The proposal will be submitted in three major parts:

Analysis and Planning (i.e., Part 1) (3-5 pages)

In this section, students will address each of the following:

1. Define the vulnerability assessment requirement, propose a  solution, and justify the solution. Students should review the text and  example provided but do not include it with their submission. Delete the  text and include you own.
2. Define the security policy requirement, propose a solution, and  justify the solution. Students should be specific when defining the  overall security outlook for the organization.
3. Define the risk management requirement, propose a solution, and  justify the solution.  Students should describe the process, its value  to the organization, and use proper terminology.
4. Define the business continuity plan requirements, propose a  solution, and justify the solution. Student should describe the activity  in detail, and include each of the plan types.
5. Define the access controls requirement, propose a solution, and  justify the solution. Students should be specific with the type of  access control model they select.

Securing Boundary Devices, Hosts, and Software (i.e., Part 2) (3-5  pages) In this section, students will address each of the following.

1. Define the physical security requirements, propose a solution, and  justify the solution. At a minimum, students should discuss the three  main factors of prevention, detection, and recovery; and include the  appropriate control measure.
2. Define the physical security requirements, propose a solution, and  justify the solution. At a minimum, students should discuss the three  main factors of prevention, detection, and recovery; and include the  appropriate control measure.
3. Define the mobile device security requirements, propose a  solution, and justify the solution. Students should include smartphones,  laptops, tablets, or any other mobile device that may be introduced in  the UMUC environment. Students should also include the considerations  and their implications.
4. Define the perimeter defense requirements, propose a solution, and  justify the solution. Students should consider the different types of  attacks, security appliances, and the network configuration to  implement.
5. Define the network defense requirements, propose a solution, and  justify the solution. Students should discuss common network devices,  their vulnerabilities, and propose defensive solutions.
6. Define the host defense requirements, propose a solution, and  justify the solution. should the types of attacks hosts are susceptible  to, and proposal defensive solutions

Securing Data at Rest and in Transit (i.e., Part 3) (3-5 pages) 

In this section, students will address each of the following.

1. Define the public key infrastructure (PKI) requirements, propose a  solution, and justify the solution.Students should be specific when  discussing the implementation and configuration required for the PKI  solution.
2. Define the secure protocol implementation requirements, propose a  solution, and justify the solution.Students should consider data as it  is in transit and discuss the numerous scenarios and solutions to  protect it.
3. Define the file encryption requirements, propose a solution, and  justify the solution.Students should consider data at rest and discuss  the numerous scenarios and solutions to protect it.
4. Define the file hashing implementation, propose a solution, and  justify the solution.Students should consider where hashing should be  implemented in the network design and explain what it provides in each  instance.
5. Define the backup and restoration implementation, propose a  solution, and justify the solution. Students should explain the process,  where it is applicable in the UMUC network scenario, and how it will be  achieved (process, hardware, and frequency).