Project 1 Multi Layered Security Plan
When developing a multi-layered security plan, you must increase security on each of the domains. Increasing the security on each of the seven domains will increase the overall security of the system and create a multi-layered security plan. In the user domain, the weak link is the user. Simple passwords can be a major problem so you must use complex passwords with eight or more characters, upper and lower case, and special characters. Passwords will be changed monthly and the same password cannot be used within a twelve month period. In the workstation domain, each workstation, whether desktop or laptop, must have antivirus and malware protection installed on them. Laptops are vulnerable to loss and theft, so laptops should have an encrypted hard drive so that if stolen, the data contained on them is not compromised. For the LAN domain, inform employees about email scams. Most users know not to open emails when on our system. Spam filters can help control junk email, so there is less risk of opening emails containing malware. In the LAN-to-WAN domain, we need to switch the FTP server to a secure FTP so that only users allowed on our system can access our FTP server. In the WAN domain, we need to have firewalls set up to filter all incoming traffic. A firewall will stop all traffic not wanted on the Richman Investments network. For the remote access domain, we need a secure VPN so that employees are not exposing sensitive data to anyone outside of our network. To do this everyone must authenticate to the system for authorization. For the systems/application domain, we must strengthen our servers. This will be done by shutting off access to unused ports and services. This will provide less ways onto our system. Our servers must have the latest patches and updates.