A company that manufactures medical equipment is soliciting bids to hire someone to conduct a security audit and develop policy to enhance their Computer and Network security. You are charged with writing a proposal so your company can bid on and hopefully win the contract to conduct the security audit. This paper should again be written as a proposal to win the contract to conduct the security audit. The proposal should contain specific details of Computer and Network security issues, what you propose to audit as well as your thoughts/philosophies about how the different pieces of the IT environment of a medical equipment company should be setup. Assignment details Company background 1) This company manufactures medical testing equipment such as X-Ray, MRI and CAT scan machines. They also manufacture lab testing equipment which is used to determine the status of patient samples. 2) The company has offices across the United States with main offices in New York City and San Francisco as well as branch offices in Chicago and Seattle. 3) Here is what each office does: a) NYC – Headquarters, Finance & Marketing, IT b) San Francisco – Manufacturing, IT c) Chicago – Client support d) Seattle – All back office functions, i.e. accounting, HR, etc… 3) The New York City and San Francisco offices have data centers 4) As they manufacture medical equipment the company frequently interacts with Hospitals, Doctors, Insurance companies and City, State and Federal governmental agencies. 5) Being in the medical field they are very concerned about Computer and Network security. As a result they are soliciting proposals from vendors to come in and perform a top-to-bottom IT security audit as well as to develop and provide policy around computer and network security. Assignment detail You are to write a proposal to be submitted to the Medical company to win the contract to conduct a top-to-bottom IT security audit of the organization along with recommendations for improving their situation. Your proposal should include the following information: 1) Cover page 2) Introduction – What is the purpose of the proposal? Why are you submitting it? – What is the background of your company? How long have you been in business? What kind of IT professionals are on your staff? Are any of them certified IT security personnel? If so what certifications do they hold and how many employees like them do you have? – What is your philosophy/Why do you feel that conducting an IT security audit is important? 3) Explanation of the challenges facing computer and network security along with what you will audit – What are some of the Computer and Network security challenges facing an organization, If hired what specifically will you audit and what Computer and Network security recommendations do you feel are important? (Please be sure to mention the most important topics that we covered in this course). The below represents the bulk of this assignment and is broken down into categories such as Physical Security, Network Security, Access Control, etc. Each category is broken down further into (2) sections, section 1 and section 2. In general you should use section 1 to speak about the Computer and Network security risks facing that particular category. You should use section 2 to speak about your recommendations for combating the computer and network security challenges you speak about in section 1. Here are the categories and suggestions for both sections of each category.

Whatsapp us.