Posted by RAM on .
A medium-sized survey company stores sensitive government data that is used as part of a study. A security requirement from the government requires that all sensitive data must remain stored at the company’s head office. All staff and the head office network have undergone a security audit and have received clearance to store and access the data.
The application that uses the sensitive data can be installed on any computer and can access data from local hard drives or a shared folder location. The application and the data must be accessible to a remote branch office with 30 users, traveling staff using dial-up connectivity, traveling staff using public wired/wireless Internet connectivity, and specific users operating from home.
What solution would you recommend to allow all staff to run the application with government data and still meet the government security requirements? The solution must be proposed to the government auditor for review.