For this paper, you will research potential and existing security issues affecting digital government websites. Such websites enable customers to enroll in programs and services, check the status of benefits, and receive information about the federal government’s activities. Your audience for this research report will be the Chief Information Officer for a small federal agency who has asked for assistance in developing a risk assessment and risk mitigation strategy for the agency’s digital government websites.
Note: this research report is separate from the report you previously prepared about OPEN data and may not reuse information from that report. This paper must address other types of government services. See Table 1 for the list of websites to use in your research.
For this report, you should begin by reviewing three or more specific digital government websites (from the list provided in Table 1) to determine:
(a)the types of information provided by the websites
(b)the types of services provided by the websites
(c)security issues which could impact the delivery of digital government services by the websites
After you have reviewed these websites, review the Federal Cybersecurity Risk Determination Report and Action Plan https://www.whitehouse.gov/wp-content/uploads/2018/05/Cybersecurity-Risk-Determination-Report-FINAL_May-2018-Release.pdf to identify additional sources of risk which the agency must be aware of and should address in its planning. You should also review Executive Order 13800 Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure https://www.whitehouse.gov/presidential-actions/presidential-executive-order-strengthening-cybersecurity-federal-networks-critical-infrastructure/
Table 1. List of Digital Government Websites
Base URLs |
|||
BENEFITS.GOV |
CANCER.GOV |
CONSUMERFINANCE.GOV |
DATA.GOV |
DIGITALGOV.GOV |
DISASTERASSISTANCE.GOV |
FOODSAFETY.GOV |
GRANTS.GOV |
HEALTHCARE.GOV |
HEALTHFINDER.GOV |
MEDICARE.GOV |
READY.GOV |
RECREATION.GOV |
REGULATIONS.GOV |
RESEARCH.GOV |
SAFERCAR.GOV |
SERVE.GOV |
STOPFAKES.GOV |
USA.GOV |
VOLUNTEER.GOV |
Write a five to seven page summary of your research. At a minimum, your summary must include the following:
1.An introduction or overview of digital government which provides definitions and addresses the laws, regulations, and policies which require that federal agencies provide information and services via the Web. This introduction should be suitable for an executive audience.
2.An overview of the information and services provided by the digital government Websites that you reviewed. Answer the following questions:
3.A separate section which addresses the architectures and security issues inherent in the use of Web applications when used to deliver the services provided by your selected digital government Website. How do these issues contribute to increased risk?
4.A separate section which includes recommendations for best practices for ensuring Web application security during the design, implementation, and operation of digital government websites. Include five or more best practice recommendations in your recommendations. (Hint: at least one of your recommendations should address use of the NIST Cybersecurity Framework. Another recommendation should address use of NIST SP 800-53 controls for ensuring security and privacy.)
5.A closing section in which you summarize your research and your recommendations.
Submit your work in MS Word format (.docx or .doc file) using the Project 2 Assignment in your assignment folder. (Attach the file.)
Hi there! Click one of our representatives below and we will get back to you as soon as possible.