KENYATTA UNIVERSITY

SCHOOL OF ENGINEERING AND TECHNOLOGY

DEPARTMENT OF CIT
BACHELOR OF SCIENCE INFORMATION TECHNOLOGY
SIT303 SYSTEMS ADMINISTRATION

Date: November 2022 Time: GROUP WORK ASSIGNMENT

Instructions:
 Study the case below and using the acquired knowledge answer the questions that follow.
 Each group to submit one copy with a list of all participating members.
 Group membership should not exceed 5 persons.
Question Case Study

You have been hired In the ICT department and you are now the Systems Administrator for a
community based Organisation. Your Organisation is involved in locating and providing
accommodation, mental health services, and training and support services to disadvantaged
people in the community. Your charity currently runs a small data centre that has some fifty 64
bit servers running mainly Windows Server enviroment, R2(R2 is a probabilistic programming
system that uses powerful techniques from program analysis and verification) for inference for
desktop services, database and file services. It also has about 10 Red Hat Enterprise Linux 5
servers for public using Web pages, services and support. Your Organisation is considering
joining a community cloud provided by a public cloud vendor in order to provide a number of
applications to all 500 support staff and administrative users. The community cloud would also
be used to store the Organisation’s 200TB of data. This data contains a considerable amount of
confidential information about the people to whom the Organisation provides services. A small
number of the Organisation’s applications are mission critical and the data that those
applications use is both confidential and time sensitive. The cloud vendor has made a
presentation to management that indicates that operational costs will drop dramatically if the
cloud model is adopted.

Page 1 of 2
Required
a) Describe three potential benefits to the organisation for migrating to the cloud services
supported by third party vendor [3 marks]
b) Prepare a short single page policy that can work as a guideline(importantly outline the
main headings) [5 marks]
c) Describe the steps that you would take to do a Risk Management assessment of this
proposal this organization’s ICT system. [5 marks]
d) Discuss briefly your recommendations on data/information security based on [6 marks]
i. The requirements of Identification
ii. Authorization and Authentications
iii. Confidentiality, Integrity non-repudiation and availability.
e) Discuss whether these requirements are adequate for a proper security assessment for
a proposed move to an IaaS model for the Organization. [4 marks]
f) A potential migration to the Cloud raises many issues around Governance. Discuss the
governance issues that you see arising from a migration of on-premise servers to an IaaS
model. [3 marks]
g) The Organization’s board has proposed a move to migrate its servers to an IaaS model.
Discuss [4 marks]
i. IaaS model.
ii. The methods that you would propose to the board to assess the SLA (service level
agreements)of the Cloud Provider.

Submit before Wednesday 23/11/2022 through chogi.francis@ku.ac.ke

Good luck

Page 2 of 2