Need help with papers – IT papers

Hi need help writing this paper. Well couple of papers. Need help 

Click the link above to submit your assignment.
Students, please view the “Submit a Clickable Rubric Assignment” in the Student Center.
Instructors, training on how to grade is within the Instructor Center.
Case Study 1: HIPAA, CIA, and Safeguards
Due Week 2 and worth 100 points

This assignment consists of two (2) sections: a written paper and a PowerPoint presentation. You must submit both sections as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for.

Health Information Technology (HIT) is a growing field within health services organizations today; additionally, health information security is a major concern among health organizations, as they are required to maintain the security and privacy of health information. The Department of Health and Human Services (HHS) provides extensive information about the Health Insurance Portability and Accountability Act (HIPAA). Visit the HHS Website, at 

www.hhs.gov/ocr/privacy

, for more information about HIPAA requirements. In March 2012, the HHS settled a HIPAA case with the Blue Cross Blue Shield of Tennessee (BCBST) for $1.5 million. Read more about this case at 

www.hhs.gov/ocr/privacy/hipaa/enforcement/examples/bcbstagrmnt.html

. As an IT security manager at a regional health services organization, your CIO has asked for the following: an analysis of this incident, an overview of the HIPAA security requirements necessary to prevent this type of an incident, and a briefing for management on the minimum security requirements to be HIPAA complaint.

Section1: Written Paper

1.  Write a three to five (3-5) page paper in which you:

a.  Describe the security issues of BCBST in regard to confidentiality, integrity, availability, and privacy based on the information provided in the BCBST case.

b.  Describe the HIPPA security requirement that could have prevented each security issue identified if it had been enforced.

c.  Analyze the corrective actions taken by BCBST that were efficient and those that were not adequate.

d.  Analyze the security issues and the HIPAA security requirements and describe the safeguards that the organization needs to implement in order to mitigate the security risks. Ensure that you describe the safeguards in terms of administrative, technical, and physical safeguards.

e.  Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your written paper must follow these formatting requirements:

· This course requires use of new 

Student Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the source list are not included in the required page length.

Section 2: PowerPoint Presentation

2.  Create a six to eight (6-8) slide PowerPoint presentation in which you:

a.   Provide the following on the main body slides:

i.  An overview of the security issues at BCBST

ii.  HIPAA security requirements that could have prevented the incident

iii.  Positive and negative corrective actions taken by BCBST

iv.  Safeguards needed to mitigate the security risks

Your PowerPoint presentation must follow these formatting requirements:

· Include a title slide, four to six (4-6) main body slides, and a conclusion slide.

The specific course learning outcomes associated with this assignment are:

· Summarize the legal aspects of the information security triad: availability, integrity, and confidentiality.

· Use technology and information resources to research legal issues in information security.

· Write clearly and concisely about information security legal issues and topics using proper writing mechanics and technical style conventions.

Click the link above to submit your assignment.

Students, please view the “Submit a Clickable Rubric Assignment” in the Student Center. 
Instructors, training on how to grade is within the Instructor Center. 

Case Study 1: Stuxnet and U.S. Incident Response
Due Week 3 and worth 100 points

Read the article titled “When Stuxnet Hit the Homeland: Government Response to the Rescue,” from ABC News, located at 

https://abcnews.go.com/blogs/headlines/2012/06/when-stuxnet-hit-the-homeland-government-response-to-the-rescue/

 and consider this threat in terms of incident response and recovery procedures.

Write a three to four (3-4) page paper in which you:

1. Explain the role of US-CERT in protecting the nation’s industrial systems and analyze its efforts in relation to preparedness and incident and recovery management. 

2. Discuss the efforts of ICS-CERT specifically to the Stuxnet threat and examine its incident response efforts to mitigate this risk against U.S. industrial systems.

3. With the sophistication of the primary sites of industrial system implementations, determine whether or not alternate sites (e.g., hot site) are feasible for organizations that utilize ICS technologies. Provide a rationale.

4. Explain the high-level planning needed for an industrial systems organization that utilizes ICS technologies to prepare for attacks from cyber threats such as Stuxnet. 

5. Use at least four (4) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources. 

Your assignment must follow these formatting requirements:

· This course requires use of new 

Strayer Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow SWS or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Summarize the various types of disasters, response and recovery methods.

· Describe detection and decision-making capabilities in incident response.

· Use technology and information resources to research issues in disaster recovery.

· Write clearly and concisely about disaster recovery topics using proper writing mechanics and technical style conventions.

Click 

here

 to view the grading rubric for this assignment.

Click the link above to submit your assignment. 

Students, please view the “Submit a Clickable Rubric Assignment” in the Student Center. 
Instructors, training on how to grade is within the Instructor Center. 

Assignment 1: Continuity Planning Overview
Due Week 2 and worth 75 points

Suppose you were recently hired for a new initiative as a business continuity lead / manager at a medium-sized healthcare company. You have been asked to prepare a presentation to the Board of Directors on your main duties for the company and how your position could help protect the business in case of a large-scale incident or disaster. You have been alerted that since this is a new initiative and could come with a potentially large price tag, there is skepticism from some of the Board members.

Write a three to four (3-4) page paper in which you:

1. Explain the basic primary tasks, ongoing evaluations, and major policy and procedural changes that would be needed to perform as the BC lead / manager.

2. Provide insight on how to plan the presentation to garner management and Board buy-in for those who are skeptical.

3. Discuss the first four (4) high-level activities that would be necessary in starting this initiative in the right direction and describe the potential pitfalls of each.

4. Speculate on the most comprehensive and / or critical challenge(s) in the infancy of this initiative and explain how to overcome that challenge(s).

5. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources. 

Your assignment must follow these formatting requirements:

· This course requires use of new 

Strayer Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow SWS or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Compare and contrast the methods of disaster recovery and business continuity.

· Explain risk management in the context of information security. 

· Use technology and information resources to research issues in disaster recovery.

· Write clearly and concisely about disaster recovery topics using proper writing mechanics and technical style conventions.

Click 

here

 to view the grading rubric for this assignment.

Assignment 1: Privacy, Laws, and Security Measures

Due Week 3 and worth 100 points

You are an information security manager for a large retail sporting goods store. The sporting goods store is involved in the following in which they:

·

Maintain an internal network and an intranet protected by a firewall

· Maintain a Web server in the DMZ that is protected by another firewall

· Accept credit card sales in the store and over the Web via e-Commerce transactions

· Maintain an email server for employee email communication and communication with other business partners and customers

· Maintain a wireless network within the store

· Use RFID for inventory and theft prevention

· Maintain a Facebook presence

· Provide health screening for high blood pressure, high cholesterol, and other potential health risks

The CEO is concerned about the amount of information that is being collected and maintained within the organization.

Write a page paper in which you:

1. Describe the major privacy issues facing organizations today.

2. Analyze the major privacy issues described above and compare that to the potential privacy risks facing the sporting goods store.

3. Explain the security risks and applicable laws that govern the privacy risk.

4. Describe the security measures that the organization needs to implement to mitigate the risks.

5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your written paper must follow these formatting requirements:

This course requires use of new 

Student Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

(Note: You’ll be prompted to enter your Blackboard login credentials to view these standards.)

. Your paper should include a cover page.

·

. Your paper should be of sufficient length to fully develop your own ideas that address the items called for in the instructions, and not be filled with “filler” information. Write clearly and concisely.

. The paper should be double-spaced, 12-point font.

The specific course learning outcomes associated with this assignment are:

· Explain the concept of privacy and its legal protections.

· Use technology and information resources to research legal issues in information security.

· Write clearly and concisely about information security legal issues and topics using proper writing mechanics and technical style conventions.

Click 

here

 to view the grading rubric for this assignment.

Click the link above to submit your assignment.
Students, please view the “Submit a Clickable Rubric Assignment” in the Student Center.
Instructors, training on how to grade is within the Instructor Center.

Assignment 2: COPA and CIPA

Due Week 4 and worth 100 points

The Children’s Online Privacy Protection Act (COPPA) and the Children’s Internet Protection Act (CIPA) are both intended to provide protections for children accessing the Internet. However, they both have had some opposition.

Write a paper in which you:

1. Describe the main compliancy requirements and the protected information for both COPPA and CIPA.

2. Analyze how COPPA and CIPA are similar and how they are different, and explain why there is a need for two different acts.

3. Describe what you believe are the most challenging elements of both COPPA and CIPA to implement in order to be compliant.

4. Speculate on why COPPA and CIPA define protection for different ages; COPPA defines a child as being under the age of 13 and CIPA defines a minor as being under the age of 17.

5. Identify the main opposition to COPPA and CIPA based on research and speculate on whether they will be changed in the future based on the opposition.

6. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your written paper must follow these formatting requirements:

This course requires use of new 

Student Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

(Note: You’ll be prompted to enter your Blackboard login credentials to view these standards.)

. Your paper should include a cover page.

·

. Your paper should be of sufficient length to fully develop your own ideas that address the items called for in the instructions, and not be filled with “filler” information. Write clearly and concisely.

. The paper should be double-spaced, 12-point font.

The specific course learning outcomes associated with this assignment are:

· Explain the concept of privacy and its legal protections.

· Describe legal compliance laws addressing public and private institutions.

· Use technology and information resources to research legal issues in information security.

· Write clearly and concisely about information security legal issues and topics using proper writing mechanics and technical style conventions.

Click 

here

 to view the grading rubric for this assignment.

Click the link above to submit your assignment.

Students, please view the “Submit a Clickable Rubric Assignment” in the Student Center. 
Instructors, training on how to grade is within the Instructor Center. 

Assignment 2: Incident Response (IR) Revamp
Due Week 4 and worth 75 points

Imagine you have just taken over the manager position for your organization’s incident response team, after coming from another division in the company. Your first realization is that proper procedures, best practices, and sound technologies are not being utilized. You decide to revamp the team’s efforts.

Write a two to three (2-3) page paper in which you:

1. Explicate the main efforts that would be included in the incident response efforts, including but not limited to personnel and team structure, tools and utilities, and proper procedures.

2. Discuss in detail the role that an IDS / IPS would play in the IR efforts, and explain how these systems can assist in the event notification, determination, and escalation processes.

3. Explain how the NIST SP800-61, Rev. 1 could assist the personnel in classifying incidents so each is identified appropriately and the proper incident-handling procedures are taken.

4. Explain how the use of log management systems (e.g., Splunk) could be a legitimate and useful component of the IR efforts, and describe the potential issues that could arise if not utilized.5.Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources. 

Your assignment must follow these formatting requirements:

· This course requires use of new 

Strayer Writing Standards (SWS)

. The format is different than other Strayer University courses. Please take a moment to review the SWS documentation for details.

· Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow SWS or school-specific format. Check with your professor for any additional instructions.

· Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

· Summarize the various types of disasters, response and recovery methods.

· Describe detection and decision-making capabilities in incident response. 

· Use technology and information resources to research issues in disaster recovery.

· Write clearly and concisely about disaster recovery topics using proper writing mechanics and technical style conventions.

Click 

here

 to view the grading rubric for this assignment.