Question

Part 2 - Security controls in an IT network of a medium sized company with automated production of vacuum cleaners For this task you take on the role of a security architect (as defined in the NIST NICE workforce framework) You are responsible for a re-design of a company network, including placing security controls in the right places of the network. As security always costs money, you need to prepare a presentation that explains to the management of the company why each security control is required at that particular part of the company network. The company has several departments, but the focus is on three network areas: * Production with automated machines controlled from PCs connected to the network. Production runs 24/7 and outages would be very expensive for the company. The company is very modern and customers can design their own colour combinations and specifications for their vacuum cleaner. Thus, data needs to frequently be transferred to the PCs controlling the machines. * Outward facing servers including a web server that is used for marketing and online sales and the company's mail server. * Administration with PCs and laptops, a server running administration software and databases, wireless printers and Wifi for meeting rooms and general office areas. Employees also travel with their laptops and need to access the administrative network, but not the production area. You have a list of security controls to be used and a number of entities that need to be connected in the internal network. Depending on the role of the entity, you need to decide how they need to be protected from internal and external adversaries. Entities to be connected: * PCs to control production machines * Production machines themselves * Employee PCs and laptops for administration * Server for administration and internal databases * Wireless printer and scanner for administration use * Webserver * Mailserver * WiFi access points * Routers * Switches Security controls and appliances (can be used in several places) * Firewalls (provide port numbers to be open for traffic from the outside of the respective network segment) * VPN gateway * VPN clients * TLS (provide information between which computers TLS is used) * Authentication server * Secure seeded storage of passwords * Disk encryption * WPA3 encryption * Air gaps * Intrusion detection system To prepare for your presentation video, follow these steps: 1. Create a diagram of your network (using any diagram creation tool such as LucidChart or similar) with all entities 2. Place security controls on the diagram 3. For each security control explain what it is used for and why it is needed

Part 2 - Security controls in an IT network of a medium sized company with automated production of vacuum cleaners

For this task you take on the role of a security architect (as defined in the NIST NICE workforce framework) You are responsible for a re-design of a company network, including placing security controls in the right places of the network. As security always costs money, you need to prepare a presentation that explains to the management of the company why each security control is required at that particular part of the company network.

The company has several departments, but the focus is on three network areas:

* Production with automated machines controlled from PCs connected to the network. Production runs 24/7 and outages would be very expensive for the company. The company is very modern and customers can design their own colour combinations and specifications for their vacuum cleaner. Thus, data needs to frequently be transferred to the PCs controlling the machines.
* Outward facing servers including a web server that is used for marketing and online sales and the company's mail server.
* Administration with PCs and laptops, a server running administration software and databases, wireless printers and Wifi for meeting rooms and general office areas. Employees also travel with their laptops and need to access the administrative network, but not the production area.

You have a list of security controls to be used and a number of entities that need to be connected in the internal network. Depending on the role of the entity, you need to decide how they need to be protected from internal and external adversaries.

Entities to be connected:
* PCs to control production machines
* Production machines themselves
* Employee PCs and laptops for administration
* Server for administration and internal databases
* Wireless printer and scanner for administration use
* Webserver
* Mailserver
* WiFi access points
* Routers
* Switches

Security controls and appliances (can be used in several places)
* Firewalls (provide port numbers to be open for traffic from the outside of the respective network segment)
* VPN gateway
* VPN clients
* TLS (provide information between which computers TLS is used)
* Authentication server
* Secure seeded storage of passwords
* Disk encryption
* WPA3 encryption
* Air gaps
* Intrusion detection system

To prepare for your presentation video, follow these steps:
1. Create a diagram of your network (using any diagram creation tool such as LucidChart or similar) with all entities
2. Place security controls on the diagram
3. For each security control explain what it is used for and why it is needed

Part 2 - Security controls in an IT network of a medium sized company with automated production of vacuum cleaners

For this task you take on the role of a security architect (as defined in the NIST NICE workforce framework) You are responsible for a re-design of a company network, including placing security controls in the right places of the network. As security always costs money, you need to prepare a presentation that explains to the management of the company why each security control is required at that particular part of the company network.

