The Information Security Plan is a critical component to the IT systems administrator. While it takes time to complete, the information within it can be critical to the organizations continued success. The security plan is a living document that should be reviewed semi-annually by the organization to keep its information up to date.
Using the document template provided, fill in the different sections of the system security plan based on the information provided below. After the plan is complete, create a presentation for the executive board profiling the major concepts in order to gain acceptance and approval by the governing board. Use the grading rubric as a guide for the project on what to include within each section.
Midterm Project: Complete sections 1-3 of the Security Plan
Hardware Infrastructure
List the hardware currently in use
Create a network diagram (Students discretion on topology design)
Note critical systems and explain why they are critical
Risk Assessment: Analyze and document the following that may occur inside and outside the company.
Risks
Threats
Vulnerabilities
Applications, Software, & Laws
List and explain how governing regulations affect the company’s operations.
Note software and applications that might be found in this organization.
List controls to prevent unauthorized access.