Risk analysis | Buiness managemenet | University College of the Cayman Islands

Using the information provided in the below case study, identify the areas of potential

concern and what recommendations you have to address those concerns in less than 500 words.

The scan results provided is from a server found in a University Research Department. A researcher asked for this asset to be reviewed for their project. The project is dealing

with COVID samples to produce a vaccine.

It is safe to assume omitted technical aspects, but assumptions should be mentioned in the discussion with the screening committee before recommendations are provided.

The response back to the screening committee should be a written response, similar to

what would be sent to the researcher. This written response should be submitted back

to the screening committee. Once the written response is

submitted, in the 30-minute virtual meeting, you will need to present your findings to a

wide array of technical and non-technical people. You may choose any method of how

you deliver these findings and your response.

The roles that will be present in the virtual meeting are as follows:

Departmental member in charge of all IT Risk for the department (Risk Executive), a department IT

Manager, a Research Principal Investigator, and an IT Systems Engineer.

For each role, please consider the following areas to focus on while drafting a response:

Risk Executive: Defining cost benefit, difficulty to address change (amount of

work), policy compliance, etc.

Department Manager: Time to immediately remediate and then on-going

actions needed. Cost of service or hardware to remediate

Research Principal Investigator: Work to mitigate risks such as creating

procedures.

Systems Engineering: Technical changes and the need to make this recurring or

to provide updates.

Scan Results:

A) Ports:

TCP/UDP 137-139 Open to Internet for Server B023AQ

TCP 80 Open to Internet for Server B023AQ

TCP 443 Open to Internet for Server B023AQ

TCP 1433-1434 Open to Internet for Server B023AQ

TPC/UDP 3389 Open to all workstations

B) All employees are allowed to RDP to their workstations from anywhere off site

C) All servers are located in a single rack in one data center. No provisions are

available to replace the hardware in a disaster (unless insurance can cover the

costs). No alternate site is available to relocate employees after a disaster.

D) There is no documentation regarding the logging requirements for any

systems.

Continue to order Get a quote

Our guarantees

Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.

Money-back guarantee

You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.

Zero-plagiarism guarantee

Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.

Free-revision policy

Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.

Privacy policy

Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.

Fair-cooperation guarantee

By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.