The Seven Domains of a Typical It Infrastructure

In: Computers and Technology

Submitted By Rita1208
Words 563
Pages 3
Lab # 1: Assessment Worksheet
Identify Threats and Vulnerabilities in an IT Infrastructure

Course Name:____________________________________
Student Name:______________________________________
Instructor Name:__________________________________________
Lab Due Date:____________________________________
Overview
One of the most important first steps to risk management and implementing a risk mitigation strategy is to identify known risks, threat and vulnerabilities and organize them. The purpose of the seven domains of a typical IT infrastructure is to help organize the roles, responsibilities and accountabilities for risk management and risk mitigation. The lab requires students to identify risks, threats and vulnerabilities and map them to the domain that these impact from a risk management perspective.

Lab Assessment Questions
Given the scenario of a healthcare organization, answer the following Lab #1 assessment question from a risk management perspective: 1. Healthcare organizations are under strict compliance to HIPPA privacy requirements which require that an organization have proper security controls for habdling personal healthcare information (PHI) privacy data. This includes security controls for the IT infrastructure handling PHI privacy data. Which one of the listed risks, threats, or vulnerabilities can violate HIPPA privacy requirements? List one and justify your answer in one or two sentences. 2. How many threats and vulnerabilities did you find that impacted risk within each of the seven domains of a typical IT infrastructure?
User Domain:
Workstation Domain:
LAN Domain:
LAN-to-WAN Domain:
WAN Domain:
Remote Access Domain:
Systems / Application Domain: 3. Which domain (s) had the greatest numbers of risks, threats, and vulnerabilities? 4. What is the risk impact or risk factor (critical, major, minor) that you would…...

Similar Documents

Security Domains

...Security Domains & Strategies Here a Richman Investments there are several elements that are involved in our multi-layered security plan. I'm a little new at this so bear with me. I know that there seven domains of a typical IT infrastructure. I will discuss a few general security problems and solutions to those problems. I know that the user domain is by far the weakest link. User's are responsible for their use of IT assets. A good way to avoid this is to give users proper security awareness training and enforce strict policy violations. Another domain is the workstation domain. The desktop support group is responsible for the workstation domain. Ways to improve things would be to enable password protection on workstation for access and using good antivirus and malicious code policies. Up next is the LAN domain. The LAN support group is in charge of the LAN domain. This could be improved by making sure that the wiring closets, data centers, and computer rooms are locked and secure. You would have to keep in mind of your LAN-to-WAN domain. The network security group is solely responsible for the LAN-to-WAN domain. Ways to fix this would include applying strict security monitoring controls for intrusion detection and prevention and also disabling pinging, probing, and port scanning on all exterior IP devices within the LAN-to-WAN domain. Now let's talk about the WAN domain. the network engineer or WAN group is responsible for the WAN domain. Ways we......

Words: 399 - Pages: 2

7 Domains of a Typical It Infastructure

...security policy will touch 3 main domains: User, Workstation, and Lan Domains. The “Lan Domain”, this domain will be protected by limiting access to the companies infrastructure. This will include but will not be limited to: Background checks on any and all field support technicians, and limited access for all employees to data closets and server rooms (i.e. locked doors, fingerprint scanners, etc.). These precautions will help insure the integrity of the network at the lowest level. The “Workstation Domain”, this domain includes all company workstations. Only workstations approved by and set up by the company will be allowed on the network. Absolutely NO PERSONAL DEVICES will be allowed on the network without explicet permission from IT and these devices will be set up as to allow IT full access to all files and folders on the device at any given time should the need arise. All workstations will be updated, patched, and scanned regularly. All users using these workstations will be required to first be approved by management to have an account set up. Then the user will be given a username and passcode that must meet standard strong password parameters. Removable media will not be permitted unless provided by the company for official use only. Lastly AD groups will be used to control which users have access to what data on the network to ensure only users with proper authorization will have access to data in question. The “User Domain” will use an “Acceptable Use......

