Homework answers / question archive / Choose an organization, preferably one that you work in, have worked in, or are familiar with

Choose an organization, preferably one that you work in, have worked in, or are familiar with

Computer Science

Share With

Choose an organization, preferably one that you work in, have worked
in, or are familiar with. You will be wearing the hat of the Chief
Information Security Officer (CISO) for that organization. You will be
planning its Cybersecurity strategy, defining all assets that require
safeguarding, and identifying all components and controls. You will
propose a Cybersecurity Strategy for your organization, a plan for an
effective, collaborative, organization-wide cybersecurity posture and
defence.
Your Strategy should identify crosscutting principles and apply these
principles across IT Strategy goals. Within those goals, the Cybersecurity
Strategy should identify the main objectives, with associated major tasks
and activities. The Cybersecurity Strategy should also establish the
guiding principles and strategic approach needed to drive both near- and
long-term priorities for your organisation cybersecurity. It should be
aligned with related frameworks and strategies, including the National
Cybersecurity Authority (NCA)'s Essential Cybersecurity Control
(ECC-1:2018).

Task Expected Deliverables
Task 1 Describe in detail the intrusion detection and prevention
measures that you will deploy in your organization. Your
discussion should also include the following:
[T1.1] IDS type and why you will need it
[T1.2] IPS type and why you will need it
[T1.3] The proposal of the appropriate positions for
IDS/IPS in a network topology in order to increase the
security of the environment, along with providing
supportive justifications of the proposed positions.
Task 2 • According to your organization, discuss the security
measures you will apply to:
[T2.1] Ensure software quality, security and reliability.
[T2.2] Secure and harden your OS
Task 3 • [T3] Propose a Cybersecurity architecture for your
organization based on Reference Strategies, and the
following references:
1. National CyberSecurity Authority (Controls and
Guidelines)
(https://nca.gov.sa/pages/legislation.html)
2. Cybersecurity for Small Business, NIST, 2019
(https://www.nist.gov/itl/smallbusinesscyber)
3. “A Cloud for Global Good,” Microsoft, 2018.
Task 4 ? [T4] Present the work you have completed in Tasks 1, 2,
3