security audit
Added on Jun, 18 2008 at 9:51 AM by Sarah
This summer I have gotten a new kind of assignment for my work-study money. I have usually gotten the jobs that center around just following some higher-up and getting them whatever they need throughout the day. The job this summer is little bit different. I have applied and been accepted to do and independent work-study as a web maintenance professional for the university. Basically my job will be to design, setup, and maintain the web system for a small business in town here wishing to link their various locations. This will be the most responsibility I have ever been given and the most freedom I have ever had from a job.
The entire system from its initial layout to its eventual turn over to being run by those within the business is all in my hands. I have already chosen the various software programs and designs that I want to use based on the budget they have given me. Now my first goal is to set the system up and getting it up to a fully functional intranet. From here I will begin to test it with a web application scanner to hopefully find any holes within the programming where hackers may be able to get in. Also I have to be able to build up a proper firewall that gives the user freedom but doesn't allow the transfer of any deviant materials. Once I have tried my best to safeguard against any sql injections or other common forms of internet attacks I will launch the site online. None of the employees will have access at this point because I will be doing this to do our first security audit. I will be doing this with Ajax application security software which will stay as a part of the site for both the employees and the moderators. This software will allow us to see in real time all users within the system and all actions that are out of the ordinary. There are also checks that the users can do to see how secure the site actually is so they aren't losing any of their precious financial information with the web application scanner. This is a very exciting process and I hope that it all goes as planned with minimal technology problems.