Information Assets
Added on 2023-01-17
20 Pages3704 Words91 Views
Running Head: Information Assets 0
Information Assets
Report
Student name
Information Assets
Report
Student name
Information Assets 1
Table of Contents
Task 1: Identify and Manage Asset.................................................................................................2
Task 2: Vulnerability management and risk management............................................................10
References......................................................................................................................................16
Table of Contents
Task 1: Identify and Manage Asset.................................................................................................2
Task 2: Vulnerability management and risk management............................................................10
References......................................................................................................................................16
Information Assets 2
Task 1: Identify and Manage Asset
Q. 1(a), Q.1 (b), Q.1 (c)
MyHealth Company is a healthcare sector company that provides different services and
products to their patients, such as clinical services, healthcare products, and many others. It has a
cancer-related research department for researching new things in the field of oncology. It have
many information assets to manage different services and operations of the MyHealth Company,
such as computer systems, servers, routers, switches, wireless access points, and many others.
The MyHealth Company requires identification and manages their assets using different security
policies, which are based on the Australian cyber security standards (ACSC, Australian Cyber
Security Centre 2017).
There are many policies and mitigation strategies are used to mitigate the risks from the
organizations. MyHealth Company wants to know about their resources and secure them from
different cyber-attacks. They require security policies to mitigate risk from their organization.
ACSC provides different mitigation rules to mitigate risks (ACSC, Strategies to Mitigate Cyber
Security Incidents 2019).
Information systems are required high security from the cyber-attacks. In addition,
information assets are having a huge value. Therefore, it is highly required strong security
policies to make them secure (Andrijcic and Horowitz 2016).
Number Asset
ID
Asset Asset
Location
Ownership Asset Description
1 S.01 Database
server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
Database server is a basic need of an
organization to manage large
amount of data of different
operations in the organization. It
manages all the data in systematic
way, which is used for decision-
making in future. Database server is
Task 1: Identify and Manage Asset
Q. 1(a), Q.1 (b), Q.1 (c)
MyHealth Company is a healthcare sector company that provides different services and
products to their patients, such as clinical services, healthcare products, and many others. It has a
cancer-related research department for researching new things in the field of oncology. It have
many information assets to manage different services and operations of the MyHealth Company,
such as computer systems, servers, routers, switches, wireless access points, and many others.
The MyHealth Company requires identification and manages their assets using different security
policies, which are based on the Australian cyber security standards (ACSC, Australian Cyber
Security Centre 2017).
There are many policies and mitigation strategies are used to mitigate the risks from the
organizations. MyHealth Company wants to know about their resources and secure them from
different cyber-attacks. They require security policies to mitigate risk from their organization.
ACSC provides different mitigation rules to mitigate risks (ACSC, Strategies to Mitigate Cyber
Security Incidents 2019).
Information systems are required high security from the cyber-attacks. In addition,
information assets are having a huge value. Therefore, it is highly required strong security
policies to make them secure (Andrijcic and Horowitz 2016).
Number Asset
ID
Asset Asset
Location
Ownership Asset Description
1 S.01 Database
server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
Database server is a basic need of an
organization to manage large
amount of data of different
operations in the organization. It
manages all the data in systematic
way, which is used for decision-
making in future. Database server is
Information Assets 3
used to manage all the patients’ data
and information as well as research
data of MyHealth Company. Cyber
security is requiring securing data
and information (Barkly 2018).
2 S.02 Web
application
Server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
Web server is used to manage all the
request of all the patients and
customers, which are coming from
their internal network. It is included
in the MyHealth Company to
manage different applications of
their business operations. In present
era, data breaches are highly
increases. Therefore, company
should implement cyber security
( Bradford 2018).
3 S.03 Electronic
mailing
Server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
MyHealth Company is used email
server for internal communication.it
is helpful for internal non-verbal
communication in between different
staff members.
4 NW.01 Layer 2
Switch
Server Room MyHealth
Company
MyHealth Company is having
access layer switches to connect
different computer systems with
server. It is included in the
MyHealth Company to connect
server with the personal computer
systems and internet. Network
should have security (Dutton 2017).
5 HW.01 Personal
Computer
In different
department in
MyHealth Computer systems are used to
manage different data and
used to manage all the patients’ data
and information as well as research
data of MyHealth Company. Cyber
security is requiring securing data
and information (Barkly 2018).
2 S.02 Web
application
Server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
Web server is used to manage all the
request of all the patients and
customers, which are coming from
their internal network. It is included
in the MyHealth Company to
manage different applications of
their business operations. In present
era, data breaches are highly
increases. Therefore, company
should implement cyber security
( Bradford 2018).
3 S.03 Electronic
mailing
Server
On windows
server 2008 in
the server
room
Server
administrator
(IT staff)
MyHealth Company is used email
server for internal communication.it
is helpful for internal non-verbal
communication in between different
staff members.
4 NW.01 Layer 2
Switch
Server Room MyHealth
Company
MyHealth Company is having
access layer switches to connect
different computer systems with
server. It is included in the
MyHealth Company to connect
server with the personal computer
systems and internet. Network
should have security (Dutton 2017).
5 HW.01 Personal
Computer
In different
department in
MyHealth Computer systems are used to
manage different data and
End of preview
Want to access all the pages? Upload your documents or become a member.
Related Documents
Cyber Security: Asset Identification and Risk Managementlg...
|19
|3526
|79
Risk management plan – single risk Company name: MyHealth.lg...
|2
|468
|50
Pen test and BIA Reportlg...
|18
|4153
|192
Network Requirements and Mitigationlg...
|5
|854
|95
Risk management plan – single risk Company name: MyHealth.lg...
|1
|339
|66
IT Risk Assessment Report for Small IT-Companylg...
|9
|2297
|112