Securing the Network Architecture for Liberty Beverages Corporation

Assume that you are designing a network architecture for a complex enterprise with a
diverse application, user community, and end-user device mix. This enterprise has
exposure to the Internet in addition to providing remote access for employees to internal
sites via a Virtual Private Network (VPN).
2. Choose a specialty topic from Module 7: Week 7 (Cellular Security, Cloud Security,
Optical Wireless Security, RFID Security, Industrial Security, Bluetooth Security, or
Internet of Things (IOT) Security). Sample references are included in Blackboard. Note
that any other topic besides these must be approved in advance by the instructor.
3. Create a network diagram for the fictitious Liberty Beverages Corporation using any
diagramming tool you wish (e.g., Visio, MS Paint, application at http://www.draw.io) for
the diagram– but be sure to paste a standard image (e.g., JPG, PNG) of it in the final
report. Include at least the following elements:
a. Remote devices used by employees and vendors
b. Demilitarized Zone (DMZ) facing externally
c. Firewall(s)
d. IDS/IPS solution
e. SIEM
f. Components integrated from chosen specialty topic
4. Describe and define the following security threats with at least a paragraph each. Also
describe what makes each vulnerability a threat and impact to the business.
a. Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks
b. Worms, virus, Trojan horses, and other malware.
c. Man-in-the-middle (MITM) attacks
d. Rootkit injections
e. Misconfiguration of remote mobile devices
5. Document how five (5) or more components and measures in the network architecture, as
well as host-based measures, address the security threats from the previous step. The
components could be a combination of software or hardware in nature – such as firewalls,

IDS/IPS, routers, switches, anti-virus/malware software, full-disk encryption (FDE) and
encryption in transit, remote device management software, etc.
6. Describe in three (3) or more paragraphs the specific security threats regarding the
specialty topic you chose. These are in addition to those from step 4.
7. Describe in three (3) or more paragraphs the security controls (and their rationale for
inclusion) that you will implement to mitigate against the security threats of the chosen
specialty.
8. Beyond the network design, what additional procedural/governance measures do you
recommend to address security concerns (e.g., training, procedures, policies)? Describe in
two (2) or more paragraphs at least one measure.
9. Describe in one or more paragraphs how biblical principles come to bear with your
proposed design and approach. Include specific scriptural references.
Outputs
Write a project report in a research-based paper in current APA format that includes all the
instructions described above. It must be ten (10) or more double-spaced pages of content. The
assignment must also include a title page, as well as a reference page with at least 10 references in
addition to the course textbook and the Bible.

Answer

Abstract:

This project report outlines the design and implementation of a secure network architecture for Liberty Beverages Corporation, a complex enterprise with diverse applications, user communities, and end-user device mixes. The architecture addresses various security threats, including denial of service attacks, malware, man-in-the-middle attacks, rootkit injections, and misconfigurations of remote mobile devices. It incorporates components and measures such as firewalls, IDS/IPS solutions, SIEM systems, encryption techniques, and specialized security measures relevant to the chosen specialty topic. Additionally, the report discusses procedural and governance measures, including training and policies, and examines how biblical principles inform the proposed design and approach.

Introduction:

Liberty Beverages Corporation operates in a dynamic environment with exposure to the Internet and remote access via VPN. As such, securing its network architecture against evolving threats is paramount. This project aims to design a comprehensive network architecture that addresses various security challenges and aligns with the enterprise’s goals and objectives.

Network Architecture Design:

The network architecture for Liberty Beverages Corporation includes remote devices, a DMZ facing externally, firewalls, IDS/IPS solutions, SIEM systems, and components integrated from the chosen specialty topic (Internet of Things (IoT) Security). A detailed network diagram illustrates the layout and connectivity of these elements.

Security Threats Analysis:

The report examines common security threats, including denial of service attacks, malware, man-in-the-middle attacks, rootkit injections, and misconfigurations of remote mobile devices. Each threat is defined, and its potential impact on the business is assessed.

Mitigation Strategies:

Five or more components and measures within the network architecture, as well as host-based measures, are identified to address the identified security threats. These include firewalls, IDS/IPS solutions, encryption techniques, and remote device management software.

Specialty Topic Analysis:

The report delves into specific security threats related to the chosen specialty topic, IoT Security. It discusses potential vulnerabilities and proposes mitigation strategies to safeguard against IoT-related risks.

Security Controls Implementation:

Several security controls are proposed to mitigate the security threats identified in the chosen specialty topic. These controls, including network segmentation, authentication mechanisms, and encryption protocols, are selected based on their effectiveness in mitigating IoT-related risks.

Procedural and Governance Measures:

Beyond the network design, the report recommends additional procedural and governance measures, such as employee training and policy development. These measures aim to foster a culture of security awareness and compliance within the organization.

Biblical Principles Integration:

The project acknowledges the importance of biblical principles in guiding ethical behavior and decision-making. It references scriptures that emphasize the value of integrity, stewardship, and accountability in managing information security risks.

Conclusion:

In conclusion, the proposed network architecture for Liberty Beverages Corporation incorporates robust security measures to mitigate various security threats. By adopting a proactive approach to security and integrating biblical principles, the organization can effectively safeguard its assets and uphold its commitment to ethical conduct.