Infrastructure document

This assignment consists of two sections: an infrastructure document and a revised project plan. You must submit both sections as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for. Additionally, you may create and/or assume all necessary assumptions needed for the completion of this assignment.

With the parameters set forth at the onset of the project, present the infrastructure and security policy that will support the expected development and growth of the organization. The network solution that is chosen should support the conceived information system and allow for scalability. The network infrastructure will support organizational operations; therefore, a pictorial view of workstations, servers, routers, bridges, gateways, and access points should be used. Since the company will be merging with a multinational company, virtualization and cloud technology should be taken into consideration. In addition, access paths for Internet access should be depicted. A narrative should be included to explain all the nodes of the network and the rationale for the design. Lastly, using the Confidentiality, Integrity and Availability (CIA) Triangle, define the organizational security policy.

INSTRUCTIONS

Section 1: Infrastructure Document

Write a 5–10 page infrastructure document in which you:

1. Identify possible network infrastructure vulnerabilities. Address network vulnerabilities with the appropriate security measures. Ensure that consideration is given to virtualization and cloud technology.
2. Design a logical and physical topographical layout of the planned network through the use of graphical tools in Microsoft Word or Visio, or an open source alternative such as Dia. Explain the rationale for the logical and physical topographical layout of the planned network. Note: The graphically depicted solution is not included in the required page length.
3. Illustrate the possible placement of servers, including access paths to the Internet and firewalls. Note: facility limitations, workstations, printers, routers, switches, bridges, and access points should be considered in the illustration.
4. Create and describe a comprehensive security policy for the company that will:
   1. Protect the company infrastructure and assets by applying the principals of CIA. Note: CIA is a widely used benchmark for evaluation of information systems security, focusing on the three core goals of confidentiality, integrity, and availability of information.
   2. Address ethical aspects related to employee behavior, contractors, password usage, and access to networked resources and information.

This course requires the use of Strayer Writing Standards. For assistance and information, please refer to the Strayer Writing Standards link in the left-hand menu of your course. Check with your professor for any additional instructions.

Solution

Vulnerabilities may exist with employees , the procedures , the way the data is transmitted , and on the hardware installations . A vulnerability would exist in the event ; there is the absence of exploiting countermeasures . Even if a corporation would take the appropriate measures to exploit vulnerabilities , vulnerabilities can still penetrate the system . Vulnerabilities can cause unrepairable damages . The most crucial step to take to identify possible network infrastructure vulnerabilities is to plan and address all the network vulnerabilities appropriately . A Network Security Design could help prevent infiltration of the system . A network design that addresses the vulnerabilities can help the company prepare in the event the company suffers from a breach .

Considerations of the plan should also include budgeting , workarounds , SLAs , and documentation that helps arrange for different kinds of vulnerabilities . Other security measures include a Disaster Recovery Plan , a Business Continuity Plan , and Incident Management . Different types of security implementation measures can help cover many aspects of the business , including those that are new to the network , such as cloud base applications . Addressing vulnerabilities from the physical layers to logical , and administrative can help prevent un – reversible damages for the business . Some of the network vulnerabilities are listed below : 1 . Insecure ports . 2 . Bad data encryption . 3 . Bad functionality of the Network 4 . Bad OS commands .

Section 2: Revised Project Plan

Use Microsoft Project to:

1. Update the project plan (summary and detail) template, from Project Deliverable 4: Cloud Technology and Virtualization, with 3–5 new project tasks each consisting of 5–10 subtasks.

The specific course learning outcome associated with this assignment is:

• Prepare a design document proposing the configuration of a secure network infrastructure and a security policy to protect company assets.

Requirements: 5-10 page