) by a number of organizations has impacted internal IT / IS departments. These services provide a virtualization infrastructure that covers data storage, networking, desktop computing, mobile computing, and so on.

Write a two to three page paper in which you:

1. Describe at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS.

2. Evaluate the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI).

3. Examine the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1.

4. Analyze three considerations that the organization’s management should be aware of.

5. Examine three security issues that could arise from this type of an infrastructure.

6. Use at least three quality resources in this assignment. Note: Wikipedia and similar websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Describe the process of administering enterprise systems, including the use of virtualization and monitoring, and power and cooling issues.

· Evaluate the total cost of ownership and return on investment for enterprise architecture alternatives.

· Evaluate the use of technology and information resources to research issues in Cloud and strategic networks.

· Use technology and information resources to research issues in enterprise architecture.

· Write clearly and concisely about enterprise architecture topics using proper writing mechanics and technical style conventions.

Grading for this assignment will be based on answer quality, logic / organization of the paper, and language and writing skills, using the following rubric.

Assignment 3: Virtualization and the Cloud Computing World
Criteria Unacceptable

Below 60% F

Meets Minimum Expectations

60-69% D

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Describe at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS.

Weight: 10%

Did not submit or incompletely described at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS. Insufficiently described at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS. Partially described at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS. Satisfactorily described at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS. Thoroughly described at least three items that an organization’s IT / IS department should consider when an organization’s strategy calls for the use of SaaS, PaaS, or IaaS.
2. Evaluate the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI). Weight: 20% Did not submit or incompletely evaluated the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI). Insufficiently evaluated the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI). Partially evaluated the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI). Satisfactorily evaluated the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI). Thoroughly evaluated the ways that SaaS, PaaS, and IaaS are used to reduce Total Cost of Ownership (TCO) and increase Return on Investment (ROI).
3. Examine the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1.

Weight: 10%

Did not submit or incompletely examined the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1. Insufficiently examined the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1. Partially examined the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1. Satisfactorily examined the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1. Thoroughly examined the impact to the IT support personnel when an organization embarks on the strategy stated in Question 1.
4. Analyze three considerations that the organization’s management should be aware of.

Weight: 30%

Did not submit or incompletely analyzed three considerations that the organization’s management should be aware of. Insufficiently analyzed three considerations that the organization’s management should be aware of. Partially analyzed three considerations that the organization’s management should be aware of. Satisfactorily analyzed three considerations that the organization’s management should be aware of. Thoroughly analyzed three considerations that the organization’s management should be aware of.
5. Examine three security issues that could arise from this type of an infrastructure.

Weight: 15%

Did not submit or incompletely examined three security issues that could arise from this type of an infrastructure. Insufficiently examined three security issues that could arise from this type of an infrastructure. Partially examined three security issues that could arise from this type of an infrastructure. Satisfactorily examined three security issues that could arise from this type of an infrastructure. Thoroughly examined three security issues that could arise from this type of an infrastructure.
6. 3 references

Weight: 5%

No references provided Does not meet the required number of references; all references poor quality choices. Does not meet the required number of references; some references poor quality choices. Meets number of required references; all references high quality choices. Exceeds number of required references; all references high quality choices.

Assignment 4: Creating and Communicating a Security Strategy

As an IT professional, you’ll often be required to communicate policies, standards, and practices in the workplace. For this assignment, you’ll practice this important task by taking on the role of an IT professional charged with creating a memo to communicate your company’s new security strategy.

The specific course learning outcomes associated with this assignment are:

· Analyze the importance of network architecture to security operations.

· Apply information security standards to real-world implementation.

· Communicate how problem-solving concepts are applied in a business environment.

· Use information resources to research issues in information systems security.

· Write clearly about network security topics using proper writing mechanics and business formats.

Preparation

1. Review the essential elements of a security strategy

A successful IT administration strategy requires the continuous enforcement of policies, standards, and practices (procedures) within the organization. Review these elements to see how they compare:

Policy The general statements that direct the organization’s internal and external communication and goals.
Standards Describe the requirements of a given activity related to the policy. They are more detailed and specific than policies. In effect, standards are rules that evaluate the quality of the activity. For example, standards define the structure of the password and the numbers, letters, and special characters that must be used in order to create a password.
Practices The written instructions that describe a series of steps to be followed during the performance of a given activity. Practices must support and enhance the work environment. Also referred to as procedures.

2. Describe the business environment

You are the IT professional in charge of security for a company that has recently opened within a shopping mall. Describe the current IT environment at this business. You can draw details from a company you work for now or for which you have worked in the past. You’ll need to get creative and identify the details about this business that will influence the policies you’ll create. For example, does the company allow cell phone email apps? Does the company allow web mail? If so, how will this affect the mobile computing policy? Describe all the details about this business environment that will be necessary to support your strategy.

3. Research sample policies

Familiarize yourself with various templates and sample policies used in the IT field. Do not just copy another company’s security policy, but rather learn from the best practices of other companies and apply them to yours. Use these resources to help structure your policies:

· Information Security Policy Templates

· Sample Data Security Policies

· Additional Examples and Tips

Instructions

With the description of the business environment (the fictional company that has opened in a shopping mall) in mind and your policy review and research complete, create a new security strategy in the format of a company memo (no less than three to five pages) in which you do the following:

1. Describe the business environment and identify the risk and reasoning Provide a brief description of all the important areas of the business environment that you’ve discovered in your research. Be sure to identify the reasons that prompted the need to create a security policy.

2. Assemble a security policy Assemble a security policy or policies for this business. Using the memo outline as a guide, collect industry-specific and quality best practices. In your own words, formulate your fictional company’s security policy or policies. You may use online resources, the Strayer Library, or other industry-related resources such as the National Security Agency (NSA) and Network World. In a few brief sentences, provide specific information on how your policy will support the business’ goal.

