Task Description You are hired by Advanced Medicos Limited (AML), a healthcare product sell company, as a cybersecurity consultant to help in security management and to address the contemporary and...

1 answer below »
Task Description You are hired by Advanced Medicos Limited (AML), a healthcare product sell company, as a cybersecurity consultant to help in security management and to address the contemporary and emerging risks from the cyber threats the company is facing. AML is providing a platform for Australian customers to sell their products online. The vision of the company is to be among the top 5 nationwide. The board from the advice by Chief Information Officer (CIO) and Chief Information Security Officer (CISO) has concluded that they should get to the point that the essential services such as web portal should be able to recover from major incidents in less than 20 minutes while other services can be up and running in less than 1 hour. In case of a disaster, they should be able to have the Web portal and payroll system fully functional in less than 2 days.

The company is a new company which is growing rapidly. While the company uses its database server to store the information of its customers’ private data, credit card info, etc. it has a poordesigned network with a low level of security. As the company is responsible for the privacy and the security of customer personal info, credit card details, the security of payment transactions, etc. they have decided to improve their information security. Therefore, they have hired you to do the following task:

You need to write a reflective report to the CEO of the company and explain the outcome of your Business Impact Analysis (BIA). In addition, you should develop a policy for BIA.

CMP73001-Ass 4

Assignment-4 guideline

Task 1: In this assignment, you should review the vulnerability assessment and the proposed controls in previous assignments and write a reflective report about BIA. You should analyse three business processes in AML Company: Credit Card Processing, Online Ordering, and Customers’ Record Maintenance. You are responsible for deciding about RTO, RPO, and MTD values for these processes. Then, you should discuss the impact on the business if these processes were unavailable. The impact can be critical, urgent, important, or normal. You should explain both customer and financial impact with proper justification. For this question, you should initially perform BIA for AML Company before implementing the controls. Then, in the second step, perform BIA analysis after implementing the controls and explain whether the controls are enough and effective. In your report, you should analyse how the controls that you implemented in Assignment 1 to 3 could affect these business processes. Table 1 provides an example of BIA for an example process.

Table 1. BIA information

Mission/Busine ss Process (Department)

MTD RTO RPO

Consequence of disruption

Customer Impact (critical, urgent, important, or normal)

Financial Impact (critical, urgent, important, or normal)

Example1: Student record maintenance

72 hours

48 hours

12 hours

Unable to provide student data to other faculties when requested

Urgent (explain your reason)

Important (explain your reason)

Credit Card Processing

Online booking Patients’ record maintenance

Task 2: You should develop a BIA policy for AML Company. At least four (4) policy requirements should be provided.

Assessment Criteria

Criteria Max Mark Task 1: Reflective report about BIA 6 Task 2: BIA policy 3 Documentation 1 Total 10

CMP73001-Ass 4

Assignment-4 Marking Rubric A spreadsheet that will be used for the marking of your site is provided (attached with the final submission link) on MySCU to itemize exactly what tutors will be looking at in relation to marking your assignment. It contains a detailed breakdown of the marking criteria for this assignment. I strongly suggest you peruse this spreadsheet.

Format, Presentation Submission Format and Length There is no report template to be used in this assignment, so you can design your template or refer to online resources. However, the report should be well presented in a standard report format. The first page of the report should have a simple company logo, your name, and student ID, CMP73001 Assignment 4, and the date you submit your assignment.

When you have completed the assignment, you are required to submit your assignment in the PDF/DOC format. The file will be named using the following convention:

filename = FirstInitialYourLastName_CMP730021_A4.pdf (i.e. FJones_CMP73001_A4.pdf)

Due to the system setting constraint, the report 4 length/duration was set with 300 words in the unit UIG. You are advised that there is no formal word limit for the report. However, a good report is expected to be somewhere in the vicinity of 6,00 - 1,000 words from Introduction to Conclusion. Note that this is a very rough estimate, and there will be no penalties imposed based on the number of words (no real ceiling if the content is precise and relevant!)

Original Work

Note that you are not allowed to cut and paste from online resources. Use your own words and figures. Acknowledge all reference sources.

It is a University requirement that a student’s work complies with the Academic Integrity Policy. It is a student’s responsibility to be familiar with the Policy. Failure to comply with the Policy can have severe consequences in the form of University sanctions. For information on this policy, please refer to Student Academic Integrity Policy at the following website:

http://policies.scu.edu.au/view.current.php?id=00141

As part of a University initiative to support the development of academic integrity, assessments may be checked for plagiarism, including through an electronic system, either internally or by a plagiarism checking service, and beheld for future checking and matching purposes.

CMP73001-Ass 4

A Turnitin link has been set up to provide you with an opportunity to check the originality of your work until your due date. Please make sure you review the report generated by the system and make changes (if necessary!) to minimise the issues of improper citation or potential plagiarism. If you fail to follow this step, your report may not be graded or may incur late feedback
Answered Same DayMay 29, 2021CMP73001Southern Cross University

Answer To: Task Description You are hired by Advanced Medicos Limited (AML), a healthcare product sell company,...

Umakant answered on May 30 2021
142 Votes
Advanced Medicos Limited
AML is a healthcare company which sell different kind of healthcare product. Currently they p
rovide service offline and want to provided service by online platform also. So, for this online service, we have to provide strong or secured network where client or end user details like mail address, mobile number, credit card details, mode of payment and other information must be safe, because this is the most important part of every industry once data is leaked then it directly impact of our business. So, keep this point we provide a better service like fast response, secure where their data will keep safe and so on.
MTD, RPO and RTO:
 Disaster Recovery and Information Security team are planning to establish performance objectives based on their intricate knowledge of business goals and operations. The more conspicuous of these objectives relate to availability of our IT systems following recoverability, and an outage of data after it's been accidentally corrupted or delete. The three most important are:
a. RTO (Recovery Time Objective)
b. MTD (Maximum Tolerable Downtime)
c. RPO (Recovery Point Objective)
These following functions have threshold for...
SOLUTION.PDF

Answer To This Question Is Available To Download

Related Questions & Answers

More Questions »

Submit New Assignment

Copy and Paste Your Assignment Here