Words: 493 - Pages: 2

Seven Domains of a Typical It Infrastructure

...will be implemented at each level of the IT infrastructure. 2) User Domain a. The usage of security awareness training to instruct employees of Richman Investments security policies b. Auditing of user activity 3) Workstation Domain a. The usage of antivirus and anti malware programs on each user computer b. Strict access privileges to corporate data c. Deactivation of media ports 4) LAN Domain a. Utilizing network switches b. WPA 2 encryption to wireless access points c. Securing server rooms from unauthorized access 5) LAN to WAN Domain a. Closing off unused ports via a firewall to reduce the chance of unwanted network access b. Monitor inbound IP traffic, more specifically looking for inbound transmissions that show signs of malicious intent c. Run all networking hardware with up to date security patches, and operating systems 6) WAN Domain a. Enforce encryption, and VPN tunneling for remote connections b. Configure routers, and network firewalls to block Ping requests to reduce chance of Denial of Service attacks c. Enforce anti virus scanning of email attachments i. Isolate found malicious software (virus, Trojans, etc.) when found d. Deployment of redundant internet connections to maximize availability (Kim & Solomon) 7) Remote Access Domain a. Establish strict user......

Words: 271 - Pages: 2

It Infrastructure

...In an IT infrastructure, domains there can be many threats that can take down your system. There is a threat out there that can harm our system, which we need to address. I feel that our system can be improved for better security and be protective from outside threat. This report is to inform you of the domains that can be affected by outside threat. In addition, people should know when dealing which company property and data that there no room for error. Next to properly handle company data when dealing with customer information. I feel that educating our employee would cut back on human error and keep the data safe. User domain can be defined, as the access point was the person meets the computer. The person can access the system through this point depending on the level of access that have. We would need to put in an “Acceptable Use Policy” it would give the employee the information on how to handle company assets. Now there would be certain measure to where we give access to employee, but that would be handling in the hiring process. With this information, the employee would be responsible for his or her action when handling sensitive data. That would ensure that company data would be safe when an employee logged on to the system. The User Domain is the weakest access point and employee should understand that. Next is the “Workstation Domain” is the device to where a user can access the company system. Only employees with the right access should be using these......

Words: 429 - Pages: 2

Domains

...report will specifically address, the IT infrastructure domains and how they are affected by our standards, they are seven IT infrastructure domain and these are they names (1) users domain (2) workstation domain (3) Lan domain (4) lan to wan domain (5) wan domain (6) remote access domain (7) system application domain. My focus in this report is to clearly identify the security risk that goes along with these domains and to identify some solutions also even to open the door for grate discussion to develop a better strategy to protect our company. Sir, Each domain requires proper security controls and must meet the A-I-C (Accountability, Integrity and Confidentiality) triad requirements. But at tins time I will only focus on three domains that are mostly affected by the “Internal Use Only” standard. Listed below are these three it infrastructure and what are the direct dealings within our company and a glimpse of their treat. 1. User Domain • The User Domain defines what data a person can and cannot have access to within an organizations information system. This domain enforces the Acceptable Use Policy (AUP) which defines what a user is allowed to do within an organization’s owned IT asset. It is the weakest link in an IT Infrastructure. Users must understand what motivates someone to compromise an organizations system. 2. Workstation domain • The Workstation Domain is where most users connect to the IT Infrastructure. Desktop computers, laptops,......

Words: 428 - Pages: 2

The Seven Domains of a Typical It Infrastructure

...IPv6 Research Paper Current State of IPv6 DJ NT1430 Linux Networking Instructor: Mr. Brown March 5, 2013 Due to the number of limited number of internet addresses, a new internet protocol has come available to consumers, IPV6. “Internet Protocol version 6 (IPv6) is the latest revision of the Internet Protocol (IP), the communications protocol that routes traffic across the Internet. It is intended to replace IPv4, which still carries the vast majority of Internet traffic as of 2013” (IPv6, 2013). The Internet has experienced an astonishing increase of devices accessing the Internet. Because of this increase, IPv4 addresses are running out. The solution is for IPv6 to accommodate this increased demand by providing a much larger address space, along with improved traffic routing and better security. There are several advantages and disadvantages with IPv6. Some advantages are: IPv6 provides more address space, which is being needed in larger business scales, such as: Comcast. It is a more powerful internet (128bit versus IPv4's current 32 bit). It offers and overall larger scale internet, which again will be needed in the future. Address allocation is done by the device itself and support for security using (IPsec) Internet Protocol Security. IPv6 includes plug and play, which is easier for novice users to connect their machines to the network. Essentially, configuration will happen automatically. Some disadvantages are: It will be much harder to......

