...SR-rm-013: Network, Data, and Web Security CMGT/441 June 18, 2012 Abstract Riordan Manufacturing conducts an information systems security review over IT security issues that exist in different plants to prepare for an upcoming audit in accordance to the Sarbanes-Oxley Act. Several elements of the organization's information systems require revisions and updates to optimize physical and network security, data security, and Web security. SR-rm-013: Network, Data, and Web Security The Sarbanes-Oxley Act (SOX), passed in July 2002, requires publicly traded companies to submit accurate and reliable financial information. Securing private information is not included in its requirements; however, establishing security controls for confidentiality, availability, and integrity of the reporting are (Kim & Solomon, 2012). Riordan Manufacturing is preparing for an audit in compliance with SOX and is conducting an information systems security review over its physical and network security, data security, and Web security. Physical and Network Security Riordan Manufacturing performs an information systems security analysis over its physical and network security. Several elements of the IT system require revisions, such as restrictions to physical access to vital IT systems and upgrades to outdated systems within the network. Physical Security After analyzing the headquarters and Riordan’s other sites it was found that they were not designed nor equipped in the same fashion...
Words: 2582 - Pages: 11
...Riordan Security Plan CMGT/441 October 14, 2013 University of Phoenix Executive Summary: Riordan Manufacturing is a global corporation and has been performing both research and development activities and manufacturing plastics products for a number of uses since 1992. Riordan’s R&D efforts supply the company with new products to break into new markets, most recently the health care market. Riordan has grown and now has three United States locations and one location in China. Each location has a recently upgraded its information technology infrastructure including their network hardware and software. Riordan has also kept up with quality standards for its management and manufacturing operations, including following Six Sigma and ISO 9000 quality standards. The Sarbanes-Oxley Act of 2002 requires Riordan to implement some changes to their security processes to ensure compliance with the new law. The Sarbanes-Oxley Act is focused on to the regulation of corporate governance and financial practice, maintaining the security of all financial data and ensuring the systems that access or store financial data and information must be secure to maintain compliance and pass an audit. Team B responded to the service request SR-rm-013 by performing an analysis of Riordan’s current network, data, and web security issues. Team B’s analysis focused on the security of information to ensure Riordan will be able to pass a security audit as a result of the Sarbanes-Oxley Act....
Words: 2934 - Pages: 12
...Riordan Manufacturing is an international manufacturer of plastics and is currently make its mark on the industry as an industry leader. Currently Riordan Manufacturing has four locations that all serve different purposes in the company. Riordan Manufacturing has locations in Albany, Georgia, Pontiac, Michigan, Hangzhou, China and the corporate headquarters in San Jose, California. Riordan Manufacturing uses a Wide Area Network (WAN) that allow the three locations to be connected to the corporate headquarters in San Jose, California. Along with the Wide Area Network to connect the locations to the Corporate Headquarters of Riordan Manufacturing, each location has its own Local Area Network (LAN). Network Architecture. The topology of the networks varies from site to site. The network of the Corporate Headquarters and the location in China both use a bus topology in both networks there is a single 100BaseT line that is either connected to a server or an interface device. The other two site Albany, Georgia and Pontiac, Michigan both use what seems to be a partial mesh topology or a hybrid topology. The servers on these networks are all connected together , the interface devices are connected to the server, and the clients and printers are then connected to only the interface devices. All of the locations have their own local area network which is connected to the Corporate Headquarter though a point to point connection which is a star topology. The China location has a point...
Words: 2198 - Pages: 9
...the last analysis, it was shown some very important points for a successful transition, which was also shown different ways to analyze are the best ways to improve the project and how the department communicate, promoting better communication and save time and money for Riordan. Security Controls One of the most important points in a system design and security for this reason that the whole system needs to have security controls in this way it is possible to install and operate controls as recovery, firewall, backup and other, all this are operations group tasks , developers also are responsible, especially with regard to information systems. Keep all data from Riordan safe and confidential mainly are two crucial points. Data such as information from employees, company policy and procedures will be the responsibility of Riordan, passwords, along with data encryption will be used, thus bringing more security to the company. Processes Use a third-party software can bring benefits to the company, will be an advantage for Riordan as the third-party seller will have the security guaranteed by them. The Riordan Manufacturing can save time by using COST, just use the training and services that are included in the programs that are already developed, this process can delay but had saved money if the case is necessary to use an additional program, this will be included in an in-house development. Interfaces Systems interfaces requires a high level of security because...
