The major project will be the creation of a business security plan. This project may be done as a group project (max of 2 people). The project will include at least 26 pages of content paper and final presentation. The student will take a company and create a sample security plan which will include recommendations on policies and practices, business continuity, incident response plan, an ethical hacking exercise and appropriate training based on industry standards.
You want to help the customer spend his money, time and resources wisely. This project and the final are the main determinants of the course grade.
- Policies – samples or areas that they should include
- Procedures – what are best of breed
- What standards do you suggest following
- Testing – Penetration testing – both internal and external. What tests, what do you expect to find, how would you fix it
- Training – what training would you offer to employees (needs details and action plans)
- Expectations – What would you suggest for the customer to do to prepare for the evaluation
project format :
•Make sure it is very professional:
•cover,
•executive summary
•table of contents
•security analysis & review
•security testing – penetration test
•training
•Conclusion
•References