Question

You are the cybersecurity professional for Company A and are responsible for protecting the information of the company. Your roles include managing the company’s cybersecurity capabilities and tools, conducting vulnerability management, and assessing risk to sensitive information. Company A has recently purchased Company B and wants to merge both networks.

Executives of Company A have tasked you with making risk-based decisions on integrating Company B’s network with Company A’s existing network. Company B has provided its latest vulnerability scans, network diagrams, and existing cybersecurity capabilities and tools. As a deliverable to the executives, you will submit your recommendations for a secure network design that merges the two networks and allows remote access for employees of both companies in the form of a merger and implementation plan.

For this project, you will use the given scenario and the following supporting documents to complete your network merger and implementation plan:

• "Company A Network Diagram"

• "Company A Risk Analysis"

• "Company B Network Diagram"

• "Company B Vulnerability Report and Cybersecurity Tools"

Company A is a global company based in the United States that operates in the financial industry. Company A serves its customers with financial products, such as checking accounts, bank cards, and investment products. Company A has recently acquired Company B and needs to integrate with or remove similar capabilities and tools from Company B. Company B is smaller in size, has no dedicated cybersecurity professional role, and utilizes third-party support for infrastructure needs. Company B offers specialized software to medical providers and accepts credit cards as a payment option.

The executives of the newly merged company have expressed interest in integrating the use of the cloud to allow for scalability and redundancy. As the security professional of the merged networks, you are tasked with creating a secure network design that includes the use of zero trust principles and that utilizes both on-premises and cloud infrastructure. You also have been tasked with ensuring compliance with all regulatory requirements of the merged company, along with utilizing cloud-based technologies to provide security capabilities. Company executives have provided a budget of $50,000 in the first year to create a secure network design to utilize cloud-based services.

Describe two current network security problems and two current infrastructure problems for each company, based on business requirements given in the scenario.

Answer 1

Company A faces network security and infrastructure problems related to cybersecurity capabilities and vulnerability management. Company B lacks a dedicated cybersecurity professional and relies on third-party support for

Step-by-step explanation:

In the given scenario, both Company A and Company B face network security problems and infrastructure problems.

Two network security problems for Company A are vulnerability management and assessing risks to sensitive information. For Company B, the lack of a dedicated cybersecurity professional and reliance on third-party support for infrastructure needs pose security concerns.

Two infrastructure problems for Company A are managing the company's cybersecurity capabilities and tools and conducting vulnerability management. Company B, on the other hand, needs to integrate or remove similar capabilities and tools from Company A.