ESSENCE OF THE CASEHere are the essential elements in this case:
|
San Diego Security Company has just hired you as its IT security administrator. Your first task is to evaluate the security infrastructure at the company.
As you begin your duties as the security administrator, a user requests permission to gain access to the network server from her home. How do you determine whether to allow this practice? Who should be involved in making the decision? Describe what steps you should take in this situation.
You must perform a risk/benefit analysis to properly answer this question. You need to consult with the user and determine why she needs access from her home and what benefit it will have for the business. For example, it may only be so that she can check her email. On the other hand, it might be to perform critical administrative tasks that would otherwise require a 45-minute commute to the office to make a 5-minute fix.
You also need to speak with her supervisor and members of your management chain. Present the pros and cons to them and make a recommendation based upon your assessment of the risk of allowing outside access weighed against the possible benefits to the organization.
18.117.153.241