Description
Assignment Sample Solution: IT Security and Risk Management September 2024
NMIM$ Global Access
School for Continuing Education (NGA-SCE)
Course: IT Security and Risk Management September 2024
Internal Assignment Applicable for September 2024 Examination
Q1. What is the definition of Information Security, and how does it encompass the principles
of confidentiality, integrity, and availability (commonly known as the CIA triad)? Why is
maintaining information security critical in various industries and environments, such as
business, healthcare, government, and education? Discuss the potential risks and
consequences when one or more aspects of the CIA triad are compromised, providing
specific examples or scenarios where these principles play a crucial role in protecting
sensitive information and ensuring organizational resilience. Also explain how best practices
in information security can help organizations mitigate threats, safeguard data, and maintain
operational continuity. (10 Marks)
Q2. Imagine you’re a cybersecurity consultant tasked with improving the access control
system for a multinational corporation. In this scenario, the company operates in multiple
regions with diverse workforce demographics, including remote employees, contractors, and
on-site staff. Your objective is to enhance the existing access control mechanisms to ensure
robust security while accommodating the organization’s dynamic environment.
Describe the identification and authentication techniques you would recommend for this
scenario. Provide examples of specific authentication methods, such as passwords,
biometrics, multifactor authentication (MFA), and single sign-on (SSO), and explain their
suitability in different usage scenarios within the corporation. Additionally, discuss any
potential challenges or limitations associated with implementing these techniques on a large
scale and propose strategies to address them effectively. (10 Marks)
Q3. You are a cybersecurity analyst working for a major financial institution that has
experienced several security incidents in recent months. The incidents include unauthorized
access to sensitive customer information, distributed denial-of-service (DDoS) attacks, and
malware infections that have caused significant operational disruptions.
In this scenario, you are tasked with preparing a report for the company’s executive team,
explaining the differences between security threats, attacks, and vulnerabilities.
a) Describe the common types of security threats and attacks that can affect a financial
institution like yours, outlining their potential impacts on data confidentiality,
integrity, and availability. Provide examples of specific threats such as phishing,
NMIMS Centre for Distance and Online Education (NCDOE)
Course: IT Security and Risk Management
Internal Assignment Applicable for September 2024 Examination
Page 3 of 3
ransomware, DDoS, SQL injection, and insider threats. (5 Marks)
b) Explain how these threats differ from vulnerabilities, and why understanding the
distinction is critical for effective cybersecurity strategy. Highlight typical sources
of vulnerabilities, like outdated software, misconfigurations, or weak access
controls, and describe how vulnerabilities can be exploited by various security
threats and attacks. Conclude your report with recommendations for mitigating these
threats, addressing vulnerabilities, and strengthening the organization’s overall
security posture. (5 Marks)
*********
Rules and Regulation
General or Editable Assignment: Needs to be change it in your own Wording. After Modification, check plagiarism via some tools on google. After Checking, upload your assignment. Kindly call or WhatsApp to know how and where can you change it. We don’t take guarantee if you don’t change your Content before uploading.
Note: Changes are Mandatory in General Assignment as it is general sample. Use it as a reference.
Unique Assignment: Assignment will be Uploaded directly; more than 80% marks are guaranteed. Plagiarism free. No Copy case. 100 % Guaranteed Assignment.
Buying Process:
General Assignment : Buy Online
Unique Assignment: Call/WhatsApp at 8448433923 to book the order.
Reviews
There are no reviews yet.