User Account

All Pages

Conduct a security analysis baseline

Assignment Help Computer Network Security
Reference no: EM131938344

Risk, Threat, and Vulnerability Management Transcript

After completing your master's degree, you have been hired by a contracting company as an information systems security officer, or ISSO, supporting systems for federal clients. One morning, your boss asks you to come to her office. She tells you that you'll be working on a network security audit. Network security audits, based on FISMA standards, are used annually to determine the effectiveness of our security controls. The boss explains, prior to the security audit, I will need you to test, execute, collect, and compile your results into a security assessment report, or SAR. Once you're finished, you will submit the report to me and the executive leadership.

Later, you receive a follow-up email from your boss with instructions. First you will conduct a risk and threat assessment of the enterprise network. Next, you will perform black box testing of the network using network analysis tools. After identifying any network vulnerabilities, you will lead efforts to remedy and mitigate those vulnerabilities using appropriate risk management controls. You will then perform a white box test,and compile the results in the final security assessment report. And provide this to leadership, along with an executive briefing in your lab analysis. So management has a baseline view of the security posture of the enterprise network, before the actual external IT audit. The email ends with this note, thank you for taking this on. Our executive leadership is excited to learn of your findings.

Many companies and agencies conduct IT audits to test and assess the rigor of IT security controls in order to mitigate risks to IT networks. Such audits meet compliance mandates by regulatory organizations. Federal IT systems follow Federal Information System Management Act (FISMA) guidelines and report security compliance to US-CERT, the United States Computer Emergency Readiness Team, which handles defense and response to cyberattacks as part of the Department of Homeland Security. In addition, the Control Objective for Information Technology (COBIT) is a set of IT security guidelines that provides a framework for IT security for IT systems in the commercial sector.

These audits are comprehensive and rigorous, and negative findings can lead to significant fines and other penalties. Therefore, industry and federal entities conduct internal self-audits in preparation for actual external IT audits, and compile security assessment reports.
In this project, you will develop a 12-page written security assessment report and executive briefing (slide presentation) for a company and submit the report to the leadership of that company.

There are six steps to complete the project. Most steps in this project should take no more than two hours to complete, and the project as a whole should take no more than three weeks to complete. Begin with the workplace scenario, and then continue to Step 1.

Step 1: Conduct a Security Analysis Baseline
In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR).

You will get your information from a data-flow diagram and report from the Microsoft Threat Modeling Tool 2016. The scope should include network IT security for the whole organization. Click the following to view the data-flow diagram: [diagram and report]
Include the following areas in this portion of the SAR:

1. Security requirements and goals for the preliminary security baseline activity.

2. Typical attacks to enterprise networks and their descriptions. Include Trojans, viruses, worms, denial of service, session hijacking, and social engineering. Include the impacts these attacks have on an organization.

3. Network infrastructure and diagram, including configuration and connections. Describe the security posture with respect to these components and the security employed: LAN, MAN, WAN, enterprise. Use these questions to guide you:
a. What are the security risks and concerns?
b. What are ways to get real-time understanding of the security posture at any time?
c. How regularly should the security of the enterprise network be tested, and what type of tests should be used?
d. What are the processes in play, or to be established to respond to an incident?
e. Workforce skill is a critical success factor in any security program, and any security assessment must also review this component. Lack of a skilled workforce could also be a security vulnerability. Does the security workforce have the requisite technical skills and command of the necessary toolsets to do the job required?
f. Is there an adequate professional development roadmap in place to maintain and/or improve the skill set as needed?
g. Describe the ways to detect these malicious code and what tactics bad actors use for evading detection.

4. Public and private access areas, web access points. Include in the network diagram the delineation of open and closed networks, where they co-exist. In the open network and closed network portion, show the connections to the Internet.

5. Physical hardware components. Include routers and switches. What security weaknesses or vulnerabilities are within these devices?

6. Operating systems, servers, network management systems.
a. data in transit vulnerabilities
i. endpoint access vulnerabilities
ii. external storage vulnerabilities
iii. virtual private network vulnerabilities
iv. media access control vulnerabilities
v. ethernet vulnerabilities

7. Possible applications. This network will incorporate a BYOD (bring your own device) policy in the near future. The IT auditing team and leadership need to understand current mobile applications and possible future applications and other wireless integrations. You will use some of this information in Project 2 and also in Project 5.
The overall SAR should detail the security measures needed, or implementations status of those in progress, to address the identified vulnerabilities. Include:
1. remediation
2. mitigation
3. countermeasure
4. recovery
Through your research, provide the methods used to provide the protections and defenses.