Words: 618 - Pages: 3

The Seven Domains of a Typical It Infrastructure

...THE SEVEN DOMAINS OF A TYPICAL IT INFRASTRUCTURE 1. User Domain defines the people who access an organization’s information system. 2. WORKSTATION DOMAIN is where most users connect to the IT infrastructure. It can be a desktop computer, or any device that connects to your network. 3. Local Area Network (LAN) DOMAIN is a collection of computers connected to one another or to a common connection medium. Network connection mediums can include wires, fiber optic cables, or radio waves. 4. LAN-TO-WAN DOMAIN is where the IT infrastructure links to a wide area network and the Internet. • Basically, a firewall controls, prevents, and monitors incoming and outgoing network access. It is the job of the firewall to prevent unauthorized network access, both from outside and inside network users. Depending on the type of firewall, data packets sent to and from the network pass through the firewall, and all this data can be checked for whether it is allowed for transfer. • Two main types of firewalls: network firewalls and host-based firewalls. Network firewalls, such as the software-based Microsoft’s Internet Security and Acceleration (ISA) Server or the hardware-based Nortel Networks Alteon Switched Firewall System, protect the perimeter of a network by watching traffic that enters and leaves. Host-based firewalls, such as Internet Connection Firewall (ICF—included with Windows XP and Windows Server 2003), protect an individual computer regardless of the network it’s......

Words: 1458 - Pages: 6

Domain Research Paper

...Attacks Learning Objective  Describe how malicious attacks, threats, and vulnerabilities impact an IT infrastructure. Key Concepts  Attacks, threats, and vulnerabilities in a typical IT infrastructure  Common security countermeasures typically found in an IT infrastructure  Risk assessment approach to securing an IT infrastructure  Risk mitigation strategies to shrink the information security gap Reading  Kim and Solomon, Chapter 3: Malicious Attacks, Threats, and Vulnerabilities.  Kim and Solomon, Chapter 4: The Drivers of Information Security Business. Keywords Use the following keywords to search for additional materials to support your work:  Common Vulnerabilities and Exposures (CVE)  Risk Management  Risk Mitigation  Security Countermeasures  Window of Vulnerability (WoV) Servers to have running * Windows DHCP * Server 2003 Target * Ubuntu Desktop * Ubuntu Server ------------------------------------------------- Week 2 Assignment * Calculate the Window of Vulnerability (See Below) * Microsoft Environment Analysis (See Below) Lab * Conduct a Vulnerability Assessment Scan Using Nessus® * Lab book pages 15 – 27 * Screenshots and answer questions on pages 26-27 Project (Part 2 Due Week 11) * Project Part 2. Student SSCP® Domain Research Paper ------------------------------------------------- Unit 2 Assignment 1: Calculate the......

Words: 1506 - Pages: 7

You Are Presented with a List of Some Risks and Threats Associated with the Seven Domains of a Typical It Infrastructure. Below the List, the Solutions or Preventive Actions to Manage Those Risks and Threats Are Listed.

...Instructions: You are presented with a list of some risks and threats associated with the seven domains of a typical IT infrastructure. Below the list, the solutions or preventive actions to manage those risks and threats are listed. Write the letter of the correct solution or preventative action in the blank to the right of each risk or threat. Risks or threats: 1. Violation of a security policy by a user _C_______ 2. Disgruntled employee sabotage _I_______ 3. Download of non-business videos using the Internet to an employer-owned computer ___A_____ 4. Malware infection of a user’s laptop ____L____ 5. Unauthorized physical access to the LAN _____N___ 6. LAN server operating system vulnerabilities ____F____ 7. Download of unknown file types from unknown sources by local users ___B_____ 8. Errors and weaknesses of network router, firewall, and network appliance configuration file ___H_____ 9. WAN eavesdropping _____M___ 10. WAN Denial of Service (DoS) or Distributed Denial of Service (DDoS) attacks ___D_____ 11. Confidential data compromised remotely __K______ 12. Mobile worker token stolen __G______ 13. Corrupt or lost data _____E___ 14. Downtime of customer database ____J____ Solutions or preventative actions: A. Enable content filtering and antivirus scanning at the entry and exit points of the Internet. Enable workstation auto-scans and......

