Write a professional memo to management with your recommendation for whether or not to implement a set of hardening guidelines. What guidelines would you recommend, if you would recommend them? Clearly explain your reasons, one way or the other, including important benefits for your recommendation. Also, recommend guidance for performing checks to make sure the guidelines are being followed. You will be graded on clarity and completeness — how well did you make and present your recommendation?
Your memo should open with specific, compelling reasons why the organization should implement your policy recommendations. What benefits will be gained? What problems will be solved or alleviated? End with a strong conclusion. Speak in a language that a manager understands, and make sure you appeal to management priorities.
Recommendations should be reasonably specific and justified; tell the reader, in top-level terms what actions to take and why (i.e. “Enable the jatzenframing module on all Linux servers. This will prevent kibabble data leakage through covert channels”). Your recommendations should stick to policies, and not the series of mouse-clicks to turn those policies on or off.