week 4 discussion (3 separate part)

CIS 498

"Managing Projects and Requirements Gathering"  Please respond to the following:

·         According to Roberts, the industry deems only 25% of technology projects successful. Analyze why this statistic is so low. Suggest strategies that an IT department could use in order to increase the success rate of projects. Give your opinion on whether the structure of the PMO contributes to this statistic. Justify your response.

·         Imagine that you are a senior business analyst with a multinational corporation. Examine the process of requirements gathering discussed in Chapter 9 of the Roberts text. Suggest your strategy for gathering requirements from across divisional lines. Determine at least two (2) obstacles that you may encounter, and propose one (1) method for overcoming each. Provide a rationale for your response.

CIS 255

Top of Form

"Multi-User Operating System (OS)"  Please respond to the following:

·         Examine the major advantages and disadvantages of a multi-user OS. Determine whether a multi-tasking operating system is the same as a multi-user operating system. Provide a rationale for your response.

·         Determine whether or not Windows (e.g., Vista, 7, 8, and 10) can be considered a multi-user operating system. Provide a rationale for your response.

CIS 435

"SQL Injection Attacks and Preventions" Select one of the following and discuss in no less than three paragraphs, and have at least one response to another student of at least one paragraph:

·         Read Sammut, T., & Schiffman, M. (2013, April 5). Understanding SQL Injection. Retrieved from http://www.cisco.com/web/about/security/intelligence/sql_injection.html.  Read Wichers, D., Manico, J., & Seil, M. (2014, April 12). SQL Injection Prevention Cheat Sheet. Retrieved from https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet. Describe the major concerns that information security professionals and SQL database administrators should have with SQL injection attacks. Additionally, provide the key reasons why you believe such attacks are popular among hackers, both malicious and ethical. Justify your response.

·         Suggest what you believe to be the two most critical best practices for protecting against SQL injection attacks, and establish whether or not you believe that there are significant efforts for security professionals who implement these best practices. Provide a rationale for your response.

·         Any current topic or article related to penetration techniques.

·         The instructor insight.