COM 510 Management of Information Security

COM 510 Management of Information Security

Table of Contents

Order ID# 45178248544XXTG457	Plagiarism Level: 0-0.5%	Writer Classification: PhD competent
Style: APA/MLA/Harvard/Chicago	Delivery: Minimum 3 Hours	Revision: Permitted
Sources: 4-6	Course Level: Masters/University College	Guarantee Status: 96-99%

Instructions

COM 510 Management of Information Security

Security Assessment Assignment Guidelines

Project Description

The objective of this assignment is to apply what you have learned in this course to carry out a simple exercise of doing

an assessment of the cybersecurity measures put in place in a fictitious business organization. Since this is a paper-based

exercise, you can assume the organization to be any business entity such as such as – a college bookstore that accepts

online textbook purchases, a pharmacy store that maintains a database of customer prescriptions, an auto-insurance

agency that maintains customer data, a car rental business, a travel agency that handles flight and hotel reservations for

clients, etc.

You can imagine yourself being hired as an Info Security consultant to perform a security audit of the fictitious

company’s IT infrastructure. Assume that some rudimentary security measures are currently in place, but there is much

room for improvement. For your project report describe your assessment of the security measures currently in place

and recommend any needed improvements to ensure better IT security in the organization.

For the project, you can do a security assessment on either a single IT system or the entire IT infrastructure of an

Organization, whichever you think is feasible and manageable.

You may use any NIST Special Publications (e.g. SP800-171, SP1800), or any other national framework as a guide to assist

in your report.

Deliverables: A project report describing your security assessment, as a single Word document

Submit your project to the Security Assessment Dropbox. Due date: End of Week 8 (no later than 11:59 PM Sunday, July 3rd).

You can use the following general guidelines for your project report:

Your project report just needs to be a general assessment of the cybersecurity posture of a business entity. It should be

6-8 pages long (not including the cover page), 12 point character size, 1.15 line spacing, and have 1” margins on all sides.

Your report should include a description of the organization, nature of its business, analysis of the results, and

Recommendations for improvement in the form of an action plan.

The project report should broadly cover the following areas:

1) Description of the organization – core operational area, corporation mission & vision, role of information

Security in the organization.

2) An assessment of the organization’s documented security policies (Assume that you have been provided access

To its EISP and ISSPs documents outlining its various policies. You can look at some sample EISPs and IISPs on the

Internet for ideas of what would be appropriate for the organization)

3) The management controls that are currently in place to secure their IT systems

4) The operational controls that are currently in place to secure their IT systems, and

5) The technical controls that are currently in place to secure their IT systems

6) Results of security assessment – strengths of existing security posture and identification of weakness that need

To be addressed. Include a prioritized list of vulnerabilities that need attention.

7) Recommendations for improvement and an action plan detailing steps for implementing them.

Remember, the main purpose of this project is only to give you an idea of how such assessments are carried out in

Practice.

RUBRIC
Excellent Quality 95-100%	Introduction 45-41 points The background and significance of the problem and a clear statement of the research purpose is provided. The search history is mentioned.		Literature Support 91-84  points The background and significance of the problem and a clear statement of the research purpose is provided. The search history is mentioned.			Methodology 58-53 points Content is well-organized with headings for each slide and bulleted lists to group related material as needed. Use of font, color, graphics, effects, etc. to enhance readability and presentation content is excellent. Length requirements of 10 slides/pages or less is met.
Average Score 50-85%	40-38 points More depth/detail for the background and significance is needed, or the research detail is not clear. No search history information is provided.		83-76  points Review of relevant theoretical literature is evident, but there is little integration of studies into concepts related to problem. Review is partially focused and organized. Supporting and opposing research are included. Summary of information presented is included. Conclusion may not contain a biblical integration.			52-49  points Content is somewhat organized, but no structure is apparent. The use of font, color, graphics, effects, etc. is occasionally detracting to the presentation content. Length requirements may not be met.
Poor Quality 0-45%	37-1 points The background and/or significance are missing. No search history information is provided.		75-1 points Review of relevant theoretical literature is evident, but there is no integration of studies into concepts related to problem. Review is partially focused and organized. Supporting and opposing research are not included in the summary of information presented. Conclusion does not contain a biblical integration.			48-1 points There is no clear or logical organizational structure. No logical sequence is apparent. The use of font, color, graphics, effects etc. is often detracting to the presentation content. Length requirements may not be met
You Can Also Place the Order at www.perfectacademic.com/orders/ordernow or www.crucialessay.com/orders/ordernow COM 510 Management of Information Security

COM 510 Management of Information Security

PLACE THE ORDER WITH US TODAY AND GET A PERFECT SCORE!!!