UNIT 4 AOS2 IT DATA ANAYLTICS Flashcards
Identify two threats relating to the integrity and security of data and information that lilys data and information face from his current data management practices. Explain why each is a threat and suggest a strategy to prevent or minimise data loss. (1 mark for Threat, 2 marks Strategy) X 2
Threat 1: Accidental - Outdated Software (Windows and Notebook Not Updated)
Threat 2: Deliberate - Shared Password
b. Identify one threat relating to the integrity and security of data and information that Lilly’s data and information may face from her brothers proposed data management practices. Explain why it is a threat and suggest a strategy to prevent or minimise data loss. ((1 mark for Threat, 2 marks Strategy)
Threat: Deliberate - Use of Free Cloud Computing Service Based in Eastern Europe which may not be secure.
Strategy: Physical - Choose a reputable, paid cloud provider with strong encryption, to ensure data integrity and prevent unauthorized access.
lilly is concerned that your proposed strategy for the proposed practice (in question 2) may not be enough. Explain what the consequences to his business would be, if your proposed strategy failed.
Loss of Client Trust: A data breach could erode client trust and drive clients to seek more secure alternatives, leading to a decline in business.
a. Outline an ethical dilemma relating to lily’s proposed practice
- Lilly faces an ethical dilemma in choosing a free cloud service based in Eastern Europe.
- While it saves money
- May compromise the security and privacy of her clients’ data.
- Lilly must balance the financial benefits against her responsibility to protect her clients’ information from potential risks like data breaches.
Question 6 (8 marks)
Now that Lilly’s is planning on expanding his business, her brother has suggested the he should invest in an appropriate network, so that all his employees can easily share information and resources while at work, with clients at their new office space or at a client’s home
Recommend an appropriate network setup for Lilly’s business (Include type of network and any hardware and software that would be required).
Explain how each item is vital to Lilly’s business.
Local Area Network (LAN): A client-server network is more efficient than peer-to-peer.
- NICs: Required for each device to connect to the network.
- File Server: Stores all files.
- Database Server: Stores client details (can be on the file server or a virtual server).
- DHCP Server: Assigns IP addresses (can be on the file server or a virtual server).
- DNS Server: Resolves IP addresses (can be on the file server or a virtual server).
- Router: Connects LAN to WANs.
- Switches: Directs data to network devices.
- Modem: Connects LAN to the internet.
- Firewall: Manages network traffic.
- WAP: Provides wireless access for staff devices.
- Printer/Photocopier: Shared resource.
Cabling:
- CAT 6 Cable: Connects servers, desktops, switches, routers, and modems.
Software:
- Network Operating System: Manages network and access hierarchies.
- Virtual Server Software: Hosts multiple virtual servers on one physical server.
- VPN Software: Allows remote network access.
- Anti-virus Software: Protects against viruses.
b. Explain the disadvantages that may be associated with lilly using cloud services. (2 marks)
- Security Risks: Cloud services may expose sensitive data to breaches and unauthorized access, depending on the provider’s security measures.
- Reliance on Internet Connectivity: Stable internet is required for cloud access; outages or slow speeds can disrupt operations and data access.
c. Other than cloud computing, what is another way lilly could access her client’s details while visiting their homes, office or school and how would this be more secure. (2 marks)
Using a Local Device with Encryption: Lilly can use an encrypted laptop for accessing client details, ensuring data protection if the device is lost or stolen, offering better security than unprotected cloud access.
a. Explain to Sven why a Disaster Recovery Plan is needed. (2 marks)
A disaster recovery plan ensures that lilly and the organization can quickly recover and resume normal operations after any data loss or disaster.
b. Recommend a Disaster Recovery Plan that will help lily get her business up and running again, if a disaster was to occur at is office space.(8 marks)
Recommended Disaster Recovery Plan for Lilly’s Business
- Recovery
Disaster Recovery Site: Set up an alt location to resume operations if the main office is affected.
Recovery Procedures: Document and implement step-by-step recovery procedures for IT systems and business functions.
- Backup
Data Backup Strategy : Schedule regular backups to both on-site storage and a secure off-site or cloud location.Backup Verification: Regularly verify backup integrity and ensure data can be restored successfully. - Testing
Drills and Simulations: Conduct regular disaster recovery drills to test the effectiveness of the plan.
Plan Review: Regularly review and update the DRP based on test results and changes in the business environment.
- Emergency
Communication Plan: Develop a strategy to promptly inform employees, clients, and stakeholders about the (D) and (R) status
Emergency Contacts: Maintain an updated list of emergency contacts, including IT support.
State one goal and one objective that Lilly could use that is directly related to the expanded section of her business.
Goal: Make a bigger profit each year
Objective: Increase customers by 15% each year by offering better credit terms to customers.