Question

In: Computer Science

You are the Senior Systems Administrator for a community based charity. Your charity is involved in...

You are the Senior Systems Administrator for a community based charity. Your charity is involved

in locating and providing accommodation, mental health services, training and support services to

disadvantaged people in the community.

Your charity currently runs a small data centre that has some 50 x86 64 bit servers running mainly

Windows Server 2008 R2 for desktop services, database and file services. It also has about 10 Red

Hat Enterprise Linux 5 servers for public facing Web pages, services and support.

Your charity is considering joining a community cloud provided by a public cloud vendor in order

to provide a number of applications to all 500 support staff and administrative users. The

community cloud would also be used to store the charity’s 200TB of data. This data contains a

considerable amount of confidential information about the people to whom the charity provides

services. A small number of the charity’s applications are mission critical and the data that those

applications use is both confidential and time sensitive.

The cloud vendor has made a presentation to management that indicates that operational costs

will drop dramatically if the cloud model is adopted. You are asked to assess whether this model is

in the best interests of the business.

Describe the steps that you would take to do a Risk Management assessment of this proposal.

20. Ramgovind, Eloff and Smith proposed in their 2010 paper that an information security analysis

should include the requirements of Identification and authorisation, authorisation,

confidentiality, Integrity, non-repudiation and availability. Discuss whether these

requirements are adequate for a proper security assessment for a proposed move to an IaaS

model for the charity.

21. A potential migration to the Cloud raises many issues around Governance. Discuss the

governance issues that you see arising from a migration of on-premise servers to an IaaS

model.

22. The charity’s board has proposed a move to migrate its servers to an IaaS model. Discuss the

methods that you would propose to the board to assess the SLA of the Cloud Provider. (10

marks)

23. The board has decided, as an initial step, to move the office automation and database servers

to the AWS cloud in order to begin the migration process, and test their strategy. Describe ten

steps that you would include in the plan to migrate these services.

Solutions

Expert Solution

Risk management assessment must include:

1. Data and application security.

2. Resistance to any/all type of vulnerabilities, data loss/risks and any malware attacks such as brute force attack.

3.The run and execution time operational risk associated with data processing.

4. Remedies against the bugs/worms and action plan for data protection.

20.The proposal by Ramagovind, Eloff and Smith should include data compliance, disaster recovery plan and access security norms for the environment.

21. Governance issues mostly include - process administration and monitoring from security point of view, data migration issues related to offline and online migration.

22. Service Level Agreement(SLA)plan should include policies for data protection and regulation, compliance against the unauthorized accesses and migration strategy from On-premise to IaaS.

23. The 10 steps which will provide a clear scenario of migration will be

- Backup plan for existing servers to avoid any kind of losses

- Backup storage and access

- Migration pre-requisites such environment readiness, memory and storage configuration.

- Migration initiation by administrator.

- Migration process monitoring and its ETA.

- Migration items and the process flow

- Target IaaS specification/s.

- Migration sign off document to prove its completion and latency.

- Post migration steps for the readiness

- Final testing and cross check between source (On-premise) and target environments(IaaS).


Related Solutions

ou are the Senior Systems Administrator for a community based charity. Your charity is involved in...
ou are the Senior Systems Administrator for a community based charity. Your charity is involved in locating and providing accommodation, mental health services, training and support services to disadvantaged people in the community. Your charity currently runs a small datacentre that has some 50 x86 64 bit servers running mainly Windows Server 2008 R2 for desktop services, database and file services. It also has about 10 Red Hat Enterprise Linux 5 servers for public facing Web pages, services and support....
You are the senior system administrator in your company and are known for your Active Directory...
You are the senior system administrator in your company and are known for your Active Directory expertise. Your specialty is Group Policy Objects (GPO) and tracking changes. Your boss tells everyone about a tool developed by Microsoft called “Policy Analyzer” for tracking changes and troubleshooting GPO. He would like you to conduct a “lunch and learn” about Policy Analyzer for your Windows Administration Team. You realize that the product’s name has been changed to “Microsoft Security Configuration Toolkit”. Diplomatically conduct...
The focus of Chapter 9 is home health and related community- based systems. What are your...
The focus of Chapter 9 is home health and related community- based systems. What are your experiences with such settings? Do you expect to have more contact with them in the future?
Imagine that you are a systems administrator withing your company that has decided to leverage Azure...
Imagine that you are a systems administrator withing your company that has decided to leverage Azure for resource deployment. You have done research on Azure and learned about Azure Automation and how it can help simplify some of the management and configuration activities you execute on a daily, weekly, and monthly basis. You decide that you want to recommend piloting Azure Automation to show the value, but need to decide on one or two tasks to prove the value of...
as part of your senior class grade, you are required to do 40 hours of community...
as part of your senior class grade, you are required to do 40 hours of community service at a homeless shelter, explain what you see in the shelter based on the issues of poverty in the united states?
This week you learned about home health, community-based, and public health information systems. You will describe...
This week you learned about home health, community-based, and public health information systems. You will describe how these systems promote safety by preventing errors and adverse effects.
You’ve implemented the Academic Database in a local school in your community. The school’s administrator decides,...
You’ve implemented the Academic Database in a local school in your community. The school’s administrator decides, there’s no need for database backup and recovery plan because all their computers are new. Explain in 100 to 150 words why there needs to be a disaster recovery plan.
based on your community: A) What is the role of a community health nurse in assisting...
based on your community: A) What is the role of a community health nurse in assisting families in the care of the elderly in their homes? B) What are some of the barriers related to the initiation of home care services in communities? C) How does living in an urban area versus a rural area affect home care services?
How can you a an administrator be involved in a case regarding suspected physician incompetency? (1...
How can you a an administrator be involved in a case regarding suspected physician incompetency? (1 paragraph please)
You and your senior auditor are auditing VAX LLC Muscat. Your senior auditor asked you to...
You and your senior auditor are auditing VAX LLC Muscat. Your senior auditor asked you to check whether there is any doubt over VAX LLC’s ability to continue as going concern. You know that you may have to check multiples details to ensure the ability to continue as going concern like if there is any abnormal fluctuation in key financial ratios or variables, future risk prospectus of the business etc. You evaluated the pros and cons of various methods of...
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT