COIT20263 Information Security Management (HT1, 2020) Assessment Item 2 - Group Discussion Due dates: 8:00am AEST, Monday, Week 8 ASSESSMENT Weighting: 25% 2 Length: No word count limit. Objectives...

cv


COIT20263 Information Security Management (HT1, 2020) Assessment Item 2 - Group Discussion Due dates: 8:00am AEST, Monday, Week 8 ASSESSMENT Weighting: 25% 2 Length: No word count limit. Objectives This assessment task relates to Unit Learning Outcomes 1 and 5 and can be undertaken in a group of up to 4 members or individually. Distance students can form groups with on-campus students as well. You will analyse the scenario given on page 3 and discuss the issues given in the Assessment Task below by contributing to the Group Discussion Forum of your group in Moodle during weeks 3, 4, 5, 6 & 7. Assessment Task Each one of you in the group is required to analyse the scenario given on page 3 and discuss the following issues in the specified weeks by contributing to the Group Discussion Forum of your group. Your contributions should contain in-depth information to earn a high mark. Your contributions should be new or beyond (extensions of) what has already been contributed by the others in your group. a) Two legal issues related to mishandling of information by the data analyst of F4F (Due in week 3). b) Two ethical issues in InfoSec to be followed by the delivery staff of F4F (Due in week 4). c) Two measures that F4F should take to prevent its staff members from handling information unethically (Due in week 5). d) Two procedure and process documentations that you would include in the InfoSec program of F4F (Due in week 6). e) Two InfoSec policies that you would recommend for F4F (Due in week 7). Check the unit website at least once a week for further information relating to this assessment task. Please ensure that you use your own words in your discussion blogs to avoid possible plagiarism and copyright violation. You can understand the Plagiarism Procedures by following the corresponding link in the CQUniversity Policies section of the Unit Profile. Assessment Criteria Each one of you are assessed individually on your ability to address the issues given in the Assessment Task and make meaningful contributions to the Group Discussion Forum of your group in Moodle in the specified weeks. Please note that your contributions should be new or beyond what has already been contributed by the others in your group. The marking criteria for Assessment Item 2 are provided on page 4. You need to familiarise yourself with the marking criteria to ensure that you complete this assessment task timely and properly. Submission Each one of you should copy/paste your individual contributions that you made in the Group Discussion Forum to a Word document and upload it through the COIT20263 Moodle unit website assessment block on or before the due date. . The Scenario for Information Security Management Assessment Tasks Farmers 4 Farmers (F4F) is a cooperative society of farmers located in Brisbane, QLD, Australia. The company that designs and deploys the network for F4F has sub-contracted your company the task of developing a suitable information security management program for F4F. F4F was established to supply fresh produce from the farmers to the clients who are retailers at a cost-effective and efficient manner. A second objective of F4F is to provide better prices for the produce to the farmers. A third objective of F4F is to provide fertilizer and other required items for the farmers. The Brisbane office of F4F consists of the managing director, a data analyst, a logistics manager and an accountant. The data analyst will need to deal with large volumes of clients and sales data as well as product information of the farmers. F4F has a fleet of delivery trucks that operate in various regions in QLD. Clients should be able to place their delivery orders for produce and pay using the web interface of F4F. Delivery vehicles collect the produce listed in the delivery orders from the closest farmers and deliver them to the clients. The clients can communicate with the delivery trucks and view the produce on line before giving their approval to purchase them. A software program ensures this whole process. All financial transactions related to the farmers and the clients are handled by the Brisbane office. For the protection of client and business information, F4F has deployed a highly secure network for the Brisbane office and the delivery trucks. Note: This scenario was created by Dr Rohan de Silva on 3rd January 2020 and no part of this scenario should be reproduced by any individual or organisation without written permission from CQUniversity, Australia. 2 | 4 Marking Criteria Discussion Week HD D C P F Max Mark Mark Obtained 5 4 3.5 2.5 2 1 0 Week 3 Relevant and new information specific to the scenario with sufficient details. Relevant and new information specific to the scenario with some details. Relevant and new information specific to the scenario but too brief. Relevant and new information but generic. No new contribution. Just summarising or paraphrasing the contributions of others of the group or agreeing or disagreeing to them. Not relevant contribution. Not attempted. 5   Week 4 Relevant and new information specific to the scenario with sufficient details. Relevant and new information specific to the scenario with some details. Relevant and new information specific to the scenario but too brief. Relevant and new information but generic. No new contribution. Just summarising or paraphrasing the contributions of others of the group or agreeing or disagreeing to them. Not relevant contribution.. Not attempted. 5   Week 5 Relevant and new information specific to the scenario with sufficient details. Relevant and new information specific to the scenario with some details. Relevant and new information specific to the scenario but too brief. Relevant and new information but generic. No new contribution. Just summarising or paraphrasing the contributions of others of the group or agreeing or disagreeing to them. Not relevant contribution.. Not attempted. 5 Week 6 Relevant and new information specific to the scenario with sufficient details. Relevant and new information specific to the scenario with some details. Relevant and new information specific to the scenario but too brief. Relevant and new information but generic. No new contribution. Just summarising or paraphrasing the contributions of others of the group or agreeing or disagreeing to them. Not relevant contribution.. Not attempted. 5   Week 7 Relevant and new information specific to the scenario with sufficient details. Relevant and new information specific to the scenario with some details. Relevant and new information specific to the scenario but too brief. Relevant and new information but generic. No new contribution. Just summarising or paraphrasing the contributions of others of the group or agreeing or disagreeing to them. Not relevant contribution.. Not attempted. 5     Plagiarism penalty     Late submission penalty     Total 25   COIT20263 Information Security Management (HT1, 2020) Assessment Item 2 - Group Discussion Due dates: 8:00am AEST, Monday, Week 8 ASSESSMENT Weighting: 25% 2 Length: No word count limit. Objectives This assessment task relates to Unit Learning Outcomes 1 and 5 and can be undertaken in a group of up to 4 members or individually. Distance students can form groups with on-campus students as well. You will analyse the scenario given on page 3 and discuss the issues given in the Assessment Task below by contributing to the Group Discussion Forum of your group in Moodle during weeks 3, 4, 5, 6 & 7. Assessment Task Each one of you in the group is required to analyse the scenario given on page 3 and discuss the following issues in the specified weeks by contributing to the Group Discussion Forum of your group. Your contributions should contain in-depth information to earn a high mark. Your contributions should be new or beyond (extensions of) what has already been contributed by the others in your group. a) Two legal issues related to mishandling of information by the data analyst of F4F (Due in week 3). b) Two ethical issues in InfoSec to be followed by the delivery staff of F4F (Due in week 4). c) Two measures that F4F should take to prevent its staff members from handling information unethically (Due in week 5). d) Two procedure and process documentations that you would include in the InfoSec program of F4F (Due in week 6). e) Two InfoSec policies that you would recommend for F4F (Due in week 7). Check the unit website at least once a week for further information relating to this assessment task. Please ensure that you use your own words in your discussion blogs to avoid possible plagiarism and copyright violation. You can understand the Plagiarism Procedures by following the corresponding link in the CQUniversity Policies section of the Unit Profile. Assessment Criteria Each one of you are assessed individually on your ability to address the issues given in the Assessment Task and make meaningful contributions to the Group Discussion Forum of your group in Moodle in the specified weeks. Please note that your contributions should be new or beyond what has already been contributed by the others in your group. The marking criteria for Assessment Item 2 are provided on page 4. You need to familiarise yourself with the marking criteria to ensure that you complete this assessment task timely and properly. Submission Each one of you should copy/paste your individual contributions that you made in the Group Discussion Forum to a Word document and upload it through the COIT20263 Moodle unit website assessment block on or before the due date. . The Scenario for Information Security Management Assessment Tasks Farmers 4 Farmers (F4F) is a cooperative society of farmers located in Brisbane, QLD, Australia. The company that designs and deploys the network for F4F has sub-contracted your company the task of developing a suitable information security management program for F4F. F4F was established to supply fresh produce from the farmers to the clients who are retailers at a cost-effective and efficient manner. A second objective of F4F is to provide better prices for the produce to the farmers. A third objective of F4F is to provide fertilizer and other required items for the farmers. The Brisbane office of F4F consists of the managing director, a data analyst, a logistics manager and an accountant. The data analyst will need to deal with large volumes of clients and sales data as well as product information of the farmers. F4F has a fleet of delivery trucks that operate in various regions in QLD. Clients should be able to place their delivery orders for produce and pay using the web interface of F4F. Delivery vehicles collect the produce listed in the delivery orders from the closest farmers and deliver them to the clients. The clients can communicate with the delivery trucks and view the produce on line before giving their approval to purchase them. A software program ensures this whole process. All financial transactions related to the farmers and the clients are handled by the Brisbane office. For the protection of client and business information, F4F has deployed a highly secure network for the Brisbane office and the delivery trucks