Assignment- IT Risk: Analyzing Personal and Business Vulnerabilities
Large organizations are not the one ones susceptible to threats of potential privacy and data security breaches. Individuals are also prone to vulnerabilities that may result in attacks and identity theft. The evolution of the Internet has resulted in an exponential growth in exploits, malware, and other types of attacks for both individuals and for e-Commerce. Imagine that you are an IT professional and Web application developer for a retail company. Part of your job entails anticipating potential risks and develop strategies to mitigate them.
Write a three to five page paper in which you:
1. Explain the major effects that the advancement of technology has provided to businesses in relation to opportunities for more efficiency, collaboration, and distributed resources. Note: Be sure to include how the security landscape has changed.
2. Analyze the major differences between the types of threats and vulnerabilities that exist between personal use and business use of the Internet.
3. Suggest two ways that you would incorporate perimeter defense into a risk management plan.
4. Your retail organization has decided to do internal Web hosting. Assume that your Website is mission critical. Speculate on the top five (5) anticipated Website attack risks. Provide specific mitigation strategies to address each risk.
5. Use at least four quality references in this assignment. Note: Wikipedia and similar Websites do not qualify as quality references.
6. Format your assignment according to the following formatting requirements:
a. Typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
The specific course learning outcomes associated with this assignment are:
• Analyze the impact of the Internet and Web applications on the business world.
• Analyze common Website attacks, weaknesses, and security best practices.
• Use technology and information resources to research issues in securing Web-based applications.
• Write clearly and concisely about Web application security topics using proper writing mechanics and technical style conventions.