ANALYZE THE INTERNAL SECURITY PROCEDURES AND PRACTICES YOU WILL USE TO VALIDATE THE SECURITY OF YOUR ENTERPRISE’S WEB APPLICATIONS.
Term Paper: Web Application Security Challenges
This assignment consists of two (2) sections: a written paper and a PowerPoint presentation. You must submit both sections as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for.
You are the Chief Security Officer (CSO) for an e-Commerce company and are concerned about security for your e-Commerce applications. Specifically, your company’s Board of Directors has requested a detailed forward-looking plan with emphasis on securing your Web presence assets. Read the article titled, “Web application security is growing problem for enterprises” located at http://www.infoworld.com/d/security-central/web-application-security-growing-problem-enterprises-843?page=0,0. Also, be sure research at least four (4) other articles concerning the challenges of Web application security.
Section 1: Written Paper
- Write an eight to ten (8-10) page paper in which you:
- Summarize the current state of Web application security for your Board of Directors to understand. Determine any common themes that need to be addressed specific to the Web security.
- Describe the techniques and technologies you would use that you would implement to mitigate these security challenges and explain why you chose these techniques and technologies.
- Analyze the internal security procedures and practices you will use to validate the security of your enterprise’s Web applications.
- Represent your Board recommendations graphically using Visio or Dia. Note:The graphically depicted solution is not included in the required page length.
- Use at least four (4) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Section 1 of your assignment must follow these formatting requirements:
- Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
- Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
- Include charts or diagrams created in Visio or Dia. The completed diagrams / charts must be imported into the Word document before the paper is submitted.
Section 2: PowerPoint Presentation
- Create a persuasive eight to ten (8-10) slide PowerPoint presentation (not including the cover slide) in which you:
- Detail your Board recommendations.
- Create bulleted speaking notes for your presentation to the executive board in the Notes section of the PowerPoint. Note: You may create or assume any fictitious names, data, or scenarios that have not been established in this assignment for a realistic flow of communication.
- Use a professional technically written style to graphically convey the information.
The specific course learning outcomes associated with this assignment are:
- Analyze the role and importance of audit and compliance to Web application security.
- Explain the value and importance of vulnerability and security assessments for Web applications.
- Use technology and information resources to research issues in securing Web-based applications.
- Write clearly and concisely about Web application security topics using proper writing mechanics and technical style conventions.