Is3230 Project Description
Integrated Distributors Incorporated
Project
Access Control Proposal
Purpose
This course project is intended to assess your ability to comprehend and apply the basic concepts related to information security management, such as the following:
The ability to discern when a risk assessment should be performed and carrying out the task
Understanding user or customer access requirements, whether remote or local
Using a layered security approach to establish and maintain access controls
Working with other departments, such as the human resources department, to identify and implement methods to prevent unwarranted exposure to information by inappropriate personnel
Your ability to execute the tasks within these information security domains and others will be evaluated against the learning objectives as identified and described in previous units of instruction for this course.
Learning Objectives and Outcomes
Successful completion of this project will ensure that you are capable of supporting the implementation and management of an information systems security framework. To be able to do so, you need to be able to do the following:
Relate how an access-control policy framework is used to define authorization and access to an information technology (IT) infrastructure for compliance.
Mitigate risks to an IT infrastructure’s confidentiality, integrity, and availability with sound access controls.
Relate how a data classification standard influences an IT infrastructure’s access control requirements and implementation.
Develop an access control policy framework consisting of best practices for policies, standards, procedures, and guidelines to mitigate unauthorized access.
Define proper security controls within the User Domain to mitigate risks and threats caused by human nature and behavior.
Implement appropriate access controls for information systems within IT infrastructures.
Mitigate risks from unauthorized access to IT systems
Project
Access Control Proposal
Purpose
This course project is intended to assess your ability to comprehend and apply the basic concepts related to information security management, such as the following:
The ability to discern when a risk assessment should be performed and carrying out the task
Understanding user or customer access requirements, whether remote or local
Using a layered security approach to establish and maintain access controls
Working with other departments, such as the human resources department, to identify and implement methods to prevent unwarranted exposure to information by inappropriate personnel
Your ability to execute the tasks within these information security domains and others will be evaluated against the learning objectives as identified and described in previous units of instruction for this course.
Learning Objectives and Outcomes
Successful completion of this project will ensure that you are capable of supporting the implementation and management of an information systems security framework. To be able to do so, you need to be able to do the following:
Relate how an access-control policy framework is used to define authorization and access to an information technology (IT) infrastructure for compliance.
Mitigate risks to an IT infrastructure’s confidentiality, integrity, and availability with sound access controls.
Relate how a data classification standard influences an IT infrastructure’s access control requirements and implementation.
Develop an access control policy framework consisting of best practices for policies, standards, procedures, and guidelines to mitigate unauthorized access.
Define proper security controls within the User Domain to mitigate risks and threats caused by human nature and behavior.
Implement appropriate access controls for information systems within IT infrastructures.
Mitigate risks from unauthorized access to IT systems