Words: 495 - Pages: 2
...System Analysis for Riordan Manufacturing’s Human Resources Department Kelly Beckwith University of Phoenix, Online Table of Contents Abstract ………………………………………………………………………………………… 3 Introduction ……………………………………………………………………………………. 4 Scope and Goals ………………………………………………………………………………… 4 Supporting Measures …………………………………………………………………………. 5 System Requirements …………………………………………………………………………. 7 Application Architecture and Process Design …………………………………………………. 9 Data Flow and Protection ………………………………………………………………………. 10 Data Flow Chart ………………………………………………………………………………. 10 Flow of Data Chart ………………………………………………………………………….…. 11 Implementation Process ………………………………………………………………………… 12 Human Resource Organizational Chart ………………………………………………………… 12 Conclusion ……………………………………………………………………………………… 14 Resources ………………………………………………………………………………………. 16 Abstract Designing a new system for Riordan Manufacturing’s Human Resources Department is a crucial and important part of Riordan efforts to evolve with new technology. The company has asked that installation of their new system occur within six months. The current Human Resources Information Systems (HRIS) is outdated by over 10 years. Allowing an outside company to implement a new system will save Riordan Manufacturing time and money, and allowing completion of the project in the time allowed. Combining all of the systems used by Riordan’s human resources staff will allow easier access for all. ...
Words: 3220 - Pages: 13
...Riordan HR Request Service Request SR-rm-022 Janet Chase BSA 375 February 11, 2013 Karen Knox Riordan Manufacturing Service Request SR-rm-022 Hugh McCauley, Riordan’s Chief Operating Officer, submitted Service Request SR-rm-022. In his request, he specifies a need to centralize the company’s human resources functions. With the “more sophisticated, state-of-the art, information systems” (Apollo Group, 2013, p. 1), Riordan desires an integration of all human resources tools into one platform. Completion date is set for six months allowing the new system to be in place by the beginning of the second quarter. The scope of this project will follow the System Classic Life Cycle (SCLC) Model. This model allows Riordan to complete this project in stages with the results of one stage aiding the completion of the next stage. High-level Scope: Deliverables (Mochal, 2007) The outcome of this project will integrate the human resources systems into one application. An analysis of this system will define the business requirements for the new system. Based on that definition a team will create a detailed system design and a project implementation plan to be put in place. High-level Scope: Boundaries This project will affect the human resources department of all Riordan plant locations. All other departments are out of scope. Low-level Scope: Process In an effort to fulfill the request in the short amount of time given, an analysis of the current system and needs for the...
Words: 3266 - Pages: 14
...Riordan’s current HRIS system is functional, at the least, but with the right design, could be transformed into an amazing application. Riordan Operational Requirements Riordan must integrate the new HR CRM system with current software. Since the system requires integration with employee’s desktop computers, a client-server architecture would be most beneficial. This would allow for better storage, flexibility to allow different OS to connect, and reduction in costs which is a long term benefit for the company. The client-server architecture would be best to integrate employee desktops. Riordan Performance Requirements Riordan is interested in a high-tech system to integrate the mountains of Human Resource forms and documents. They expect high performance in their new integrated system. This is the reason why we have chosen the client-server architecture. Due to increased scalability, availability, reliability, and better response times with this architecture, Riordan will benefit by easier integration of hardware and speed requirements of the comprised systems. Since the aforementioned features greatly depend upon the operating system utilized, Riordan will upgrade to the Microsoft Windows 7 operating system (Wixom Roth, 2014). Riordan Security Controls and Requirements The client-server architecture will increase Riordan’s security due to the fact that all software will be housed in one location, making...
Words: 564 - Pages: 3
...Riordan Manufacturing is a global plastics manufacturer employing 550 people with projected annual earnings of $46 million. The company is wholly owned by Riordan Industries, a Fortune 1000 enterprise with revenues in excess of $1 billion. Riordan strives to be a solution provider to their customers and not be a part of their customers’ problems. Riordan also strives to build long-lasting relationships with their employees, stating “By assuring that our employees are well informed and properly supported, we will provide a climate focused on the long term viability of our company”. With this in mind, Riordan has decided to upgrade their current HRIS which will better meet their company needs. Riordan had their current HRIS system installed in 1992. The system is currently in need of updating. The HRIS is part of the financial systems package. The system retains the following employee information: • Personal information (name, address, marital status, birth date, etc.) • Employee pay rate • Tax exemptions • Hire date • Seniority date (sometimes different than the hire date) • Organizational information (department for budget purposes, manager’s name, etc.) • Vacation hours Information Gathering Techniques and Design Methods The team will propose that Riordan’s IT managers use two techniques to gather the data that will determine the type of system they will use. The IT manager should first use a questionnaire or interview technique (Modell, 2007). This will...
