Thoroughly identify possible network infrastructure vulnerabilities. Thoroughly address network vulnerabilities with the appropriate security measures. Thoroughly ensure that consideration is given to virtualization and cloud technology.
Project Deliverable 5: Network Infrastructure and Security
Due Week 8 and worth 120 points
This assignment consists of two (2) sections: an infrastructure document and a revised project plan. You must submit both sections as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for. Additionally, you may create and / or assume all necessary assumptions needed for the completion of this assignment.
With the parameters set forth at the onset of the project, present the infrastructure and security policy that will support the expected development and growth of the organization. The network solution that is chosen should support the conceived information system and allow for scalability. The network infrastructure will support organizational operations; therefore, a pictorial view of workstations, servers, routers, bridges, gateways, and access points should be used. Since the company will be merging with a multinational company, virtualization and cloud technology should be taken into consideration. In addition, access paths for Internet access should be depicted. A narrative should be included to explain all the nodes of the network and the rationale for the design. Lastly, using the Confidentiality, Integrity and Availability (CIA) Triangle, define the organizational security policy.
Section 1: Infrastructure Document
1. Write a five to ten (5-10) page infrastructure document in which you:
a. Thoroughly identify possible network infrastructure vulnerabilities. Thoroughly address network vulnerabilities with the appropriate security measures. Thoroughly ensure that consideration is given to virtualization and cloud technology.
b. Thoroughly design a logical and physical topographical layout of the planned network through the use of graphical tools in Microsoft Word or Visio, or an open source alternative such as Dia. Thoroughly explain the rationale for the logical and physical topographical layout of the planned network.
c. Thoroughly illustrate the possible placement of servers, including access paths to the Internet and firewalls. Illustrate the possible placement of servers, including access paths to the Internet and firewalls. Note: facility limitations, workstations, printers, routers, switches, bridges, and access points should be considered in the illustration.
d. Thoroughly create and describe a comprehensive security policy for the company that will:
i. Protect the company infrastructure and assets by applying the principals of CIA. Note: CIA is a widely used benchmark for evaluation of information systems security, focusing on the three (3) core goals of confidentiality, integrity, and availability of information.
ii. Address ethical aspects related to employee behavior, contractors, password usage, and access to networked resources and information.
See below for details to include.
You are currently the Chief Information Officer (CIO) for an innovative Internet-based company with gross revenues of more than $35 million dollars per year. During an executive leadership meeting, you were told that your company will be merging with a multinational company of equal size and you will be responsible for developing a project plan to strategically integrate all systems, including databases and infrastructure. The Chief Executive Officer has given you sixty (60) days to deliver an information technology project plan in anticipation of the company merger. Your company will be expanding from one (1) floor to three (3) floors within six (6) months. Since this merger will be bringing two (2) fairly equal-sized companies together under one roof, the infrastructure must be redesigned to accommodate the increased needs. Your company currently uses operational systems and relational databases but desires to expand into data warehousing. All information technology (hardware and software) must be redesigned to meet organizational needs. The solution should be implemented in either a hosted solution, on-site solution, or a hybrid model. The CEO is expecting you to integrate different technologies from different solution providers and incorporate industry best practices in connection with the development of technological systems. In addition, the CEO is extremely interested in cloud technologies and virtualization but is leery of security issues; however, the CEO is sure that you will implement proper security protocols. The company currently consists of twenty five (25) employees but is expected to increase to sixty five (65) employees when the merger is complete.
A relevant piece of this paper that I used in a previous paper
Network Infrastructure and Security
For the Mortgage Builder Software, the networking hardware and services are handled by Verizon Enterprise Solutions. They have the fastest connection speed in the Washington, DC metro area. C3CS lets Comcast Business Internet handle their networking hardware and services. They have the most reputable company with a footprint in Southfield, MI. Both companies were using a company that I did not have much knowledge of AtomOS. They have a product called Kwick Key. It is a highly integrated multi-functional solution that can support all of your Network and Communications needs. It has a complete security solution that is very comprehensive.
AtomOS
http://www.atomampd.com/kwick-key