Subject Code & Title : CIS119-6 London Bio Case Study
Assessment Type : Assignment
Report Word Count : 5000 words (excl. references, appendices and Tables) in a single file submitted electronically with your student details on the front cover.
Font Type and Size : Calibri 12pts (if not available, use Arial) – Single line spacing
CIS119-6 London Bio Case Study Assignment – UK.
Background :
You are asked to investigate a small private microbiology laboratory located in London and collaborates
with 2 hospitals part of a single trust. The examinations performed are ordered either by registered GPs (in which case the patient needs to have a referral in order for the tests to be paid on the NHS), or privately (in which case the patient pays the cost in cash).
The laboratory consists of 8 employees:
1.2 secretaries, responsible for answering phones, making appointments for blood tests, and taking payment information from the patients. They are also responsible for posting the results (either using Royal Mail or a courier service).
2. 2 GPs, that are responsible for checking the blood test results and making recommendations.
3. 4 microbiologists that are responsible for processing the blood samples in order to get results.
4. Lately, the laboratory’s reputation has spread and it receives a lot of private patients that wish to
have check-ups. This has resulted in a great increase in telephone calls, asking to book appointments or get information of alternative methods of paying (for now only cash is accepted).
The laboratory’s computer network consists of 10 PCs on a simple Wi-Fi network with ADSL connection to
the Internet and VPN used to secure the connections between the laboratory and the 2 hospitals. There is
one Microsoft Windows Small Business Server 2003 servicing the network, and most of the data are currently stored and shared via DropBox. The laboratory network has:
1. Computers 1 and 2 – used by the secretaries to book appointments and hold transaction details.
2. Computers 3 and 4 – used by the GPs to access patients’ files, update them adding medication
prescriptions and recommendations.
3. Computers 5 to 8 – used by the microbiologists to access patients’ files and add the blood test
results.
4. Computers 9 and 10 – used as a backup solution, to store all patients’ files and transactions, for
extra security. These PCs are also connected to the hospital’s network, to exchange patient
information.
For security, the company uses AVG free and the default Windows firewall on all machines.
The company wishes to create an online prescription request system, in which the patients will be able to
access specific parts of their files, order repeat prescriptions, and order new tests (e.g. blood tests). Private
patients will need to pay for the services using cash or cards. The latter is not done as no card payments
system is in place.
CIS119-6 London Bio Case Study Assignment – UK.
You are hired as an IT professional in order to investigate how to implement a solution for this laboratory
in the most cost effective way. You will also be investigating what damage can be done by losing the patients’ files and also produce a solution to mitigate this damage.
In more detail, the company will need:
1.An online prescription request system.
2. Provide a secure card payments solution.
3. A telephone management system (patients sometimes complain that they are unable to get through because the phones are busy). Also, the laboratory is closed during weekends, but several requests have to be processed. The company wants to include an internal telephone system for internals calls.
4. Many new patients come to the laboratory as it was suggested to them by someone they know. It
would be nice if the laboratory could exploit social media to increase its reputation. Also, the patients could rank the lab, to make it appear higher in search results.
Requirements :
Write a report addressing the following sections and structured as outlined below.
Final Report Structure (Report word count 5000 excl. appendices, tables, and references):
1.0 Title and Introduction
General summary about the nature of the business (written to meet the needs of the potential end user, IT
Director, or similar role – Very brief and MUST NOT be a copy of the assignment text – NOTE: A penalty of
up to 3 marks will be deducted if the same text is used. Also, paraphrasing is not accepted).
2.0 The Problem :
Threats, Vulnerabilities, and Risks – Identify and analyse all the potential threats, vulnerabilities and risks related to the business current and future operations.
Threat modelling must be performed for current and future configurations using a recognised Threat
Modelling Tool (see Additional Hints section below for more information).
Legal considerations – Briefly outline the current laws/regulations/standards affecting or impacting on this
business.
3.0 The Solution
Create a secure solution based on the threat modelling and any risks identified in the previous section.
Discuss how your solution will overcome all the issues identified above. Produce a fully labelled clearly presented secure network diagram (must be different from the Threat Modelling diagrams) to show your
final solution. Make sure your solution is clearly mapped to the secure network diagram.
4.0 Contingency Planning
Develop and discuss a detailed contingency plan along with any associated plans for the business in the
event of a cyber threat or other disaster. Your coverage must be related to the case study, business nature,
and geolocation.
5.0 Conclusion and Evaluation
1. Conclusions
2. Recommendations
6.0 References
All references must be according to Harvard style and be of good quality.
Additional Hints:
1.You may wish to use tools such as Microsoft Threat Modelling Tool, Sea Sponge, or Threat Dragon to
perform the threat modelling.
2.Cisco Packet Tracer must not be used in this assessment.
3.You may wish to use tools such as Microsoft Visio, or Lucid Chart (Education edition) to draw the secure
network diagram(s).
4.There are no requirement for writing detailed policies (if required). Instead, a summary of the policy
purpose is enough.
CIS119-6 London Bio Case Study Assignment – UK.
5.Up to 10 marks may be deducted for work which is poorly written, and structured.
6.No general textbook content should be included in the report (e.g. definitions of malware threats
types, methodologies, etc.). All content must be related to the case study, its business nature and geolocation.
ORDER CIS119-6 London Bio Case Study Assignment NOW And Get Instant Discount
Read More :-
ASS670-2 Issues And Contexts Authority And Control Case Study – Bedfordshire UK.
