This is an individual assessment. This report gives you the opportunity to research, formulate,...

Question

This is an individual assessment. This report gives you the opportunity to research, formulate, develop and document a basic security policy for a specific organization in Australia EXCEPT for BANKING/MORTGAGE organisation.
Moreover, you are required to analyze, record, resolve security incidents and identify and assess the threats to, and vulnerabilities of the organisation’s networks.
This report will use many of the concepts and techniques discussed in this unit throughout the semester.
Please note, you will need to either choose from the list of examples of the industries provided below or come up with your own idea for a chosen specific organisation.Hospital/Medical CentreSupermarketVehicle rentalTourism agencyHotel/Motel
School/UniversityLibraryAviation operatorProperty Management
Please discuss your chosen organisation and or ideas with your lecturer before you start your research. You must send the organization that you have chosen to your lecturer by Week 5.
Please note you might NOT be allowed to choose the same or similar specific organisation as other in your class. You should aim at research, develop, and document answers to questions (a.) and (b.) below. Do not copy the examples of information security policies used in class! You should state clearly: the name of the organisation you have chosen the stakeholders of the organisation the nature of the business and answer questions (a) and (b).
Questions:
(a.) Research, formulate, develop and document a strategic security policy for your chosen organisation based on the nature of the organisation and the stakeholders in the organisation.
(b.) Based on the security policy you have researched, formulated, developed and documented in the item (a.) above, identify and assess the potential threats and vulnerabilities of the company’s network and discuss how such threats and vulnerabilities can be mitigated based on your research.

bisy3006bisy2003reportassessment-3-t2-2020-oovyylmv.pdf

Dilpreet · Accepted Answer

ASSESSMENT 3 – STRATEGIC SECURITY POLICY FOR COLES SUPERMARKET
Executive Summary
The increasing dependency of business organisations on computer networks and personal data collection and storage has been establishing the need for a strategic security policy. As supermarket chains like Coles continue to be increasingly dependent on network and internet to collect valuable information that supports the operations and processes of the business, it has become essential to focus on the security policy of the business. This report will present strategic security policy for Coles Supermarket and will also identify and assess the threats and vulnerabilities of the company’s network. The report will also suggest mitigations methods that can help to cope with the challenges and vulnerabilities.
Table of Contents
Introduction	5
Company Background	5
Strategic Security Policy for Coles Supermarket	5
Purpose of the Security Policy	5
Type of Personal Information Collected	6
Collection of Personal Information	6
Access to Personal Information	7
Information Security at Coles	8
Obligations to Protect the Data	8
Security Safeguards Regarding the Suppliers	8
Access to Coles Data	8
Data Breaches Notification Support	8
Security Audits	8
Data Deletion Policies	9
Inconsistencies with Other Agreements	9
Potential Threats and Vulnerabilities of Coles	9
Data Defects or Data Breach	9
Vulnerability of the Network	9
Mitigation of Threats and Vulnerabilities	10
Authentication	10
Stating the Consequences	10
Implementing Combo Firewall	10
Antivirus	10
Behavioural Analysis	10
Conclusion	10
References	12
Introduction
With advancements in technology and the wave of digitisation, most of the business organisations operational in different industries depend largely on computer network and internet to perform their business operations and functions. With this, the vulnerability of these businesses to cyber attacks and threats has increased manifolds. In order to mitigate these challenges and cope up with these risks, it has become essential to come up with a strategic security policy, which clearly defines the rules and procedures the employees and other shareholders of the business need to follow while assessing or using the IT assets or resources of the business. This report will present strategic security policy for Coles Supermarket and will also identify and assess the threats and vulnerabilities of the company’s network. The report will also suggest mitigations methods that can help to cope with the challenges and vulnerabilities.
Company Background
Coles Supermarket Australia Pty Ltd is one of the largest supermarket chains in Australia. The chain has been operating with the name Coles. Coles is considered not only as one of the largest supermarket chains in Australia but is also considered as a consumer service and retail chain. The company has its operations being rooted in the consumer service industry and has more than 807 supermarkets across Australia (Coles Group, 2020). Coles aims at being an innovative and creative supermarket chain, which makes lives of more than 21 million Australians easy every week. Coles Supermarket is known for selling fresh fruits, vegetables, meat, dairy products and other groceries to the customers along with other essentials. Though Coles is making its presence being felt through a number of brick and mortar stores, its online store Coles Online is becoming increasingly popular among its customers. Coles online has a team of dedicated employees, who work in the direction of enhancing the online shopping experience of the customers.  With this, the company aims to create value for its customers, stakeholders and shareholders. 
Strategic Security Policy for Coles Supermarket
Purpose of the Security Policy
The purpose of this security policy to safeguard the sensitive, personal and confidential information that is in care of Coles. The strategic security policy of Coles shall relate to the personal information that Coles collect and handle about its customers, visitors to the official website of Coles Online. The security policy shall also take into consideration personal information of the users of the apps of Coles Supermarkets. This policy takes into consideration the employees, customers and other stakeholders and shareholders of the business (Valenza et al., 2017). Coles Supermarket does not sell the personal information of the customers. 
Type of Personal Information Collected
The personal information that Coles Supermarket collects includes the name of the customers, the contact details of the customers including their email, phone number, their residential address and some of the delivery addresses they might frequently use, identity information of an individual such as the date of birth is also collected. In addition to this,

This is an individual assessment. This report gives you the opportunity to research, formulate, develop and document a basic security policy for a specific organization in Australia EXCEPT for...

Answer To: This is an individual assessment. This report gives you the opportunity to research, formulate,...

Answer To This Question Is Available To Download

Related Questions & Answers

Submit New Assignment