NTC/362 V6 Wk 5 – Network Security Assignment

Posted on December 27, 2025

NTC/362 v6 Wk 5 – Network Security Assignment

You are in networking at a large international company. Your company recently decided to implement a cross-training initiative, and you have been selected to give a presentation to an audience of non-networking professionals working at various departments in your company. Your presentation must be clear and concise enough to convey technical information to professionals who have a limited understanding of how networking actually works. However, it must also be accurate enough that your audience can understand how their company roles (such as scheduling resource-hogging reports, allowing contractors access to the system, and setting the hours international customers can place orders on your company’s system) can impact the company’s network, particularly in terms of security.

You decide to answer the following questions before handing off the material to an assistant to turn into a graphic-rich presentation. Each of your answers should be about 150 to 250 words long. Note: Your assignment is just to answer the following questions. You will not create a presentation for this assignment.

Paper For Above instruction

1. Overview of networking with emphasis on security using the OSI model

The OSI (Open Systems Interconnection) model is a conceptual framework that divides network communication into seven distinct layers, facilitating understanding of how data is transmitted and where security vulnerabilities may exist. The layers include Physical, Data Link, Network, Transport, Session, Presentation, and Application. Security concerns arise predominantly at multiple points within this model. For instance, at the Physical layer, risks include physical tampering and eavesdropping on cables. Data Link layer vulnerabilities involve MAC address spoofing and switch spoofing attacks that can intercept or alter data frames. In the Network layer, IP address spoofing and routing attacks threaten data integrity and confidentiality. The Transport layer faces threats like port scanning and session hijacking, while at the Session and Application layers, threats include session fixation, data interception, and malware infiltration. Understanding the network’s structure—whether distributed or centralized systems—helps identify potential entry points for attackers and implement appropriate security measures. Different topologies (star, bus, ring, mesh) influence vulnerability profiles; for example, star topologies centralize risks at the hub. Standards bodies (like IEEE and IETF) ensure interoperability and security protocols such as TCP/IP, SSL/TLS, and HTTPS are critical. Various networking technologies (LAN, WAN, wireless) have unique security challenges, including signal interception and unauthorized access. Overall, providing secure telecommunications involves safeguarding data, ensuring privacy, maintaining reliability, and optimizing performance across all these layers.

2. Routing and switching in the context of the OSI model and availability strategies

Routing operates primarily at the Network layer (Layer 3) of the OSI model, directing data packets between different networks through routers, while switching occurs at the Data Link layer (Layer 2), managing data transfer within a local network via switches. Cabling functions span multiple layers but are mainly physical (Layer 1). To ensure 24/7 network availability, our department employs strategies such as redundant hardware (multiple routers and switches), implementing network load balancing to distribute traffic evenly, and using backup power supplies like UPS systems and generators. Network monitoring tools detect and resolve issues proactively, preventing downtime. Moreover, employing diverse routing protocols (e.g., OSPF, BGP) enhances resilience by rerouting traffic around failures. Switch port security measures prevent unauthorized device connections, and segmenting networks into VLANs reduces attack surfaces and limits potential disruptions. Regular maintenance, firmware updates, and rigorous security audits further support continuous network availability, which is crucial for supporting business operations worldwide. Ensuring high availability amid failures or attacks involves a layered approach that combines physical safeguards, robust protocols, and proactive monitoring.

3. Characteristics of an effective security policy and departmental responsibility

An effective security policy must be comprehensive, enforceable, and adaptable to emerging threats. Clarity in defining acceptable use, access controls, and incident response procedures ensures all employees understand their responsibilities. A well-structured policy emphasizes the importance of confidentiality, integrity, and availability of data, fostering a security-aware culture. Furthermore, it requires regular updates to address technological advancements and evolving threats. Every department plays a vital role; for example, IT enforces technical measures like firewalls and encryption, while other departments restrict sensitive data access and adhere to password policies. Staff training and awareness programs are critical to mitigate human error, often exploited by attackers. Accountability mechanisms and routine audits ensure compliance and identify vulnerabilities before they are exploited. Collaboration across departments facilitates a unified security posture, making everyone responsible for maintaining the network's security integrity. Ultimately, an effective security policy balances operational needs with risk management, supporting the company's long-term strategic objectives while protecting critical assets from internal and external threats.