The baseline should make up at least three of the 12 pages of the overall report.

Step 2: Determine a Network Defense Strategy

You've completed your initial assessment of the company's security with your baseline analysis. Now it's time to determine the best defenses for your network.

Start by reading a publication by the National Institute of Standards and Technology, NIST-SP-800-115 Technical Guide to Information Security Testing and Assessment, and outline how you would test violations. Identify how you will assess the effectiveness of these controls and write test procedures that could be used to test for effectiveness. Write them in a manner to allow a future information systems security officer to use them in preparing for an IT security audit or IT certification and accreditation. Within this portion of the SAR, explain the different testing types (black box testing, white box testing).
Include these test plans in the SAR. The strategy should take up at least two of the 12 pages of the overall report.

Step 3: Plan the Penetration Testing Engagement

Now that you've completed your test plans, it's time to define your penetration testing process. Include all involved processes, people, and timeframe. Develop a letter of intent to the organization, and within the letter, include some formal rules of engagement (ROE). The process and any documents can be notional or can refer to actual use cases. If actual use cases are included, cite them using APA format.
This portion should be about two pages of the overall 12-page report.
After you have outlined the steps of a penetration testing process, in the next step you will perform penetration testing. During the testing, you will determine if the security components are updated and if the latest patches are implemented, and if not, determine where the security gaps are.

Step 4: Conduct a Network Penetration Test

You've defined the penetration testing process, and in this step, you will scan the network for vulnerabilities. Though you have some preliminary information about the network, you will perform a black box test to assess the current security posture. Black box testing is performed with little or no information about the network and organization.
To complete this step, you will use industry tools to carry out simulated attacks to test the weaknesses of the network. You will do this within your lab Workspace. The workspace instructions will provide many of the details, but in the simulation, you will launch a sandbox type of virtual machine (VM), report your findings and actual screen captures of the behaviors you see as a result of the tests, and include these in the SAR.

Step 5: Complete a Risk Management Cost Benefit Analysis

You've completed the penetration testing, and now it's time to complete your SAR with a risk management cost benefit analysis. Within this analysis, think about the cost of violations and other areas if you do not add the controls. Then add in the cost for implementing your controls.

When you have finished with the cost benefit analysis, which should be at least one page of your overall report, move to the final step, which is the completed SAR. As part of the final assignment, remember that you will need to create a slide presentation as part of the executive briefing, and submit that along with the SAR.

Step 6: Compile the SAR, Executive Briefing, and Lab Report

You have completed comprehensive testing in preparation for this audit, provided recommended remediations, and developed a set of recommendations. Now you are ready to submit your SAR and executive briefing.

The requirements for Project 1 are as follows:

1. Executive briefing: A three- to five-slide visual presentation for business executives and board members.

2. Security assessment report (SAR): Your report should be 12 pages minimum, double-spaced with citations in APA format. The page count does not include figures, diagrams, tables or citations.

3. Lab report: A document sharing your lab experience and providing screenshots to demonstrate that you performed the lab. Attach it to the SAR as an artifact.

Attachment:- Project.rar

Verified Expert

In this assignment we have studied what are the security policies are there? What are the different threads .Here we have also studied what are the risk analysis and cost benefits analysis. Here we have studied what are penetration testing and how the penetration testing help in reducing risk.

Reference no: EM131938344

Questions Cloud

What is the required rate of return on a stock : Assume that the risk-free rate is 5% and the market risk premium is 6%. What is the required return for the overall stock market?
Temperature of the mixed warm water : How many kilograms of hot water (70 degrees) must be mixed with cold water (10 degrees) so that the temperature of the mixed warm water is (35 degrees)?
What type of personality might be better equipped for deal : Discuss What are some other jobs that deal with relatively negative or unfavorable emotions daily?
Are you willing to create a second dummy facebook site : Are you willing to create a second dummy Facebook (or other) site to reveal to employers if need be? explain your answer.
Conduct a security analysis baseline : conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points
What is the point that ehrenreich is making in her narrative : How typical do you suppose Ehrenreich's experience is of people who wait tables at "family restaurants" (8)?
What aspects of the subject need further exploration : What did you think of Carr's article, in general? Which of Carr's points strike you as correct, and why? Which of Carr's claims do you disagree with, and why?
What wavelengths appear in the atom emission spectrum : The allowed energies of a simple atom are 0.00 eV, 4.05 eV , and 5.12 eV.
What arguments can you make against trying to make : What arguments can you make against trying to make gamification part of an organization's culture? What examplescan you give or create to justify your arguments