Words: 447 - Pages: 2

Domain Infrastruktur

...THE SEVEN DOMAINS OF A TYPICAL IT INFRASTRUCTURE 1. User Domain defines the people who access an organization’s information system. 2. WORKSTATION DOMAIN is where most users connect to the IT infrastructure. It can be a desktop computer, or any device that connects to your network. 3. Local Area Network (LAN) DOMAIN is a collection of computers connected to one another or to a common connection medium. Network connection mediums can include wires, fiber optic cables, or radio waves. 4. LAN-TO-WAN DOMAIN is where the IT infrastructure links to a wide area network and the Internet. • Basically, a firewall controls, prevents, and monitors incoming and outgoing network access. It is the job of the firewall to prevent unauthorized network access, both from outside and inside network users. Depending on the type of firewall, data packets sent to and from the network pass through the firewall, and all this data can be checked for whether it is allowed for transfer. • Two main types of firewalls: network firewalls and host-based firewalls. Network firewalls, such as the software-based Microsoft’s Internet Security and Acceleration (ISA) Server or the hardware-based Nortel Networks Alteon Switched Firewall System, protect the perimeter of a network by watching traffic that enters and leaves. Host-based firewalls, such as Internet Connection Firewall (ICF—included with Windows XP and Windows Server 2003), protect an individual computer regardless of the network it’s......

Words: 308 - Pages: 2

How to Identify Threats & Vulnerabilities in an It Infrastructure

...Vulnerabilities in an IT Infrastructure Learning Objectives and Outcomes Upon completing this lab, students will be able to: • Identify common risks, threats, and vulnerabilities found throughout the seven domains of a typical IT infrastructure. • Align risks, threats, and vulnerabilities to one of the seven domains of a typical IT infrastructure • Given a scenario, prioritize risks, threats, and vulnerabilities based on their risk impact to the organization • Prioritize the identified critical, major, and minor software vulnerabilities   Week 1 Lab: Assessment Worksheet Part A – List of Risks, Threats, and Vulnerabilities Commonly Found in an IT Infrastructure Overview One of the most important first steps to risk management and implementing a risk mitigation strategy is to identify known risks, threats, and vulnerabilities and organize them. The purpose of the seven domains of a typical IT infrastructure is to help organize the roles, responsibilities, and accountabilities for risk management and risk mitigation. This lab requires students to identify risks, threats, and vulnerabilities and map them to the domain that these impact from a risk management perspective. Lab Assessment Questions & Answers The following risks, threats, and vulnerabilities were found in a healthcare IT infrastructure servicing patients with life-threatening situations. Given the list, select which of the seven domains of a typical IT infrastructure is primarily......

Words: 590 - Pages: 3

The Seven Domains

...1. User Domain defines the people who access an organization’s information system. 2. WORKSTATION DOMAIN is where most users connect to the IT infrastructure. It can be a desktop computer, or any device that connects to your network. 3. Local Area Network (LAN) DOMAIN is a collection of computers connected to one another or to a common connection medium. Network connection mediums can include wires, fiber optic cables, or radio waves. 4. LAN-TO-WAN DOMAIN is where the IT infrastructure links to a wide area network and the Internet. • Basically, a firewall controls, prevents, and monitors incoming and outgoing network access. It is the job of the firewall to prevent unauthorized network access, both from outside and inside network users. Depending on the type of firewall, data packets sent to and from the network pass through the firewall, and all this data can be checked for whether it is allowed for transfer. • Two main types of firewalls: network firewalls and host-based firewalls. Network firewalls, such as the software-based Microsoft’s Internet Security and Acceleration (ISA) Server or the hardware-based Nortel Networks Alteon Switched Firewall System, protect the perimeter of a network by watching traffic that enters and leaves. Host-based firewalls, such as Internet Connection Firewall (ICF—included with Windows XP and Windows Server 2003), protect an individual computer regardless of the network it’s connected to. 5. Wide Area Network (WAN) DOMAIN connects......

