Use Harvard Referencing system.

Scenario A UK wide enterprise dealing with taxation management has its head office in
Leatherhead Surrey. They are looking to enhance their business across the
border to include Spain and Germany. The nature of the data at hand requires
careful management of the stored information. They should make sure that no
adversary can get hold of their information. For this, they are hiring a Security
Operations and Assurances officer. The key task for such a person is to make
sure that a proper formulation and idea is followed to ensure that this business
remodelling is beneficial for the company.
The SOA officer will thus have to devise a System Development lifecycle and
look at all the aspects of the implementation. The following are the two states of
the system with a brief overview of the before and after condition of the network.
This is mere a sample situation, you can work with your imagination to improve
it. You as the SOA need to do the following tasks:
 Define what network components are being used. Explain in detail
different network structures such as the use of LAN, WAN or VPN’s where
necessary.
 Define the SDLC that you would use for the enhanced network. Use
explanation with each step and also provide a timeline for the different
steps that you would use. You also need to explain how each timeline is
being set.
 Explain the set of risks you for see. Write in detail which risks could you
mitigate, and which risks will be left in the system
 Write in detail how you would test the system. Your testing should cover
o Stress testing
o Functional testing
o Non-functional testing
 Explain what will be covered by the incident response team and how
would you recommend to improve the operation of the incidence response
team.
Guidelines for the report
Title Each student will develop an individual report covering at least one aspect of the
system design in some detail. The report would ideally be less than 20 pages.

The proposed SOC should try and cover the core aspects identified in the
description and should go into some detail in one or more areas. Please refer to
the marking scheme below for guidance.
Communication skills are essential for professionals; technical report writing is a
key skill in the commercial sector. Please ensure that your report offers a
professional standard is fully referenced and conforms to Harvard referencing
standards.
Task details Task 1: Produce a technical report to support the development of SOC against
the set scenario. The report should be around 3000 words long.

The following attributes identify key needs to be included in the technical report.

 Demonstrate a clear understanding of the current knowledge and good

practice of security operations and assurance.
 Demonstrate abilities to critically analyse and understand in order to
produce logical practises against bespoke requirements.
 Demonstrate skills in security assessment and testing in order to assure a
high degree confidence and trust.
 Identify areas for further investigation and look at one of these areas in
addition to the network design.
 Identify key critical success factors in developing this solution.
 State any significant assumptions that have been made.

Marking Criteria Issues Mark Marking breakdown where

Guide appropriate
__/100

Different Explanation of all the 10 8 (2marks per each key

network components of the network. component)
components
2 marks for explaining the
underline network topology
Explanation of Explain all stages of the SDLC 10 5 for diagram with proper
SDLC labelling
15 for explanation of each
stage

Risk Analysis Explain all risks in the system 4

 2 marks per test
System How would you test the system 6
testing
Incidence response strategy
Incidence What operations will the 10
response Incidence response team cover
team and how will they assure its
operation
2 language
Report Report formatting and layout 10
4 referencing
structure
4 formatting