3. Develop standards Develop the standards that will describe the requirements of a given activity related to the policy. Standards are the in-depth details of the security policy or policies for a business.

4. Develop practices

Develop the practices that will be used to ensure the business enforces what is stated in the security policy or policies and standards.

Format your assignment according to the following formatting requirements:

· This papers requires writing in a business format . Review this resource to learn more about the important features of business writing: The One Unbreakable Rule in Business Writing.

· You may use the provided memo outline as a guide for this assignment, or you may use your own. Get creative and be original! (You should not just copy a memo from another source.) Adapt the strategy you create to your “company” specifically. In the workplace, it will be important to use company standard documents for this type of communication.

· Do not cut and paste someone else’s strategy. Plagiarism detection software will be used to evaluate your submissions.

Note: This assignment will be run through SafeAssign plagiarism detection software and an originality report will automatically be sent to the instructor.

Rubric

Grading for this assignment will be based on answer quality, logic/organization of the memo, and language and writing skills, using the following rubric.

Assignment 4: Creating and Communicating a Security Strategy
Criteria Unacceptable

Below 60% F

Meets Minimum Expectations

60-69% D

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Describe the business and identify the risk and reasoning

Weight: 20%

Does not describe the business and does not submit or incompletely identifies the risk and reasoning. Insufficiently describes the business.

The risk is unclear and there is not a clear connection to a reason.

Partially describes the business.

The risk is stated but the reasoning needs more supporting details.

More details and a clear connection to the risk would improve this section.

Satisfactorily describes the business.

The risk is identified and the reasoning has some supporting details.

Thoroughly describes the business.

The risk is clearly identified and the reasoning has well-supported detail to connect the risk to the reasoning.

2. Assemble a security policy or policies for the business Weight: 25% Does not submit or incompletely assembles a security policy or policies for the business. The policy is missing major elements and does not communicate how it would support the business goal. The policy includes some elements and partially indicates how it would support the business’ goal, but was lacking supporting details. The policy includes most elements and satisfactorily indicates how it would support the business’ goal, but was lacking supporting details. The policy includes all the necessary elements and clearly indicates how it will support the business’ goal.
3. Develop standards

Weight: 25%

Does not submit or incompletely develops standards. The standards are not fully developed and do not describe the requirements of the activity. The standards partially describe some of the requirements of the activity but lack the details necessary to make them complete. The standards satisfactorily describe many of the requirements of the activity but could use more details. The standards thoroughly describe all the requirements of the activity and include sound, in-depth details.
4. Develop practices

Weight: 25%

Does not submit or incompletely develops practices. The practices do not include enough description to ensure the business can enforce what is stated in the policies and standards.

The written instructions do not include steps or enough steps to make them complete.

The practices partially describe how to ensure the business can enforce what is stated in the policies and standards.

The written instructions include some steps, but they could be expanded to make them complete.

The practices satisfactorily address how to ensure the business can enforce what is stated in the policies and standards.

The written instructions include many of the necessary steps, but additional steps and details would improve the instructions.

The practices thoroughly address how to ensure the business can enforce what is stated in the policies and standards.

The written instructions include all the necessary steps and have well-supporting details.

5. Clarity, writing mechanics, and business

formatting require- ments

Weight: 5%

The writing lacks clarity.

Formatting is not appropriate for business.

The writing lacks some clarity.

Formatting is not appropriate for business.

The writing is beginning to show clarity.

Business formatting is partially applied.

The writing is mostly clear and business formatting is apparent.

Some minor adjustments would improve the overall format.

The writing is professional and clear.

The formatting is excellent and aligned with business requirements.

Additional Examples and Tips

Example 1: XYZ Inc. Company-Wide Employee Password Strategy

Policies

. All users must have a password.

. Passwords must be changed every six months.

Standards

. A password must have a minimum of six characters.

. A password must have a maximum of 12 characters.

. A password must contain letters, numbers, and special characters other than $.

Practices-Employee

· Create a password. The UserID should be an EmployeeID already generated by HR.

· Send a request to create the account to the Information Technology (IT) department.

· User receives a temporary password.

· Users must change their temporary password the first time they log in.

Example 2: Security Policy and Standards Password Policy: Passwords are an important part of computer security at your organization. They often serve as the first line of defense in preventing unauthorized access to the organization’s computers and data.

In order to define the password policy, it is important to identify the standards.

1. Multi-factor authentication

2. Password strength standard

3. Password security standards; how to keep the password secure

Tips and Points to Consider When Identifying Risks or Security Vulnerabilities

. Flaws in operating systems due to constant attack by malware

. Denial of services attacks

. Employees data theft

. User set a weak password or password that is easy to guess, such as a birthday or child’s name.

. User leaves sensitive data on an unlocked, unattended computer

. Organization allows sensitive data on a laptop that leaves the building

. Data can be accessed remotely without using proper security

Memo Outline

https://lh4.googleusercontent.com/kHAMgXT5Uz3xrL4gsZcxSrnQQQAoxv2fx6zJk6gDN7gdIEvixN7lANjtZhBi4pnqqGluBD0Omsax3hOQVx8Fg8HegNNVFQ57e9DBE-guGgmzemnww3qCmPPne7Iw7HG_m2vHJCxm1zC-yCcdzw

Network Security Associates of Atlantis, Inc. 123 Watery Lane Atlantis, USVI 91199

From: IT Security Dept. Re: Security Policy

Date:

Section 1: General Policies and Motivation

Section 2: Passwords

Section 3: Biometrics

Section 4: Tokens

Section 5: Physical Security

Section 6: Email Policies

Section 7: Breach Reporting Responsibilities

Section 8: Mobile Policy and BYOD (Bring Your Own Device)


Comments are closed.