Words: 2612 - Pages: 11
...Service Request Riordan Manufacturing Student BSA 375 May 26, 2013 Instructor Service Request Riordan Manufacturing Riordan Manufacturing is a global manufacturer of plastics founded in 1991 by Dr. Riordan. Dr. Riordan started Riordan Plastics to satisfy commercial applications for his medical patients using the processed polymers developed under his several patents. Now a global plastics manufacturer, Riordan Manufacturing employs 550 people and the annual earnings are projected around $46 million. The company’s global operations include the corporate headquarters in San Jose California, the Plastic Bottles Facility in Albany Georgia, the Custom Plastics location in Pontiac, Michigan, and the Electric Fan Facility located in Hangzhou, China. The COO of Riordan Manufacturing, Hugh McCauley has initiated a service request. This request is labeled SR-rm-022. The purpose of this request is to integrate a variety of the human resource tools into a single application. This document is to addresses the planning and analysis phase of a service request. The request is to encompass all plant locations. Design methods will be established to meet this request, requirements will be collected, the project scope and feasibility will be recognized, the stakeholders will be identified, and key factors to guarantee success in gathering information will be clarified. Project Scope The project scope is for a new system for the human resource department. The new human resource systems...
Words: 3618 - Pages: 15
...business. Riordan Manufacturing must define objectives prior to choosing and designing their system. Once the objectives have been identify then the design process can start. With the equipment needs, implementation requirements, and workflow clearly understood these are describe in more detail in order to design the appropriate system. The designing itself is accomplished after many interviews in order to capture the real needs, by using flowcharts, scale models, and even some process simulation software (Dennis, Wixom, & Ruth, 2012). A client server architecture services would be beneficial for Riordan being that this nonfunctional requirement could have more benefits than a server based or client server. There are four major benefits in a client server; scalability, adaptable support, reliable networking and separation of logic: a) Scalability adjusts storage and processing within the server b) Adaptable support is the ability to support different client and servers. The server can also separate logic’s without changing any other data. c) Reliable networking allows the server to maintain the network in case of any errors or application crashes d) Separation of logic facilitates reasoning (Dennis, Wixom, & Ruth, 2012) Security controls Security in a company’s information system is in today’s market is the number one priority. In order to keep Riordan Manufacturing safe from outside malicious and strange activities the system needs security measures...
Words: 797 - Pages: 4
...Service Request SR-rm-004, Part 2 Human Resources Information System (HRIS) The Human Resources Information System (HRIS) is the current system used by the Human Resources Department of Riordan Manufacturing. This system handles the company’s 550 employee’s data, plus it performs several other tasks which include the employee’s personal information, hire date, pay rate, and vacation time accrued. This system was installed in 1992 and has yet to be upgraded to handle many different transactions, these transaction are currently handled manually. If any changes in employee status are needed, the manager of that employee will need to fill-out a special form and submit it to payroll for it to be entered into the system. Service Request Advancement in technology has presented a necessity for changes and upgrades to the Human Resources Information System (HRIS). This up-to-date system will switch from manually done transactions to automatic transactions that will provide security, speed, reliability, and save time by eliminating the special forms. Hugh McCauley, company chief operating officer (COO), has requested an analysis of the HR system to integrate the existing variety of tools in use today into a single integrated application (Apollo, 2007). As the company’s interest in being a part of a new state-of-the-art information system technology rises, there are several steps needs to be taken...
