WIDGET accounting is a small company located in Belconnen in the ACT. They have 15 employees, including an Office Manager and the Business Owner. Ten of the employees work onsite at the office, whilst the remaining five work remotely from home or at a client’s premises. Responsibility for ICT resides with their Office Manager, who is working their way through a TAFE ICT course in their spare time. WIDGET’s ICT Infrastructure consists of the following: • All the staff use laptops with Windows 10 Pro as the SOE. These are all standard licenses, are patched and do NOT have security software installed. Staff are free to choose their own passwords for their individual machines. • The business has recently moved to the Office 365 Business subscription service for Microsoft Office applications. • Wireless internet access for office staff is provided via ADSL using a D-Link-2740B wireless router and the Wi-Fi password is publicly available. Staff are permitted to connect their mobiles, laptops and other electronic devices through this wireless network. They also can form an internet-of-things structure by connecting these devices at the same time for work purposes. • Wired network and internet access is also provided by a recently installed NETGEAR JGS524 24-Port Gigabit Switch. There are 20 network jacks available, which can be used to connect any physical computing devices. Couple of jacks are located in the public area of the office accessible to clients and visitors. • Staff working remotely use either their personal mobile phones as hot spots or their home internet connections to connect to the internet, and they do not have any password policy enforced. • Sensitive data is stored on laptops, servers and the NAS without using cryptographic techniques. • Employees share passwords and logins with each other if they are having difficulty logging in or they need to access to material on other machines. • The business does not have a website and instead conduct marketing campaigns through a Facebook page and a Twitter account. The user name and password for these services are the same as the Business Owner’s username and password for his work laptop. • You are asked as an external security expert to evaluate Widget Accounting’s current physical security infrastructure. A) Define how the components of WIDGET’S infrastructure in relation to data, networks, machines, users and applications are interconnected with each other. B) Please draw a simple diagram to demonstrate how the components are interconnected with each other.