The company has several departments, but the focus is on three network areas:

* Production with automated machines controlled from PCs connected to the network. Production runs 24/7 and outages would be very expensive for the company. The company is very modern and customers can design their own colour combinations and specifications for their vacuum cleaner. Thus, data needs to frequently be transferred to the PCs controlling the machines.
* Outward facing servers including a web server that is used for marketing and online sales and the company's mail server.
* Administration with PCs and laptops, a server running administration software and databases, wireless printers and Wifi for meeting rooms and general office areas. Employees also travel with their laptops and need to access the administrative network, but not the production area.

You have a list of security controls to be used and a number of entities that need to be connected in the internal network. Depending on the role of the entity, you need to decide how they need to be protected from internal and external adversaries.

Entities to be connected:
* PCs to control production machines
* Production machines themselves
* Employee PCs and laptops for administration
* Server for administration and internal databases
* Wireless printer and scanner for administration use
* Webserver
* Mailserver
* WiFi access points
* Routers
* Switches

Security controls and appliances (can be used in several places)
* Firewalls (provide port numbers to be open for traffic from the outside of the respective network segment)
* VPN gateway
* VPN clients
* TLS (provide information between which computers TLS is used)
* Authentication server
* Secure seeded storage of passwords
* Disk encryption
* WPA3 encryption
* Air gaps
* Intrusion detection system

To prepare for your presentation video, follow these steps:
1. Create a diagram of your network (using any diagram creation tool such as LucidChart or similar) with all entities
2. Place security controls on the diagram
3. For each security control explain what it is used for and why it is needed

Added by Jill G.

Computer Science and Information Technology

Trishna Knowledge Systems 2018 Edition

Instant Answer

Solved by Expert Akash M

06/07/2023

Step 1

The diagram should include the following entities: - PCs to control production machines - Production machines themselves - Employee PCs and laptops for administration - Server for administration and internal databases - Wireless printer and scanner for Show more…

Show all steps

Thanks for your feedback!

Part 2 - Security controls in an IT network of a medium sized company with automated production of vacuum cleaners For this task you take on the role of a security architect (as defined in the NIST NICE workforce framework) You are responsible for a re-design of a company network, including placing security controls in the right places of the network. As security always costs money, you need to prepare a presentation that explains to the management of the company why each security control is required at that particular part of the company network. The company has several departments, but the focus is on three network areas: * Production with automated machines controlled from PCs connected to the network. Production runs 24/7 and outages would be very expensive for the company. The company is very modern and customers can design their own colour combinations and specifications for their vacuum cleaner. Thus, data needs to frequently be transferred to the PCs controlling the machines. * Outward facing servers including a web server that is used for marketing and online sales and the company's mail server. * Administration with PCs and laptops, a server running administration software and databases, wireless printers and Wifi for meeting rooms and general office areas. Employees also travel with their laptops and need to access the administrative network, but not the production area. You have a list of security controls to be used and a number of entities that need to be connected in the internal network. Depending on the role of the entity, you need to decide how they need to be protected from internal and external adversaries. Entities to be connected: * PCs to control production machines * Production machines themselves * Employee PCs and laptops for administration * Server for administration and internal databases * Wireless printer and scanner for administration use * Webserver * Mailserver * WiFi access points * Routers * Switches Security controls and appliances (can be used in several places) * Firewalls (provide port numbers to be open for traffic from the outside of the respective network segment) * VPN gateway * VPN clients * TLS (provide information between which computers TLS is used) * Authentication server * Secure seeded storage of passwords * Disk encryption * WPA3 encryption * Air gaps * Intrusion detection system To prepare for your presentation video, follow these steps: 1. Create a diagram of your network (using any diagram creation tool such as LucidChart or similar) with all entities 2. Place security controls on the diagram 3. For each security control explain what it is used for and why it is needed