Create a security management policy that addresses the management and the separation of duties throughout the seven domains of a

Question

3 years ago

6

Create a security management policy that addresses the management and the separation of duties throughout the seven domains of a

typical IT infrastructure. You are to define what the information systems security responsibility is for each of the seven domains of a typical IT infrastructure?

Computers and Technology

1 answer:

klio [65] · Answer 1 · 2022-05-16T00:06:02+03:00

Seven Domains of IT Infrastructure Seven domains can be found in a typical IT infrastructure. They are as follows: User Domain, Workstation Domain, LAN Domain, LAN-to-WAN Domain, Remote Access Domain, WAN Domain, and System/Application Domain.

Explanation:

User Domain : The User Domain covers all theusers (of any rank) that haveaccess to the other six domains.

RISKS:

User can destroy data in application(intentionally or not) and delete all
User can insert infected CD or USBflash drive into the work computer

Workstation Domain : A computer of an individual user where the production takes place

RISKS:

The workstation’s OS can have a known software vulnerability thatallows a hacker to connect remotelyand steal data.
A workstation’s hard drive can fail causing lost data

LAN Domain : Contains all of the workstations,hubs, switches, and routers. TheLAN is a trusted zone

RISKS:

A worm can spread through the LANand infect all computers in it.
LAN server OS can have a knownsoftware vulnerability.

WAN Domain : Stands for Wide Area Network and consists of the Internet and semi-private lines

RISKS:

Service provider can have a major network outage.
Server can receive a DOS or DDOS attack.
A FTP server can allow anonymously uploaded illegal software

LAN / WAN Domain : The boundary between the trusted and un-trusted zones.The zones are filtered with a firewall

RISKS:

Weak ingress/egress traffic filteringcan degrade performance.
A firewall with unnecessary portsopen can allow access from the Internet

System / Application Storage Domain : This domain is made up of user-accessed servers suchas email and database

RISKS:

A fire can destroy primary data
A DOS attack can cripple the organization’s email

Remote Access Domain :The domain in which a mobileuser can access the local network remotely, usually through a VPN

RISKS:

Communication circuit outage candeny connection.
Remote communication from officecan be unsecured.
VPN tunneling between remotecomputer and ingress/egress routercan be hacked