Evan Anderson
IS4550
Security Policies and Implementation
Unit 6 (July 22, 2016)
IT Infrastructure Security Policies
Learning Objective
- Describe the different ISS policies associated with the IT infrastructure.
Key Concepts
- Policies unique to the Workstation Domain
- Policies associated with the Local Area Network (LAN) Domain and the Wide Area Network (WAN) Domain
- Policies related to telecommunications
- Policies specific to remote access, systems, and applications
- Differences between public and private IT infrastructure security policies
Reading
- Johnson and Merkow, Chapter 10: IT Infrastructure Security Policies.
-
NIST: SpecialPublication 800-171
- EE News: The Hack (Ukraininan Power Grid Attack)
- Army Cyber Institute (YouTube): Analysis of the Attack on the Ukrainian Power Grid
- SANS: Cyber Attack on Ukrainian Power Grid
Keywords
- Control Standards
- Baseline Standards
- Baseline Documents
- Procedure Documents
- Information Technology (IT) Infrastructure
- Information Technology (IT) Security Controls
- Workstation Domain
- Local Area Network (LAN) Domain
- Local Area Network-to-Wide Area Network (LAN-to-WAN) Domain
Assignments and Study Materials
- Unit 6 Lecture Slides
- Unit 6 Discussion 6.1: IT Infrastructure Security Policies
- Unit 6 Lab 6.2: Define a Remote Access Policy to Support Remote Healthcare Clinics
- Unit 6 Assignment 6.3: IT Infrastructure Policies
Questions and Feedback
Use the form below to ask questions or provide feedback about the concepts covered during Unit 6's session of class: