Case Study Exam

16.
You are a network administrator at a Fortune 500 financial services company. At your regularly weekly team meeting, your boss, the Chief Information Officer (CIO), tells your team that next year the IT department is going to drop its strong password requirement for computers on your company network. The reason, he tells you and your colleagues, is that the Chief Operating Officer (COO)--who is your boss's boss--has been getting many complaints from employees that the strong password requirement is cumbersome, and that they cannot easily remember the passwords that they create. The CIO points at you and asks: "What do you think about all this?"
In 200-300 words, answer your boss's question. Be sure to use information from this semester to support your points, and cite your sources appropriately.
r17.
You are an IT security consultant assigned to work at your client site, which is the Department of Defense's Cyber Command (CYBERCOM) at Fort Meade, Maryland. Your government-side colleagues are trying to develop a way to integrate their defense-oriented cyber response operations with the Department of Homeland Security's (DHS) civilian, domestically-oriented cyber response operations. DOD focuses on blocking and countering foreign cyber attacks, while DHS is concerned with mopping up the domestic consequences of a cyber attack. One of the high-level DOD officials on your team says: "Why don't we bring in a few DHS officials and they can help us counter-attack when the time comes? Heck, I know Rick James over at DHS from our Army days. He's a civilian now, but he's got the right level security clearance, and he'd be the perfect person to help us in cyber defense!" Another DOD official comments: "Hey, that's a great idea! Get DHS involved over here in cyber defense, and the integration problems will take care of themselves!"Something about these comments doesn't sound quite right to you. In 200-300 words, explain what doesn't sound quite right about these...