You are a network professional on
the IT team at Alliah Company, a new but fast-growing social media provider.
One year ago, Alliah launched a social media website aimed at young
professionals. The company also released a mobile app for accessing the site
from cellular devices. Alliah was able to launch its website with money
generated by a crowd-funded campaign, but most of the funds were spent on the
site and app development, with relatively little money (and time) devoted to
the internal office network infrastructure.
Alliah has 35 full-time
employees, all of whom have offices or shared work spaces in a three-story
building that serves as the company headquarters. The building is an old
warehouse that was converted for office use and is approximately 10,000 square
feet. Currently, the employees occupy only two floors; the third floor is
vacant and available for expansion.
The Alliah WLAN has a gigabit
managed switch, a multiservice wireless LAN controller, and seven wireless
access points strategically located to provide coverage to office staff. One
access point services a large back patio area for employee use. The network is
protected by a firewall. The Alliah website servers are located in a data
center 100 miles from Alliah headquarters.
Five employees are account
representatives who are on the road at least 80 percent of the time, and each
rep has a company-issued laptop, tablet, and smartphone. They use a large,
shared office in the headquarters building when they are not traveling.
Employees use company-owned
computers that connect to the WLAN, and, in an effort to control costs during
the launch, Alliah has a bring your own device (BYOD) policy.
The IT staff consists of five
employees; three are devoted to website maintenance, one manages the
headquarters’ computers and network, and another employee assists with the
website and the office network. IT staff uses wired Ethernet connections to
remotely access the website servers.
The Alliah website is successful,
attracting more and more visitors each month. Jennifer, the CEO, anticipates
hiring more employees and is considering a strategy that would take the company
public within a few years. In preparation, she wants to ensure that Alliah’s
wireless networking infrastructure is highly secure, especially because it may
need to grow quickly in a short period of time, and she wants to understand the
security risks the company faces. She also wants to decide if Alliah should
continue allowing BYOD or restrict network access to company-owned devices
only, or if a compromise solution is available.
Answer these questions based on
the SCENARIO ABOVE.
Describe two WLAN vulnerabilities that present risks for Alliah,
based on the details in the scenario.
Describe two mobile vulnerabilities that present risks for Alliah,
based on the details in the scenario.
Summarize the steps for mitigating each identified WLAN and mobile
vulnerability, including the specific tools or documentation that will be
needed for mitigation.
Recommend preventive measures to maintain the security posture of WLAN
and mobile environments in a small business, such as Alliah. Reference federal,
state, or industry regulations that justify these measures.
Recommend a solution for the company’s BYOD approach, including research
to justify your recommendation.
Acknowledge sources, using in-text citations and references, for content
that is quoted, paraphrased, or summarized.
Demonstrate professional communication in the content and presentation of
Make sure these guidelines are
met when answering Questions.
submission describes two plausible WLAN vulnerabilities that present
risks for Alliah, based on the
The submission summarizes the
steps that should be taken to mitigate each identified vulnerability
and include the specific tools and documentation that will be needed for
The submission recommends
preventive measures that will maintain the security posture of WLAN and mobile
environments in small businesses, referencing federal, state, or industry
regulations that justify these measures.
The submission recommends a
secure solution for the company’s BYOD approach and includes reliable,
academic, or industry-respected research to justify the recommendation
The submission includes in-text
citations for sources that are properly quoted, paraphrased, or summarized and
a reference list that accurately identifies the author, date, title, and source
location as available.
Content reflects attention to
detail, is organized, and focuses on the main ideas as prescribed in the task
or chosen by the candidate. Terminology is pertinent, is used correctly, and
effectively conveys the intended meaning. Mechanics, usage, and grammar promote
accurate interpretation and understanding.
length there are no specific word counts as long as each question is answered with minimum 6 sentences.