英国代写论文:银行风险缓解
英国代写论文:银行风险缓解
银行应该遵循以下风险缓解或对策来应对威胁和可能的信息安全攻击,
他们首先需要确保服务器的物理安全。服务器机房必须限制进入。隐藏的安全摄像机和安保人员可能会进行适当的监控。那么银行必须重点更新其所使用的系统,应用程序和操作系统。他们必须使用所有可用的补丁更新软件,直到日期。
2.银行必须安装防火墙以保护其内部网络和资产。除了防火墙之外,还必须有代理服务器绕过网络服务器的流量,网络服务器才会安全。
3.有权访问银行数据的员工必须有适当的政策,程序和访问控制和授权的实施。
4.银行必须有一些数据备份和恢复计划和实施。它必须保持系统日志(Kim&Fang,2010)。
5.必须有内容过滤的过程来分离重要数据,如垃圾邮件等不重要的数据。
英国代写论文:银行风险缓解
建议
XYZ银行未来的安全建议被列为,
1.银行必须保持系统和应用程序的最新状态并为当前所有更新提供补丁。
2.银行必须使用新版本的软件而不是过时的软件。
3.银行应定期有效地运行数据备份计划。
4.网络流量必须被监控。它可以节省潜在的攻击如DDoS等
5.银行必须定期进行安全审计,以确保银行当前信息安全基础设施的状态。
英国代写论文:银行风险缓解
Risk Mitigation
The bank should follow the following risk mitigation or countermeasures for dealing with the threats and possible information security attacks,
1.They need to ensure the physical security of the servers first. The server room must have restricted entry. There may be proper monitoring through hidden security cameras and security personnel. Then the bank must focus on updating the systems, applications, operating systems used by it. They must update the software with all available patches till date.
2.The bank must install firewall to protect its internal network and assets. Other than firewall there must be proxy server that will bypass the traffic for webs server and the webs server will be secured.
3.There must be proper policies, procedures and implementation of access control and authorization for the employees who have access to data of the bank.
4.The bank must have some data backup and recovery plan and implementation. It must keep system logs (Kim & Fang, 2010).
5.There must be content filtering process to separate important data from unimportant data like spam etc.
英国代写论文:银行风险缓解
Recommendation
Future security recommendation for the XYZ bank are listed as,
1.The bank must keep their systems and application up to date and patches for all current updates.
2.The bank must use updated on new version of software instead of outdated software.
3.The bank should run the data backup plan regularly and effectively.
4.The network traffic must be monitored. It will save from potential attacks like DDoS etc.
5.The bank must have security audits periodically to ensure the status of the current information security infrastructure of the bank.
