Question: You have been hired as a Security Consultant to develop and deliver a 1000 word summary report to the Chief Information Security Officer of a

You have been hired as a Security Consultant to develop and

You have been hired as a Security Consultant to develop and deliver a 1000 word summary report to the Chief Information Security Officer of a UK Healthcare provider: The Mary Seacole Hospital. You are required to demonstrate your practical understanding of cyber security attacks and potential adversaries through undertaking an investigation to identify vulnerabilities and potential security threats to host computer systems and supporting networks within the organization. Also, to establish different technologies that would constitute security mechanisms at various levels in a digitally networked environment. Your tasks during this assessment are to identify, determine and summarize host computer and network infrastructure (IT assets) and information (data assets) used within the organization. You are to create an Asset Register for these assets and conduct a Risk Assessment using an industry standard approach to identify potential threats to these mission critical assets of the Hospital. These documents should be added appropriately as Appendices to your main report. A fundamental part of this investigation will be to conduct systems penetration testing using Coventry University applications to emulate some of the systems identified within the Hospital*; produce a professional penetration test report using an industry standard penetration testing methodology and report format. The report of test results will be added as an Appendix to your Summary Report as evidence of existing vulnerabilities. The penetration tests will be conducted against a range of the technologies identified within the Mary Seacole Hospital Case Study to demonstrate vulnerabilities and present the findings as examples of why it will be necessary for the Chief Information Security Officer to act expeditiously to secure systems with high levels of risk established in your report. This action must be taken swiftly in order to protect the Hospital from potential Cyber Attacks against their systems. *NB. Under no circumstances should penetration testing be conducted against any real-world organisation during your work. This activity is illegal and will lead to disciplinary action also potentially lead to prosecution

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

Based on information available, assess the general strategic planning approach/process used by each of the healthcare organizations: Case 5: Webster Health System ebster Health System (WHS), formerly...

Q:

Please provide Visio diagram that shows your interpretation of the current network that J&L Coffee INC blow have. Please list the network vulnerabilities issue that exist within J&L Coffee INC? ...

Q:

Consider and discuss the specific risks and nature of the company you will be auditing and create comprehensive work for Payroll accounts and cycles. include: Audit steps for tests of controls,...

Q:

You will be asked to select a company that is publicly traded. You must research and secure the SEC 10-K Annual Report for the most recent year. This is often available at the company web site. Look...

Q:

5. Developed stakeholder register and matrix for this project PARTNERS HEALTHCARE SYSTEM (PHS): TRANSFORMING HEALTH CARE SERVICES DELIVERY THROUGH INFORMATION MANAGEMENT Professor Richard Kesner...

Q:

SKY HIGH AIRLINES SAFETY MANUAL EXERCISE \"Getting you there higher and faster\" Instructions This is an actual aviation company Safety Manual (fictitiously named Sky High Airlines to protect the...

Q:

Required: Using the AREA framework, answer the following question: the following media coverage of Slater and Gordon?s financial performance and position is published and available on Blackboard...

Q:

I need someone that is very good at Principles of accounting and finance to answer the attached questions. It is not a one-day job therefore if you do not have the time, please don't attempt it. The...

Q:

1 The Health Insurance Portability and Accountability Act protects patients' individually identifiable health information by A. prohibiting release of information by electronic means. B. requiring...

Q:

Consider and discuss the specific risks and nature of the company you will be auditing. Create comprehensive audit programs for the cash, financial instruments, sale, and receivables accounts and...

Q:

Question The graphs of y=g'(x) = ax+bx+c and h(x)=2x-4 are sketched below. The graph of y=g'(x) = ax +bx+c is the derivative graph of a cubic function g. The graphs of h and g' have a common...

Q:

12. Todd is able to pay $220 a month for five years for a car. If the interest rate is 3.9 percent, how much can Todd afford to borrow to buy a car? a $5,072.93 b. $8,499.13 C. $11,975.12 d....

Q:

Question 5 2 pts Which of the following statements is true of corporate bylay? Procedures that govern changes in corporate bylaws are cootained in the corporate charter: Corporate bylaws are a set of...

Q:

E13-4. Journalize issuance of common stock. (LO 2) Osage Corporation issued 2,000 shares of stock. Instructions Prepare the entry for the issuance under the following assumptions. (a) The stock had a...

Q:

5. It often is a good idea to make others dependent on you for your expertise and knowledge.

Q:

3. What do you think are the main challenges and implications being faced regarding the changes in the service concept of KidZania, centered on experiential learning?

Q:

2. Organizational politics should have no role in the administration of public programs.