CIS5205 Assignment 1 assesses two-course objectives:
1. analyse information security threats, attacks and vulnerabilities and determine appropriate security architecture, design and controls that can be applied to mitigate the potential risks
2. communicate effectively written and orally about the management of information security in organisations.
This assignment 1 written report requires you to provide written answers to Tasks 1 and 2 that are supported by desktop research, in-text referencing and reference list
Task 1 Role of people in operational security (30 marks in total)
Review the current literature on the role of people in operational security as a potential risk to information assets versus a potential aide to improving security in organisations.
Task 1.1 Identify and describe two ways an employee could intentionally or unintentionally compromise the information technology and communications assets in an organisation (10 marks about 250 words)
Task 1.2 Describe how security awareness and training could facilitate employees in playing a proactive role in improving the security of an organisation’s information technology and communications assets (20 marks about 500 words)
Task 2 Role of Physical security in a data centre (50 marks in total)
Review the current literature on the role of physical security in a data centre in order to address the following tasks
Task 2.1 Identify and describe two key risks to the information stored in a data centre elevated by poor physical security (20 marks about 500 words)
Task 2.2 Explain what physical security controls would be put in place in a data centre to reduce these potential risks to security of information to an acceptable level (30 marks about 750 words)