100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
D485 CLOUD SECURITY DNG TASK 1 LATEST UPDATED WESTERN GOVERNORS UNIVERSITY $16.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. D485
  4.  
  5. D485

Exam (elaborations)

D485 CLOUD SECURITY DNG TASK 1 LATEST UPDATED WESTERN GOVERNORS UNIVERSITY
 9 views  0 purchase
  • Course
  • D485
  • Institution
  • D485

D485 CLOUD SECURITY DNG TASK 1 LATEST UPDATED WESTERN GOVERNORS UNIVERSITY

Preview 3 out of 29  pages

Document information

  • October 11, 2024
  • 29
  • 2024/2025
  • Exam (elaborations)
  • Unknown

Subjects

  • d485
  • wgu d485
  • cloud security
  • cloud security implementation plan
  • swbtl llcs microsoft azure cloud
  • d485 cloud security dng task 1 latest updated

Written for

  • D485
  • D485

Seller

avatar-seller
saraciousstuvia

Reviews received

Content preview

D485 CLOUD SECURITY DNG TASK
1 LATEST UPDATED WESTERN
GOVERNORS UNIVERSITY

,D485 Cloud Security

DGN1 Task 1


Cloud Security Implementation Plan


A. Executive Summary



SWBTL LLC’s Microsoft Azure cloud environment displays many security concerns and does

not align with the company’s business requirements. The following outlines the gaps between

what is evident in the company’s security environment and the company’s business

requirements:

1. Compliance with applicable regulations and standards: SWBTL LLC currently has

contracts with the U.S. government in addition to processing card transactions on a daily

basis. Therefore, the company must comply with the Federal Information Security

Modernization Act (FISMA) and the Payment Card Industry Data Security Standard (PCI

DSS). Currently, SWBTL LLC does not comply with these regulations in their existing

cloud environment.

2. Azure Resource Groups and Azure Role-Based Access Control (RBAC): SWBTL LLC

has a business requirement that departmental resources should only be accessed by the

respective department’s users. This requirement aligns with the principle of least

privilege. However, the cloud environment does not adhere to this concept in its current

state.

3. Azure Key Vaults and Encryption of data-at-rest and data-in-transit: There are no

services spun up to encrypt data at rest or data in transit. Azure Key Vaults can be used

, to secure encryption keys when implementing the Azure Disk Encryption and Azure SQL

Database TDE services for data at rest. Data in transit: Azure Key Vaults enforces

transport-level encryption to protect data between Azure Key Vault and clients.

4. Backups: SWBTL LLC has business requirements pertaining to backups. These

requirements include the frequency and retention of those backups as well as the

recovery objectives of those backups. There is no policy or other configurations in place

that adhere to these business requirements.

5. Vulnerability Scanning: The scope of vulnerability scans are outdated and it’s unknown if

the scans include the cloud environment.



Overall, SWBTL LLC’s cloud environment is lacking the necessary security controls to fulfill its

business requirements and comply with regulations and standards. The company needs to take

the appropriate corrective actions in securing the cloud environment.



B. Proposed Course of Action



The proposed course of action for SWBTL LLC consists of implementing Microsoft’s Azure

Government Infrastructure as a Service (IaaS) solution. This solution provides the company with

a FedRAMP/FedRAMP+ authorized product that is also DoD Impact Level (IL) 5 authorized. In

addition, this service model meets the company’s requirements of allowing deployment and

control of multiple operating systems, virtual machines, and custom applications that can be

supported by compute, storage, and network resources on demand.



Applicable regulatory compliance directives include the following:

- Federal Information Security Modernization Act (FISMA): As a U.S. government

contractor, SWBTL LLC needs to comply with information security standards and

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller saraciousstuvia. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $16.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

75323 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling

Recently viewed by you

Class notes ·

(0)

Tejido conectivo
$16.49
  • (0)
  Add to cart