Reference no: EM132362709
Assignment Content
A security vulnerability report identifies the areas of the organization that are at risk of losing data, experiencing outages, etc. Typically, organizations categorize the information in the report to focus on specific areas and highlight the levels of risk for each area. Organizations typically use the information in the vulnerability report for budgeting and resource management.
Write a 3 to 4-page security vulnerability report using the organization you chose in Week 1. To help you with the assignment, an internal review of your organization was previously conducted, and the organization was found to have following vulnerabilities:
A formal Password Policy has not been developed that meets your organization's regulatory requirements.
The organization only uses single factor authentication using weak passwords.
Vulnerability Severity: High
Impact: Threats could easily guess weak passwords allowing unauthorized access.
Software configuration management does not exist on your organization's production servers.
There are different configurations on each server and no operating system patching schedule.
Vulnerability Severity: Moderate
Impact: With ad hoc configuration management, the organization could inadvertently or unintentionally make changes to the servers that could cause a self-imposed denial of service.
An Incident Response Plan has not been developed.
There is not a formal process for responding to a security incident.
Vulnerability Severity: High
Impact: In the event of a security incident, an ad hoc process could allow the security incident to get worse and spread throughout the network; the actual attack may not be recognized or handled in a timely manner giving the attacker more time to expand the attack.
Consider people, processes, and technology that can be exploited by the source of a threat.
Include recommended countermeasures to mitigate the impacts and risks of the vulnerabilities.
Format your assignment
and all references and citations according to APA guidelines. Given that this is an academic paper, additional research outside of the class materials to support the assertions in the document is expected.
Submit your assignment in Microsoft Word format.
|
Share 2 or 3 business benefits
: Share 2 or 3 business benefits that you think are important but might be overlooked or may often not be included in a quickly constructed list of benefits
|
|
Explain how the component is secured
: Explain how the component is secured and how its security interacts with the other elements in the overall infrastructure and how it protects the organization.
|
|
Create a network schedule using the information
: Create a network schedule using the information provided in the exercise, apply resources, and adjust the schedule to eliminate over commitment of resources.
|
|
Explain why you picked that process
: 1) Explain why you picked that process. 2) Explain the steps you might take to analyze how to improve the process.
|
|
Security vulnerability report
: A security vulnerability report identifies the areas of the organization that are at risk of losing data, experiencing outages, etc.
|
|
Differences between an adaptive and an extreme pmlc model
: What are the similarities and differences between an Adaptive PMLC model and an Extreme PMLC model? Be specific in your answer. In 175 words or more.
|
|
Identify how american medical association
: Identify how American Medical Association affected care, quality of care and cost how did AMA impact access to care, quality of care and cost?
|
|
Consider the incentives to buy a hybrid vehicle
: Consider the incentives to buy a hybrid vehicle, which is more fuel efficient but more expensive than a gas-powered vehicle.
|
|
How you would achieve balance between function and fashion
: Choose the one topic covered in Chapter 11 (error messages, non-anthropomorphic design, display design, window design, and color) that creates the biggest.
|