You are an ICT Security and Risk consultant and you have been approached by Globex Corp to
help them recover from a cyber attack. You have successfully isolated the machines affected by
the attack and brought the company’s system back into operation.

You have now completed a risk assessment for Globex Corp, and in your discussions with the Director have indicated that they need a policy to protect their data and their Intellectual Property (IP) around their Precision Farming Technology Designs. The Director has indicated that he thinks this is “being a bit excessive” and will “cost more than it’s worth”.
The company is the in process of developing some cutting-edge Precision Farming technology that has attracted considerable interest from some major industrial companies in Australia and overseas. The Sales Manager is concerned about the designs for these new devices being stolen or hacked, but the Director still thinks that the company is too small to attract that sort of attention. However, one of the government organizations that intends to purchase the new Precision Farming Machines has asked the Sales Manager to describe their level of cyber security maturity.
Globex Corp Director is still not entirely convinced that this is necessary, but wants you to develop a proposal for some security policies, just in case they win a government contract.

Tasks:
You have been contracted by Globex Corp to discuss and propose security policies to protect their data and resources in view of their existing risk assessment. Write a proposal for Globex Corp and discuss