Reviews

urv1938344

10/17/2018 12:15:19 AM

This is perfectly done! Thank you so much for your assistance! WOW... Great. I cant belive that I can get the solution in just 8hrs. It is really surprising for me. thanks a lot guys for such instant work and the solution is also very good. Thanks once more for the discount.

len1938344

4/11/2018 7:22:35 AM

• 2.1: Identify and clearly explain the issue, question, or problem under critical consideration. • 2.2: Locate and access sufficient information to investigate the issue or problem. • 2.3: Evaluate the information in a logical and organized manner to determine its value and relevance to the problem. • 2.4: Consider and analyze information in context to the issue or problem. • 2.5: Develop well-reasoned ideas, conclusions or decisions, checking them against relevant criteria and benchmarks. • 5.2: Knowledge of architectural methodologies used in the design and development of information systems and knowledge of standards that either are compliant with or derived from established standards or guidelines. • 5.3: Uses defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network in order to protect information, information systems, and networks from threats.

len1938344

4/11/2018 7:22:18 AM

• 1.1: Organize document or presentation in a manner that promotes understanding and meets the requirements of the assignment. • 1.2: Develop coherent paragraphs or points to be internally unified and function as part of the whole document or presentation. • 1.3: Provide sufficient, correctly cited support that substantiates the writer’s ideas. • 1.4: Tailor communications to the audience. • 1.5: Use sentence structure appropriate to the task, message and audience. • 1.6: Follow conventions of Standard Written English. • 1.7: Create neat and professional looking documents appropriate for the project. • 1.8: Create clear oral messages.

len1938344

4/11/2018 7:22:09 AM

he executive briefing should be 3-5 slides in length, PowerPoint visual presentation for business executives and board members. The Security assessment report (SAR), should be 12 pages minimum, double-spaced with citations in APA format. The page count does not include figures, diagrams, tables or citations. security assessment report (SAR), slides to support executive briefing, lab report When you submit your project, your work will be evaluated using the competencies listed below. Before you submit your assignment, review the competencies below, which your instructor will use to evaluate your work. A good practice would be to use each competency as a self-check to confirm you have incorporated all of them in your work.

Write a Review

Computer Network Security Questions & Answers

  An overview of wireless lan security - term paper

Computer Science or Information Technology deals with Wireless LAN Security. Wireless LAN Security is gaining importance in the recent times. This report talks about how vulnerable are wireless LAN networks without any security measures and also talk..

  Computer networks and security against hackers

This case study about a company named Magna International, a Canada based global supplier of automotive components, modules and systems. Along with the company analysis have been made in this assignment.

  New attack models

The Internet evolution is and is very fast and the Internet exposes the connected computers to attacks and the subsequent losses are in rise.

  Islamic Calligraphy

Islamic calligraphy or Arabic calligraphy is a primary form of art for Islamic visual expression and creativity.

  A comprehensive study about web-based email implementation

Conduct a comprehensive study about web-based email implementation in gmail. Optionally, you may use sniffer like wireshark or your choice to analyze the communication traffic.

  Retention policy and litigation hold notices

The purpose of this project is to provide you with an opportunity to create a document retention policy. You will also learn how to serve a litigation hold notice for an educational institute.

  Tools to enhance password protection

A report on Tools to enhance Password Protection.

  Analyse security procedures

Analyse security procedures

  Write a report on denial of service

Write a report on DENIAL OF SERVICE (DoS).

  Phising email

Phising email It is multipart, what are the two parts? The HTML part, is it inviting the recepient to click somewhere? What is the email proporting to do when the link is clicked?

  Express the shannon-hartley capacity theorem

Express the Shannon-Hartley capacity theorem in terms of where is the Energy/bit and is the psd of white noise.

  Modern symmetric encryption schemes

Pseudo-random generators, pseudo-random functions and pseudo-random permutations

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd