Question

Assignment: In this project, you’ll create a security infrastructure design document for a fictional organization. The security services and tools you describe in the document must be able to meet the needs of the organization. Your work will be evaluated according to how well you met the organization’s requirements.
About the organization: This fictional organization has a small, but growing, employee base, with 50 employees in one small office. The company is an online retailer of the world's finest artisanal, hand-crafted widgets. They've hired you on as a security consultant to help bring their operations into better shape.

Organization requirements: As the security consultant, the company needs you to add security measures to the following systems:

An external website permitting users to browse and purchase widgets

An internal intranet website for employees to use

Secure remote access for engineering employees

Reasonable, basic firewall rules

Wireless coverage in the office

Reasonably secure configurations for laptops

Since this is a retail company that will be handling customer payment data, the organization would like to be extra cautious about privacy. They don't want customer information falling into the hands of an attacker due to malware infections or lost devices.

Engineers will require access to internal websites, along with remote, command line access to their workstations.

Grading: This is a required assignment for the module.

What you'll do: You’ll create a security infrastructure design document for a fictional organization. Your plan needs to meet the organization's requirements and the following elements should be incorporated into your plan:

Authentication system

External website security

Internal website security

Remote access solution

Firewall and basic rules recommendations

Wireless security

VLAN configuration recommendations

Laptop security configuration

Application policy recommendations

Security and privacy policy recommendations

Intrusion detection or prevention for systems containing customer data

Answer 1

The authentication can be done by using user id and password, social sign-in or by using the biometrics.  

How to explain the information?

Authentication works as follows:  

• Prompting the user to enter the credentials.  
• Send credentials to the authentication server.  
• Match the credentials.  
• Authorize the user and grants the acces

External Website security:  

• Use of firewall.  
• Implement the access control.  
• Use of MVC (Model View Controller)
• Use of encryption.  
• Use of SSL certificate.
• Use of security plugins.  

• Use of network monitoring team.  

Internal Website security:  

• Use of authentication to identify the user identity.  
• Use of authorization to provide different user with the specific privileges and access.  
• Encrypt or hide sensitive web pages.  
• By implementing IT policies.  
• Educate the user about the website.  

Remote Access Solution:  

Remote access provides better security, cost efficiency, ease of management, and increased availability.  

Remote access can be deployed by using the RAS gateway.  

Firewall and Basic rules recommendations:  

• Firewall is important for managing the traffic and providing external website security.  
• Rules to prevent SQL injection and XSS.  
• Allow only the specific type of traffic.  
• Use access rules for IP security.  
• Implement certain IT policies.  

Wireless Security:  

Wifi is being used in every organization and it prevents the network from malicious access.  

Wireless security can be provided by usin encryption, decryption, and authorization.  

VLAN configuration:  

VLAN are important for traffic filtering and providing the logical division of the network.  

VLAN can be configured for web interface and can provide web filtering.  

VLAN can be configured between router and firewall that passes the network.  

Laptop Security Configuration:  

Use of password, VPN and the registering the laptop will provide laptop security. .  

Application policy recommendations:  

Application policy includes integration, use of cookies access control, and implanting other organization and IT rules.  

Security and privacy policy recommendations:  

It includes listin of security methods to be implemented for traffic filtering, user authentication and other specific policy for the website.  

Intrusion detection or prevention for systems containing customer data:  

IPS is implemented behind firewall and it matches the incoming traffic against the security policies.

Learn more about security infrastructure on:

brainly.com/question/5939963

#SPJ1