Question

A small research company in Sydney is working to develop a new method of mass storage to replace current storage technology. Four engineers and an office manager working there. The engineers are highly skilled professionals, and the office manager is a capable computer user. The company has a high-bandwidth internet connection because employees must conduct research frequently. The employees have hopes of making a breakthrough and bringing the company public within the next two years. You have been hired as a security consultant to assess the company’s needs. Write a paper recommending what type of security policy should be used (open, moderately restrictive, or highly restrictive) and what security technologies should be used. On what areas should the security policy focus (Physical security, data security, auditing, passwords, and so forth), and what technologies should be used to secure these areas?

please answer in 30 mints and the subject is data commnication and network?

Answer 1

Answer:

Type of security policy should be used :

• All employees in this company appear to be on the same page when the information is accessed and used. The State Machine Model, which is an open security policy, should therefore be used.
• This means that each PC or server is safe and that it tends to be open to the other network networks with unrestricted access to each other.
• But the systems are secured from outside the network. This form of access has certain benefits, such as that any computer may interrupt and turn off in the case of an incursion. Or enter an inoperative state that protects other network systems and prevents unauthorized access.

Security technologies should be used:

• Firewall, DMZ, Citrix, or some kind of remote access system should be available. This will allow for greater network security. By utilizing a firewall, the outer environment may be hidden or block entry to the structures behind it.
• Protected Engineer Control to Knowledge includes a DMZ. In addition to disseminating information on the forthcoming breakthrough.

Areas of the security policy focus :

• In view of the way most engineers work and the fact that these people work together well. Only a small amount of physical security by building entry and a secured server room is required.
• To then be on the safe side, the LOJACK tracking system needs to be added to all of the systems on the premises, which enables immediate detection if an asset is lost.
• Computer security and auditing are applied primarily to record who accesses what and when.
• This is a cutting-edge analysis that is ready to change the mass storage industry.
• This may actually entail "billions" of dollars for them. All the material housed here is thus practically priceless.

Technologies should be used to secure these areas:

• Safe Building Entrance Access Cards and Server Room Access. For this, Data Watch is a good company. Cisco for network appliances is almost unprecedented in the safety area of the network, and its products have proven to be the hardest to defeat.
• Microsoft can be introduced on all desktops and virtually all servers, as the Active Directory model guarantees auditing and passwords of all network-level files. Linux is equivalent to Bullet Proof efficiency ranking for the "High Availability" server.