Words: 782 - Pages: 4
...Running head: RIORDAN MANUFACTURING PHYSICAL LAYOUT AND NETWORK Riordan Manufacturing Physical Layout and Network Security Nadja Marava, Russell Elder, Roman Silva, and Logan Pickels University Of Phoenix CMGT 441 Introduction to Information Security Management Jude Bowman September 3, 2012 Riordan Manufacturing Physical Layout and Network Security As can be seen on the Intranet Website, Riordan currently operates four manufacturing plants; three located in the United States (San Jose, California; Pontiac, Michigan; and Albany, Georgia) and one overseas (Hang Zhou, China). Each plant contains the same basic departments, to include Sales and Marketing, Operations, Finance and Accounting, Information Technology (IT), Legal, and Human Resources. The problem; however, lies in all four plants Sales and Marketing, Operations, Finance and Accounting, and Human Resources departments, which have outdated and unconsolidated systems. China Physical Layout One location is China. The Wide Area Network being used has three T1 connections in the United States and a Satellite connection in China. This paper is used for determining the architecture for the Riordan WAN and then research what possible security measures can be taken to reduce Vulnerabilities. The Layout is below: • Ethernet Backbone 1G • Windows Exchange server Email • Windows Network server Domain controller • Unix Server for ERP/MRP Customer and Vendor Relations • Linksys Wireless Router ...
Words: 3147 - Pages: 13
...The current architecture of the Riordan Manufacturing Company Inc. Wide Area Network and network security in place requires updated documentation. The purpose of this paper is to gather the existing information into a single format and evaluate the WAN and security documentation for an executive overview. Riordan Manufacturing, Inc. is an industry leader in the field of plastic injection molding. With state-of-the art design capabilities, they create innovative plastic designs that have earned international acclaim. Attention to detail, extreme precision and enthusiastic quality control are the hallmarks of Riordan Manufacturing. With facilities in San Jose, California, Albany, Georgia, Pontiac, Michigan and Hangzhou, China, the company is heavily dependent upon their communication networks. The documentation produced by this analysis will give the management at Riordan Manufacturing an understanding of their networks today, a plan for future upgrades and a baseline to evaluate security. The goal of this exercise is three fold. Our first will be to provide an inventory of the existing network components for Riordan Manufacturing designated by location, review the network security for each site, and our last goal is to document the current security plan for use in future planning. Because of the limited scope of the project, several assumptions must be made. The first assumption is that Riordan Manufacturing has accurate records of the current infrastructure and no changes will...
Words: 11081 - Pages: 45
...Service Request/ Riordan Manufacturing Brian Wilson BSA/375 October 7, 2013 Ricardo Merriwether Service Request/ Riodan Manufacturing Section One In the world today possessing the conveyance of having tools and systems that operate together throughout the organization becomes a huge benefit. Having easy access, gives the edge to companies, provides for better productivity and cost effectiveness. In order to know the criteria for a system the system requirements has to be determined. The first process in system development is requirement analysis and definition. This enables the breakdown of the functional and non-functional requirements that paints a clear framework to the system development (Rouse, 2012). Technology requirements, stakeholders, and businesses have a viable part in the process of analysis process. There are four activities involved in the analysis process, the first is elicitation activity, is the collecting of information and understanding the needs of the stakeholder and articulating high-level requirements. The analysis activity, determines clarity, and if the system is free of any contradictions, defines techniques to combat the issues. Specification activity is where the behavior of a system is a developing stage. Then there is the validation activity that involves sessions with users, stakeholders, and other experts to help to wing out issues and conflicting requirements before the projects moves to development (Johannesson & Perjons, 2013)...
Words: 2990 - Pages: 12
...Riordan Stephen G Peterson BSA375 APR 03, 2014 University of Phoenix Riordan RIORDANS Service Request SR-rm-022, Part 2 Riordan Manufacturing is seeking a new system that will consolidate all of their Human Resource related data. Currently, the data that will be a part of the new system is spread out through different departments of the company. The new system will allow this data to be saved in a central location, while only allowing viewing access to certain employees. The access will be much the same as currently in place, but located in a single system. Lastly, the implementation of the new system will be not be a quick process, because it would be safer the company completes a test run to few end users before completely releasing the system. For the design process and application architecture Riordan would benefit from using third-party software for their application process and for other processes. Programs that are already developed like commercial off the shelf (COTs) will help Riordan Manufacturing to save development time and will include training and services with them. This will be a long-term investment that can save the company money. Using COTs will guarantee security from the third party vendor. Any additional software or programs that are needed for special projects will be an in-home development. Security Controls For Riordan Manufacturing security of their system should be a major concern in this project. When it comes to security system...
Words: 840 - Pages: 4