Words: 302 - Pages: 2

The Seven Domains of a Typical It Infrastructure

...THE SEVEN DOMAINS OF A TYPICAL IT INFRASTRUCTURE 1. User Domain defines the people who access an organization’s information system. 2. WORKSTATION DOMAIN is where most users connect to the IT infrastructure. It can be a desktop computer, or any device that connects to your network. 3. Local Area Network (LAN) DOMAIN is a collection of computers connected to one another or to a common connection medium. Network connection mediums can include wires, fiber optic cables, or radio waves. 4. LAN-TO-WAN DOMAIN is where the IT infrastructure links to a wide area network and the Internet. • Basically, a firewall controls, prevents, and monitors incoming and outgoing network access. It is the job of the firewall to prevent unauthorized network access, both from outside and inside network users. Depending on the type of firewall, data packets sent to and from the network pass through the firewall, and all this data can be checked for whether it is allowed for transfer. • Two main types of firewalls: network firewalls and host-based firewalls. Network firewalls, such as the software-based Microsoft’s Internet Security and Acceleration (ISA) Server or the hardware-based Nortel Networks Alteon Switched Firewall System, protect the perimeter of a network by watching traffic that enters and leaves. Host-based firewalls, such as Internet Connection Firewall (ICF—included with Windows XP and Windows Server 2003), protect an individual computer regardless of the network it’s connected...

Words: 542 - Pages: 3

Infrastructure

...INFRATSRUCTURE The Eleventh Five Year Plan emphasized the need for removing infrastructure bottlenecks for sustained growth. It, therefore, proposed an investment of US $500 billion in infrastructure sectors through a mix of public and private sectors to reduce deficits in identified infrastructure sectors. As a percentage of the gross domestic product (GDP), investment in infrastructure was expected to increase to around 9 per cent. For the first time the contribution of the private sector in total investment in infrastructure was targeted to exceed 30 per cent. Total investment in infrastructure during the Eleventh Plan is estimated to increase to more than 8 per cent of GDP in the terminal year of the Plan --higher by 2.47 percentage point s a s c ompa red t o the Tenth Pl an. The private sector is expected t o be contributing nearly 36 per cent of this investment. RAILWAYS Some of the major goals set for Vision 2020 in the document include (a) laying of 25,000 km of new lines; (b) quadrupling of the 6,000 km network with segregation of passenger and freight lines; (c) electrification of 14,000 km; (d) completion of gaugeconversion; (e) upgradation of speed to 160-200 kmph for passenger trains; and (f) construction of 2,000 km of high-speed rail lines. • Freight performance: Freight loading on Indian Railways during April-November 2011 was 618.0 MT as compared to 593.4 MT in April-November 2010, an increase of 4.14 per cent. •......

Words: 1202 - Pages: 5

7 Domains of It Infrastructure

...Purpose Business Continuity / Disaster Recovery program is implemented to ensure that ITT-Tech capability to respond to and reduce the effect(s) of incidents that may impact the ability of one or more of the of it’s locations ability to carry out normal activities. Business Continuity and Disaster Recovery Plans shall identify and address critical events that have the potential to cause materially adverse consequences. Scope The school Information Services Business Continuity / Disaster Recovery program is applicable to each it’s functional organization. This document along with other documents, will provide guidance for all departments to; • determine their exposures to loss of business activities by conducting Business Impact Analysis and Risk Assessment(s), • to develop Business Continuity and Disaster Recovery plans • to maintain those plans using provided or similar documents meeting the intent of the Business Continuity Program. Objective Objective of the Business Continuity program is to ensure that each functional unit has evaluated business conditions and developed plans which will enable it to survive business-interruption events and continue operations at an acceptable level until normal operations can be restored. Responsibility Designated leaders are responsible for implementing, developing and maintaining the Business Continuity program for their operational area. Systems and Operations continuity......

Words: 263 - Pages: 2