please help me with this question
What are the biggest security risks that EMC faces? Again, list a minimum of three such risks.
book - top down network design 3rd edition
The third question from the Design Scenario asks you to design a high-level security policy for ElectroMyCycle. I would like to clarify this question.
I AM looking for no fewer than three and no more than five bullet points for each of the five components listed on page 237 of the text (the components are listed below). Just make sure that you feel that you have covered what you think is important.
Access Policy: this should do exactly what the text states. You do need to come up with a set of categories for your organization's data, and what kind of data would fit into each classification, and which types of employees (by role or position in EMC) would be allowed to read the data, write new records/update records of that type of data, delete the data, or just read the data.
Accountability Policy: you're going to need to determine exactly who uses ElectroMyCycle's network, and then give these people roles. Then you're going to need to determine which roles are accountable for what elements or components of ElectroMyCycle's network.
Authentication Policy: you're going to need to come up with a brief but effective password policy and, as the text states, come up with some kind of remote-location authentication system.
Privacy Policy: this must address issues listed in the text, especially the reasonable definition of expectations of privacy in ElectroMyCycle.
Computer-technology Purchasing Guidelines: how will ElectroMyCycle acquire, configure, and audit computer systems and networks? How will ElectroMyCycle choose vendors and interact with them?