Essay about Template: Security and Client Organization

Submitted By peatr69
Words: 3226
Pages: 13
Open Document
{CLIENT ORGANIZATION}

Security Assessment Report

March 2, 2005

Report Prepared by:

{YOUR NAME}, {YOUR CREDENTIALS}

{YOUR EMAIL ADDRESS}

{YOUR PHONE NUMBER}

{YOUR ORGANIZATION}

{YOUR MAILING ADDRESS}

Executive Summary 5

Top-Ten List 5 1. Information Security Policy 5 2. {Security Issue #2} 5 3. {Security Issue #3} 5 4. {Security Issue #4} 5 5. {Security Issue #5} 5 6. {Security Issue #6} 6 7. {Security Issue #7} 6 8. {Security Issue #8} 6 9. {Security Issue #9} 6 10. {Security Issue #10} 6

Introduction 7

Scope 7 Project Scope 7 In Scope 7 Out of Scope 7

Site Activities Schedule 7 First Day 7 Second Day 7 Third Day 7

Background Information 8

{CLIENT ORGANIZATION} 8

Asset Identification 9

Assets of the {CLIENT ORGANIZATION} 9

Threat Assessment 9

Threats to the {CLIENT ORGANIZATION} 9

Laws, Regulations and Policy 10

Federal Law and Regulation 10

{CLIENT ORGANIZATION} Policy 10

Vulnerabilities 10 The {CLIENT ORGANIZATION} has no information security policy 10 {State the Vulnerability} 10

Personnel 11

Management 11

Operations 11

Development 11

Vulnerabilities 11 There is no information security officer 11 {State the Vulnerability} 11

Network Security 12

Vulnerabilities 12 The {CLIENT ORGANIZATION} systems are not protected by a network firewall 12 {State the Vulnerability} 13

System Security 13

Vulnerabilities 13 Users can install unsafe software 13 {State the Vulnerability} 14

Application Security 14

Vulnerabilities 14 Sensitive information within the database is not encrypted 14 {State the Vulnerability} 14

Operational Security 15

Vulnerabilities 15 There is no standard for security management 15 {State the Vulnerability} 15

Physical Security 15

Vulnerabilities 15 Building Vulnerabilities 16 Several key doors within the building are unlocked or can be forced open 16 {State the Vulnerability} 16 Security Perimeter Vulnerabilities 16 There is no entryway access control system 16 {State the Vulnerability} 17 Server Area Vulnerabilities 17 The backup media are not protected from fire, theft, or damage 17 {State the Vulnerability} 17

Summary 18

Action Plan 18

References 18

Executive Summary

|Briefly describe the activities of the assessment. |
|Talk about the importance of information security at the client organization. |
|Discuss security efforts that the organization has under taken. |
|Highlight three major security issues discovered that could significantly impact the operations of the organization. |

Top-Ten List

|A top-ten list is used to highlight the ten most urgent issues discovered during an assessment. Clients unfamiliar with security |
|may be overwhelmed by a long list of problems. Putting the major issues together may allow the client to easily focus efforts on |
|these problems first. |

The list below contains the “top ten” findings, weaknesses, or vulnerabilities discovered during the site security assessment. Some of the issues listed here are coalesced from more than one section of the assessment report findings. Additional information about each is provided elsewhere in the report.

It is recommended that these be evaluated and addressed as soon as possible. These should be considered significant and may impact the operations of the {CLIENT ORGANIZATION}.

