Posted: May 9th, 2022

An enterprise technical infrastructure security plan

Security Plan
Introduction
An enterprise technical infrastructure security plan is essential to prevent, transfer, recognize or evade risks that are centered on technologies, processes of people. According to (Vacca, 2013), a security strategy that is well grounded helps a company to protect its integrity as well as the confidentiality of its information. This paper presents a technical infrastructure security plan for Veterans Administration.
Access Control
The organization can regulate technical access control through:
• Identifying users that are authorized to access the information systems and specifying access privileges. Organization officials responsible for approving privilege access will conduct additional scrutiny for users that need administrative privileges on information system accounts.
• Identifying accounts and setting up conditions for group membership. This will enable administrators in the group to develop and manage security groups and their memberships in the company (Lincke, 2015).
• Specifically authorizing and monitoring the utilization of guest/anonymous and temporary accounts
• The use of cryptography to safeguard the integrity and confidentiality of remote access sessions. The organization can select the encryption strength of mechanism on the basis of the security classification of the information.
• Providing access to the company’s information systems on the basis of intended system usage, valid access authorization, and other attributes the organization deems fit to grant access.

Email use
There is the need to ensure that users know the acceptable and inappropriate use of email systems. As such, the following recommendations are provided:
• Employees should mainly use the company’s system to conduct its activities and not for other purposes
• Personal use should be restricted. Extreme personal use of email, improper or unlawful content like indecent jokes, and engaging in unlawful activities should be prohibited.
• Workers should utilize their own accounts that are protected by passwords to send email
Firewall security
Specific propositions for firewall security include:
• Traffic that has a void source or destination addresses should be blocked at all times despite the location of the firewall.
• Traffic that has a void address for traffic that is incoming or destination address for traffic that is going out should be blocked at the network parameter. This is because such traffic is normally caused by spoofing, denial of service attacks or malware (Lincke, 2015)
• The firewall should be configured in such a way that it has the ability to utilize IPv6 addreses in all filtering rules that utilize IPv4 addresses
Incident Response
This section outlines the company’s response to an information security incident:
• The organization should identify an incident response team. The team may comprise of either the company’s employees only or be outsourced fully or partially. And their main responsibility will be to respond and mitigate security events that may occur in the company
• There is the need to have incident handling and reporting procedures. This is where employees take an active role in identifying, alerting, and reporting on possible security events
• Triage and analysis are also vital. Resources should be utilized to gather data from tools and systems for more assessment and to take note of indicators of compromise. The employees should possess in-depth skills and a detailed comprehension of live system responses, memory analysis, digital forensics, and malware analysis (Lincke, 2015).
• Containment and neutralization is essential as well. This is one of the most vital phases of the incidence response. As such, the organization should be able to conduct a coordinated shutdown of affected systems, wiping the infected systems, and rebuilding the systems

References
Lincke, S. (2015). Security planning: An applied approach. Springer.
Vacca, J. R. (2013). Cyber security and IT infrastructure protection. Syngress.

Check Price Discount

Study Notes & Homework Samples: Business Intelligence Paper »Community Corrections and Recidivism