Compliance Laws Research

Compliance Laws Research – Submit a draft of your research of DOD-specific requirements for an organization's IT infrastructure and U.S. compliance with laws that may affect the firm.

Compliance Laws Research – Scenario

You are a security professional for Blue Stripe Tech, an IT services provider with approximately 400 employees. Blue Stripe Tech partners with industry leaders to provide storage, networking, virtualization, and cybersecurity to clients. Blue Stripe Tech recently won a large DoD contract, which will add 30 percent to the revenue of the organization. It is a high-priority, high-visibility project. Blue Stripe Tech will be allowed to make its own budget, project timeline, and tollgate decisions. As a security professional for Blue Stripe Tech, you are responsible for developing security policies for this project. These policies are required to meet DoD standards for the delivery of IT technology services to the U.S. Air Force Cyber Security Center (AFCSC), a DoD agency. To do this, you must develop DoD-approved policies, standards, and control descriptions for your IT infrastructure (see the "Tasks" section in this document). The policies you create must pass DoD-based requirements. Currently, your organization does not have any DoD contracts and thus has no DoD-compliant security policies, standards, or controls in place.

Compliance Laws Research – Blue Stripe Tech's computing environment includes the following:

• • • 12 servers running the latest edition of Microsoft Server, providing the following:
    • Active Directory (AD)
    • Domain Name System (DNS)
    • Dynamic Host Configuration Protocol (DHCP)
    • Enterprise resource planning (ERP) application (Oracle)
    • A research and development (R&D) engineering network segment for testing, separate from the production environment
    • Microsoft Exchange Server for email
    • Email filter
    • Cloud-based secure web gateway (web security, data loss protection, next-generation firewall, cloud application security, advanced threat protection)

Compliance Laws Research – Submission Requirements

• Format: Microsoft Word (or compatible)
• Font: Arial, size 12, double-space
• Citation style: APA
• Length of draft research documents: 2–4 pages

Compliance Laws Research – Required Source Information and Tools

Web References: Links to Web references in this document and related materials are subject to change without prior notice. These links were last verified on August 26, 2020. The following tools and resources will be needed to complete this project:

• Course textbook
• Internet access
• DoD instructions or directives https://www.esd.whs.mil/dd/
• Risk Management Framework (RMF) for DoD Information Technology (IT) https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodi/851001p.pdf?ver=2019-02-26-101520-300
• U.S. Department of Defense (DoD) Chief Information Office Library
• https://dodcio.defense.gov/Library/

• Department of Defense Information Security Program https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodm/520001m_vol1.pdf?ver=2020-08-04-092500-203
• Department of Defense Internet Services and Internet-Based Capabilities https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodi/817001p.pdf

https://www.studyhelpus.com/Questions & Answers/compliance-laws-research/