Homework SourseYou need to review the account types and the privileges role
You need to review the account types and the privileges, roles, rights, and actions provided below and match the given account types with their corresponding privileges, roles, rights, and actions. Remember that a given account type may have the possibility of more than one privilege, role, right, or action.
List of privileges, roles, rights, and actions:
1.Must authenticate when accessing network resources
2. Is allowed remote access
3. Periodically reviews all user accounts
4. Authorizes risk assessments
5. Performs security assessments
6. Creates group policy objects
7.May send inbound e-mail
8. Is allowed to install software in a secured network
9. Performs daily log reviews
10.Is allowed to change the firewall rules
11. Manages incident response
12. Provides user awareness training
13. Access the file system within authorized system and groups
14. Develop infrastructure architecture plan
15. Manages Internet service provider (ISP) and Internet connectivity
16. Install patches on production system
17. May delete files from group folder
18. Installs security software
19. Create system users
20. Monitors systems for dormant accounts
21. May request file system changes
22. Develops and implements configuration standards
23. Grants access to resources
24. Create user accounts
25. May make file system changes
26. Run a backup program to capture changes to data and systems
27. May appoint a data/application custodian
28. May disable/delete unused accounts
29. May bypass authentication
30. Approves access to resources
In the table given below, you need to relate the matching privileges, roles, rights, and actions to the account type on the left by writing the corresponding number of the privileges, roles, rights, and actions listed above:
Account Type
Number of the Privileges, Roles, Rights, and Actions
Network Administrator
System Owner
System Administrator
Application Administrator
Standard User Account
Security Manager/CSO/CISO
Not allowed by network accounts
Remote/Traveling
Member of Board of Directors
Reflection
What are your thoughts about your results? What are you feelings towards this assignment? How would you improve it? Submit this with your assignment.
| Account Type | Number of the Privileges, Roles, Rights, and Actions |
| Network Administrator | |
| System Owner | |
| System Administrator | |
| Application Administrator | |
| Standard User Account | |
| Security Manager/CSO/CISO | |
| Not allowed by network accounts | |
| Remote/Traveling | |
| Member of Board of Directors |
Solution
Network Administrator -> 1 , 8 , 15 , 16 ,23 , 25
System Owner -> 14 , 22 , 26 , 21 , 30
System Administrator -> 19 , 13 ,17
Application Administrator -> 9 , 3, 20 , 28 , 27 , 29
Standard User Account -> 24
Security Manager/CSO/CISO -> 5 , 4 , 10 ,18
Not allowed by network accounts ->
Remote/Traveling -> 2 , 7
Member of Board of Directors -> 6 , 12 , 11
I think the whole system runs in a very formal and systematic way. It is not possible for a single guy to operate a large system with
a large amount of users. There are roles divided to every person who has knowlege to their field from the above we can conclude that
Network guy is the techinal guy who takes care of all the techinal problems or techinal implementation in the system. where as system
owner is the one who instructs the Network Administrator what is the work he has to do and also finds the way to make the system more
better. System Administrator is the one who take are care of the events happening in the Application and also make changes if needed
in the database of the user. Application Manager takes care of the authentication of the of the user and checks if the user is not
misusing his access. here is user is the one who has the privilage to make accounts and enjoy the service provided to them. Security
Manager takes care of the system Security so that the is no loop hole in the system for the hacker to get the data which they are not
supposed to get. and ofcourse the person who is not allowed in the Network has no access to any of the resources. And for the Traveling
person who need to access his Account should get the access to it anywhere and view it. Member of Board of Directors decides the
non techinal rules for using the Application.
I feel that the assignment was very learning about how the large system works so error free and there is a person in every different
field taking care of each of his domain of the work in order to make the Application run smoothly.
I would like to improve a system a bit on the customer service department and user interface department. Since, user always have a
problems in something or the other everytime so there should be a system taking caring of the problems and reporting the problems to
the respective department if needed. user face problems like userstanding the Application or has to report some bugs in the system.
Whereas user interface department has to work in making the Application more user friendly so that user dont have to face problems in
understanding the system and also making the Application more easy by creating a user interface which reduces the number of processes.
