HW17-B: Chapter 17

17.10 Your company wishes to move from using desktop applications to accessing the same functionality remotely as services. Identify the risks that might arise and suggest how these risks might be reduced.

One major risk would be the productivity losses due to network congestion or total network loss.  To minimize this risk we would want to vet several network providers and ensure they have redundancies built in so as to be able to connect to the services in case of a node going down.

Another big risk is security because depending on the kind of data moving back and forth there is the possibility of a man in the middle type of attack where the data becomes intercepted.  Ideally we would want to make sure the latest encryption protocols are being used and followed.  We would also want to minimize the kind of data (if highly sensitive) we are sending and receiving in e-mails like data that’s considered PII or Personal Identifying Information should be restricted.  Social engineering also comes up due to the fact that people can easily be duped to reveal passwords and other sensitive information so it would be imperative to train employees to identify when someone is trying to get information from them or phising e-mails present themselves and what to do and who to inform to minimize these risks.

 

Post a comment

You may use the following HTML:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>