Security Domains and Strategies
This project provides you an opportunity to apply the competencies gained in various units of this course to identify security challenges and apply strategies of countermeasures in the information systems environment.
Learning Objectives and Outcomes
You will learn the purpose of a multi-layered security strategy.
You will understand the information systems security (ISS) fundamentals including the definition of terms, concepts, elements, and goals.
You will incorporate the industry standards and practices with a focus on the confidentiality, integrity, availability, and vulnerabilities of information systems.
You will fulfill the role of a security professional implementing proper security controls in a specific business situation based on Systems Security Certified Practitioner (SSCP®) Common Body of Knowledge domains.
Required Source Information and Tools
To complete the project, you will need the following:
1. Access to the Internet to perform research for the project
2. Course textbook
3. (ISC)2 SSCP® Common Body of Knowledge available in the SSCP® Candidate Information
-147-Change Date: 10/25/2010
STUDENT COPY: Project
The project is divided into one smaller and one major assignment as per the details below:
Activity Name| Assigned| Due By| % Grade|
Project Part 1. Multi-Layered Security Plan| Unit 1| Unit 2| 6| Project Part 2. Student SSCP® Domain ResearchPaper| Unit 2| Unit 11| 15|
Project Part 1 Multi-Layered Security Plan
The components that make up cyberspace are not automatically secure. This includes cabling, physical networks, operating systems, and software applications that computers use to connect to the Internet. There is a raging information security war. The goal is to protect national security and business information. Therefore, IT is in great need of proper security controls.
Richman Investments is a mid-level financial investment and consulting firm. The Richman corporate headquarters is located in Phoenix, Arizona. Currently, there are eight branch offices in:
Los Angeles, California
New York City, New York
You are a networking intern at Richman Investments. This morning, you received an e-mail from your supervisor stating that you need to create an outline of the general security solutions planned for the safety of data and information that belongs to the organization. You are told that every month the
-148-Change Date: 10/25/2010
STUDENT COPY: Project
networking division needs to submit a report to the senior management about the security plan for the month, and this time, your outline will become a part of that report. Therefore, you need to research the elements of a multi-layered security plan and to create an outline. Your outline should indicate one or more general security solutions for each of the seven domains of a typical IT infrastructure.
For this project part, you may use the book for this course and the Internet to research the concept of a multi-layered security plan. Include several applicable layers for the plan, and describe at least one layer of security for each of the seven domains.
Project Part 1 should be submitted in the following format and style:
Format: Microsoft Word
Font: Arial, Size 12, Double-Space
Citation Style: Chicago Manual of Style
Length: 1–2 pages
I have included several applicable layers for the plan.
I have described at least one layer of security for each of the seven domains.
I have conducted adequate independent research for the report.
Project Part 2 Student...