495 CMIT Security Policies and Network Security Design

495 CMIT Security Policies and Network Security Design


This section will specify organizational security policies, standards, procedures, and guidelines in compliance with the appropriate laws and regulations. This section will lay out network security design implementing organizational security policies in compliance with the appropriate laws and regulations


·        Determine the most important assets of the company, which must be protected

·        Determine general security architecture for the company

·        Develop a High availability secure design for this locations addressing above considerations and mitigating 4 primary networks attacks categories mentioned below.

1.     Physical Security

2.     Logical/Technical Security

3.     Additional Technologies

·        RADIUS

·        Network Policy Server

·        WEB Security Appliance

                4.Administrative Security

The security design will have the following security policies

·   Internet Usage Policy

·   Mobile Device Encryption Policy

·   Workstation Full Disk Encryption Policy

·   Wireless Communication Policy

·   Remote Access Policy

·   Employee Internet Use and Filtering Policy

·   Clean desk policy

·   Network Security Policy

·   Password Policy

·   IT Equipment Policy

·   Information Sensitivity Policy

·   Audit policy


Security Design (Confidentiality, Integrity, and Availability)

Design robust security system as per the case study requirements. Provide all configuration details and diagrams. List the administrative, logical, and physical controls

Recommended more security technologies