1. Information Security Policy

An information security policy is the primary guide for the implementation of all
Show More

Related Documents: Essay about Template: Security and Client Organization

Back and security needs Essay

online backup where you can store all your photos, music, e-mail messages, videos, important documents and more – without the need for a physical storage. The service is provided by sites like MyPCBackup. Here, we will have a review of the features, security level, quality of support and overall rating of the site as compared to similar online backup sites. Features First, what are the features offered by MyPCBackup? Here’s a quick look: • 100% Automated Backups The main reason why you’re subscribing…

Words 3724 - Pages 15

Nt1330 Unit 1 Case Study

54. Provide the largest RAM size that is required to support vSphere 6.0? vSphere 6.0 can support RAM of upto 12TB. 55. Discuss how VI Client Settings and VC Server Settings can be edited? To edit VI Client Settings click Edit Menu on VC and Select Client Settings to modify VI settings. To change VC Server Settings select the Administration Menu on VC and choose VC Management Server Configuration to change the VC Settings 56. Provide the meaning of virtual networking? Virtual networking is a…

Words 999 - Pages 4

Website and Custom Web Design Essay

addressed above it is felt that this business venture is not a good idea. From a financial point of view this business does not have the potential to generate a profit based on the already well-established competitions such as eBay and Kijiji. The organizations have a high traffic volume; offer free membership and have an extensive number of advertisers that utilize their respective websites and return provide additional revenues for them. In addition, Chelsea and Sienna are still students with limited…

Words 1736 - Pages 7

Cbt Case Studies

participants who completed the treatment and the effectiveness of the treatment long term. There is a chart that shows how many participates completed their program from both groups. They also figure out how effective the treatment was depending on the clients score on the 18 month follow-up questionnaire compared to their post-treatment follow-up…

Words 1417 - Pages 6

Essay about Wingtip Toys

located in Queens, New York. The company is contemplating a migration of its network infrastructure from Windows Server 2003 to Windows Server 2008. I have been asked by the senior administrator to perform an analysis for this possible upgrade. Organizations have different reasons and requirements for upgrading or migrating their software and hardware systems. Microsoft defines and publishes a support lifecycle for each of its products. As a system Administrator I recommend upgrading to a newer product…

Words 2571 - Pages 11

Financial Services: Business Plan

Plan template is designed to help you determine if you are ready to start a career as a Financial Advisor. This plan also helps MassMutual Greater Richmond to get to know you better and determine which areas we can help you grow your business. Each section is designed to ask you to think about how you would develop your markets and how you will manage the client relationships. It will be entirely up to you to develop projects, organize your time, and follow through on details with your clients. Research…

Words 1851 - Pages 8

BI Blog 1 Essay

and reporting. This is very useful for quick deployments across organizations. The Seattle based Tableau software is highly visual allowing users to easily access their data even while answering questions. One of its feature allows quick translation of the data into graphics that can be manipulated in the drag and drop interface. Since all of its training materials are incorporated online for free, it is an excellent fit for organizations that do not have large IT department lacking highly efficient…

Words 1641 - Pages 7

CW1 13000575 Essay example

Coursework 1 Template – Industry Practice in Business 6BUS1149-0206 Student Name: Do Hong Trang Pham Student number: 13000575 Coursework 1 – Industry Practice Student Name: Do Hong Trang PHAM SID: 13000575 Portfolio of Evidence In this portfolio, I will be providing example and evidence of the nine skills including problem solving and numeracy, enterprise,…

Words 4465 - Pages 18

The Rookie Chief Information Security Officer Essay

WEEK 10 TERM PAPER “The Rookie Chief Information Security Officer” Terri Cooks Professor Parker SEC 402 June 15, 2014 Part 1: Organization Chart When looking at the many different roles within the management of any organization’s security program there are some titles that stand out. One would be the CISO. The CISO is the executive whose responsibility is to maintain entire security backbone, both physical and digital. In an article written for the Sans Institute by Matthew Cho, “CISO…

Words 4750 - Pages 19

Leadership exam 1 sg Essay

professional nursing education The AACN is an organization of deans and directors of baccalaureate and higher degree nursing programs that establishes standards for programs and is concerned with legislative issues that pertain to professional nursing education. Role of the National Council of State Boards of Nursing The widespread variability in nurse practice acts prompted the ANA (later the NCSBN) to design model nurse practice acts It is to be used as a template for states to follow the ANA formed…

Words 1609 - Pages 7