University of Maryland University College
November 30, 2012
Table of Contents
Honor Pledge 3
ABC Background 4
Question One Answer 5
Question Two Answer 8
Question Three Answer 10
Question Four Answer 11
Question Five Answer 12
Reference Page 14
CSEC 630 Final Exam - 100 points
Exam is due by 11:59 PM EDT [Sunday December 02, 2012].
This examination is worth 20 percent of your total grade. There are five questions, and the maximum point values are included with each question.
Maximum length answer for each question should be limited to approximately 800 words (2 pages) excluding diagrams, …show more content…
ABC Healthcare’s stakeholders include multiple groups that depend on or need access to clinical and/or financial systems in order to help support and grow the company. The access requirements and associated risk model varies by user group. The main access groups are internal only users (i.e. nurses, hourly employee, etc.), internal/remote users (i.e. salaried employees, doctors, etc.), and business partners (i.e. collection agencies, banks, etc.). Risk mitigation solutions must be developed for each user group to help ensure that the company recognizes the benefit that each group brings and to minimize the risk to business operations.
The high-level management goals of the network design implementation are as follows: • Support the business and balance security requirements without introducing significant overhead and complexity;
• Maintain and enhance security without significantly increasing management overhead or complexity;
• Implement systems that are industry supported (standards where appropriate), scalable, and fault-tolerant;
• Ensure that the design is implemented to help ensure compliance with any and all applicable regulations;
• Proper management of access control for legitimate users and malicious users is of the utmost