Hardware and Software Controls To Provide security For LAN-to-WAN Domain

Imagine you are an Information Systems Security Officer for a medium-sized technology firm that has two (2) sites (one located in Virginia, and the second in California). Due to the highly sensitive data created, stored, and transported by your organization, the CIO is concerned with implementing proper security controls for the LAN-to-WAN domain. Specifically, the CIO is concerned with the following areas:

  • Protecting data privacy across the WAN
  • Filtering undesirable network traffic from the Internet
  • Filtering traffic to the Internet that does not adhere to the organizational AUP for the Web
  • Having a zone that allows access for anonymous users but aggressively controls information exchange with internal resources
  • Having an area designed to trap attackers in order to monitor attacker activities
  • Allowing a means to monitor network traffic in real-time as a means to identify and block unusual activity
  • Hiding internal IP addresses
  • Allowing operating system and application patch management

The CIO has tasked you with proposing a series of hardware and software controls designed to provide security for the LAN-to-WAN domain. The CIO anticipates receiving both a written report and diagram(s) to support your recommendations.

Write a four to six (4-6) page paper in which you:

  1. Suggest a solution for the provided scenario that will:
    1. filter undesirable network traffic from the Internet
    2. filter Web traffic to the Internet that does not adhere to the organizational AUP for the Web
    3. allow for a zone for anonymous users but aggressively controls information exchange with internal resources
    4. allow for an area designed to trap attackers in order to monitor attacker activities
    5. offer a means to monitor network traffic in real-time as a means to identify and block the unusual activity
    6. hide internal IP addresses

Note: The graphically depicted solution is not included in the required page length.

  1. Analyze and identify the fundamentals of PKI in writing and depict graphically using MS Visio or its open-source alternative software. Note: The graphically depicted solution is not included in the required page length.
  2. Examine and describe how your solution will protect the privacy of data transmitted across the WAN and why this solution would be effective.
  3. Analyze the requirements necessary to allow for proper operating system and application patch management and describe a solution that would be effective.
  4. Use at least three (3) quality resources in this assignment.

The specific course learning outcomes associated with this assignment are:

  • Analyze information security systems compliance requirements within the Workstation and LAN Domains.
  • Use technology and information resources to research issues in security strategy and policy formation.
  • Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.
Scroll to Top