Вы находитесь на странице: 1из 9

Alen Kovacevic IS3230 Access Control Proposal

TABLE OF CONTENTS 1 INTRODUCTION 1.1 Project Title 1.2 Project Schedule Summary 1.3 Project Deliverables 1.4 Project Guides 1.5 Project Team Members 1.6 Purpose 1.7 Goals and Objectives 2 Risks and Vulnerabilities 2.1 Overall 2.2 Billings, Montana 2.3 Warsaw, Poland 3 Proposed Budget 4 IDI Proposed Solution 4.1 Billings, Montana 4.2 Warsaw, Poland 5 Drawings 6 Conclusion

Alen Kovacevic IS3230 Access Control Proposal

1 INTRODUCTION

1.1 Title of the project

Access Control Proposal Project

1.2 Project schedule summary

The project will be a multi-year phased approach to have all sites (except JV and SA) on the same hardware and software platforms.

1.3 Project deliverables

Solutions to the issues that the specifies location of IDI is facing Plans to implement corporate-wide information access methods to ensure confidentiality, integrity, and availability Assessment of strengths and weaknesses in current IDI systems Address remote user and Web site users secure access

Alen Kovacevic IS3230 Access Control Proposal

requirements Proposed budget for the projectHardware only Prepare detailed network and configuration diagrams outlining the proposed change Prepare a 5 to 10 minute PowerPoint assisted presentation on important access control infrastructure, and management aspects from each location.

1.4 Project Guides

Course Project Access Control Proposal Guide Juniper Networks Campus LAN Reference Architecture

1.5 Project Members

Alen Kovacevic, IT Security Specialist Chief Information Officer (CIO) Members of the Technology Staff

1.6 Purpose

Alen Kovacevic IS3230 Access Control Proposal

This project is done as a part of fulfillment of the course IS3230 (Access Control, Authentication, and Public Key Infrastructure). It is a proposal for improving IDIs computer network infrastructure. This project is intended to be used by IDIs information security team to developing a plan to improve IDIs computer network infrastructure at multiple locations.

1.7 Goals and Objectives

1st Objective o To assess the aging infrastructure and then develop a multi-year phased approach to have all sites (except for JV and SA) on the same hardware and software platforms. 2nd Objective o The core infrastructure (switches, routers, firewalls, servers and etc.) must capable of withstanding 10 15% growth every year for the next seven years with a three-to-four year phased technology refresh cycle. 3rd Objective o Solutions to the issues that the specifies location of IDI is facing 4th Objective o Assessment of strengths and weaknesses in current IDI systems 5th Objective o Address remote user and Web site users secure access requirements 6th Objective

Alen Kovacevic IS3230 Access Control Proposal

o Prepare detailed network and configuration diagrams outlining the proposed change 7th Objective o Prepare a 5 to 10 minute PowerPoint assisted presentation on important access control infrastructure, and management aspects from each location. 8th Objective o A comprehensive network design that will incorporate all submitted requirements and allow for projected growth. 9th Objective: o Final testing of all installed hardware, software, and network connectivity. 10th (Final) Objective: o Initialization of the entire network and any last minute configuration adjustments to have the network up and operating within all specified ranges.

2 Risks and Vulnerabilities 2.1Overall: There is a hodgepodge of servers, switches, routers, and internal hardware firewalls. Each of the organizations locations is operating with different information technologies and infrastructureIT systems, applications, and databases. Various levels of IT security and access management have been implemented and embedded within their respective locations. The information technology infrastructure is aging and many locations are running on outdated

Alen Kovacevic IS3230 Access Control Proposal

hardware and software. Also, the infrastructure is woefully out-ofdated in terms of patches and upgrades, which greatly increase the risk to he network in terms of confidentiality, integrity, and availability.

2.2 Billings, Montana:

over 350 modifications have been made to the core engine and the license agreement has expired. Progressive upgrading to the current version will be required. As a result, renewing this product will be extremely cost and time-prohibitive. ivery program used to simulate routes, costs, and profits. It is not integrated into Logisuite or Oracle financials to take advantage of the databases for real-ime currency valuaion and profit or loss projections. tware has not been standardized. Managers have too much liberty to buy what they want according to personal preferences. WordPerfect 7.0, and PC-Write that are not compatible. tions has not been since the company moved its current headquarters 15 years ago. This has left many of the new features for telecommunications lacking and not integrated with the customer service database to improve call management efficiency. The generic system was acquired from a service provider who is now out of business. executives who have local administrators install the clients on their unsupported, non-standard personal laptop computers and workstations that interface with the internet. These devices

Alen Kovacevic IS3230 Access Control Proposal

been upgraded. During peak periods, usually between September and March, the capacity is insufficient for the organization resulting in lost internet customers which further reduces growth and revenue. -2000 private automatic branch exchange (PABX) that only provides voice mail and call forwarding.

2.3 Warsaw, Poland

This is the largest office based on number of employees, strategically located to assist IDI for major growth in the Middle East and Asia, and the home portal for expansion and geographical client development, yet there is insufficient computing power to stay afloat on a day-to-day basis. and does not interface with the McCormack dodge accounting and finance system load balancing) (Wi-Fi Protected Access) with no password protection. some of whose features have become faulty. ave not been replaced or upgraded during this time. operations and the accounts receivable department and there is evidence of nepotism and embezzlement.

Alen Kovacevic IS3230 Access Control Proposal

3 Proposed Budget

4 IDI Proposed Solutions

4.1 Billings, Montana -Packard (HP) Unix servers to 1 Unix server 2008 R2 -mail to latest version ace Oracle financials for accounting and financial systems, Logisuite 4.2.2, RouteSim software.

Use Policy (AUP)

4.2 Warsaw, Poland served -house application developer

Alen Kovacevic IS3230 Access Control Proposal

ons system with desktop phones to a VOIP system