4. Security integrated into the network design

Our department builds security directly into network design by employing a defense-in-depth strategy. This includes segmenting the network with VLANs to limit access and contain breaches, installing firewalls at network perimeters to monitor traffic, and deploying intrusion detection and prevention systems (IDS/IPS) to identify malicious activities. Additionally, encryption protocols like SSL/TLS secure data in transit, especially across wireless and remote connections. We enforce strict access controls through role-based permissions, ensuring users only access necessary resources. Regular vulnerability assessments and security patches help close exploitable gaps. Physical security measures, such as locked server rooms and secure cable pathways, prevent unauthorized physical access. Implementing robust authentication methods, including multi-factor authentication, further secures user access. These design choices allow us to minimize attack surfaces, prevent unauthorized intrusions, and ensure resilient operations. Integrating security into network architecture enhances overall cybersecurity posture, reduces risk exposure, and aligns with compliance standards like GDPR and HIPAA.

5. Malware and protection strategies

Malware, short for malicious software, refers to any software intentionally designed to cause harm or unauthorized access to systems or data. Common types include viruses, worms, ransomware, and spyware. To protect our network against malware, our department employs multiple strategies. First, we deploy advanced antivirus and anti-malware software that scans and detects threats in real-time. Second, we implement strict email filtering and web filtering policies to block malicious links and attachments, reducing entry points for malware. Regular staff training emphasizes safe browsing practices and awareness of phishing tactics that often deliver malware. Furthermore, we maintain up-to-date operating systems and software patches to close security vulnerabilities that malware exploits. These combined efforts form an effective layered defense model, reducing the risk of malware infections and minimizing potential damage to our company's network infrastructure.

References

Comer, D. E. (2018). Internetworking with TCP/IP Volume One: Principles, Protocols, and Architecture. Pearson.
Stallings, W. (2020). Foundations of Modern Networking: SDN, NFV, QoE, IoT, and Cloud. Pearson.
Scarfone, K., & Mell, P. (2007). Guide to Intrusion Detection and Prevention Systems (IDPS). NIST Special Publication 800-94.
Rathore, S., et al. (2019). Secure Network Design Strategies for Cybersecurity. IEEE Communications Surveys & Tutorials, 21(2), 1741-1770.
IEEE Standards Association. (2020). IEEE 802.11 Wireless LAN Standards.
Ethical hacking and security. (2019). OWASP Top Ten Web Application Security Risks.
Garfinkel, S., & Spafford, G. (2017). Web Application Security: A Beginner's Guide. McGraw-Hill.
OWASP Foundation. (2023). OWASP Top Ten. https://owasp.org/Top Ten/
Cybersecurity & Infrastructure Security Agency (CISA). (2021). Malware Defense Strategies. https://www.cisa.gov/uscert/ncas/tips/ST04-002
ISO/IEC 27001:2013 - Information Security Management Systems. (2013). International Organization for Standardization.

« Previous Next »

Hire Dr Jack for Homework & Academic Writing Help

Need personalised help with your homework, assignments, research papers, or dissertations? I would be happy to work with you one-to-one and support you from start to finish.

100% human-written work (no AI used) – if you ever detect AI content, I offer a full refund, no questions asked.
Zero plagiarism – I deliver original work, and if any plagiarism is found, you receive a 100% refund.
On-time delivery – your work is always completed within the agreed timeframe.
Available 24/7 – you can reach out whenever it is convenient for you.
Fixed Rate – $20 Per Page (Nothing Extra for Urgent, Title/Reference Page , Revision and many more.).

To discuss your requirements, please email me at drjack9650@gmail.com . I will respond as soon as possible.