D485 CLOUD SECURITY DGN2 TASK 1 IMPEMENTATION PLAN LATEST UPDATED WESTERN GOVERNORS’ UNIVERSITY

Executive Summary
SWBTL LLC has experienced substantial growth via the implementation of creative strategies
and successful acquisitions. This growth has enabled the company to provide services across the
entire country and currently employ a workforce of over 2000 professionals. The business relies
significantly on information technology, utilising both proprietary and commercially available
software to ensure the delivery of top-notch services. SWBTL LLC is actively considering
adopting cloud technologies through Microsoft Azure to meet the growing demand for services
while ensuring availability and addressing cybersecurity issues. Additionally, this will guarantee
that the business adheres to both local and international regulations, given its contractual
agreements with the US government and its handling of card transactions.
The selection of a cloud service provider depended on the existing Active Directory setup and its
compatibility with legacy authentication standards. The business is yet to decide on an ideal
service model that will provide significant control over existing IT infrastructure. Currently, the
firm is facing security risks and challenges with the integrity of files and systems following the
departure of the consultant who was responsible for the migrations.
The organization's objective is to resolve all security concerns in the present environment to
guarantee adherence to present and forthcoming regulatory requirements. To accomplish this, the
CIO has established business requirements that ensure the confidentiality, integrity, and
availability of services during and after the migration, as well as the ultimate compliance with
regulators.
Course of Action
Based on the requirements of the business to have significant control over deployment and
management cloud resources such as OS, applications, compute, storage and network, as well as
the management of resource and user groups the Infrastructure. Infrastructure As A Service
(IAAS) is the cloud service model that is most appropriate to meet these and numerous other
requirements. Significant control over the deployment, administration, and ownership of
infrastructure resources, as well as identity and access management, will be granted to the
business through this model.
The regulatory directives for cloud Infrastructure as a Service (IaaS) models can differ based on