Hello everyone at Richman investments, I was s asked to write a brief report that describes the "internal use only" data classification standard of Richman investments. I will list a few of the IT infrastructure domains that are affected by the standard and how they are affecting the domain and their security here at Richman investments.
The user domain defines the people who access an organizations information system. In the user domain you will find an acceptable use policy (AUP). An AUP defines what a user can and cannot do with organization-owned IT assets. It is like a rulebook that the employees must follow. Failure to follow these rules can be grounds for termination. The User …show more content…
The workstation domain is where most users connect to the IT infrastructure. The workstation can be a desktop computer, laptop computer, or any other devise that connects to a network. The staff should have the access necessary to be productive. Tasks include configuring hardware. Hardening systems and verifying antivirus files. Hardening a system is the process of ensuring that controls are in place to handle any known threats. The Workstation Domain requires tight security and access controls. This is where users first access systems, applications and data. The workstation domain requires a logon ID and password for access.
Now these are some of the risk, threats and vulnerability in workstation domain and its solutions: * Unauthorized access to workstation – Enable password protection on workstation for access. Enable auto screen lockout for inactive times. Viruses, malicious code, or malware infects a user's workstation or laptop. * User downloads photos, music, or videos via the internet - Use content filtering and antivirus scanning at internet entry and exit. Enable workstation auto-scans for all new files and automatic file quarantine for unknown types. * User violates AUP and creates security risk for the organization’s IT infrastructure – Mandate annual security awareness training for all