User Account

All Pages

Threats and staying safe in cyberspace

Assignment Help Other Subject
Reference no: EM133020173

MIS607 Cybersecurity - Laureate International Universities

Threat Model Report

Learning Outcome 1 Explore and articulate cyber trends, threats and staying safe in cyberspace, plus protecting personal and company data.

Learning Outcome 2 Analyse issues associated with organisational data networks and security to recommend practical solutions towards their resolution.

Learning Outcome 4 Evaluate and communicate relevant technical and ethical considerations related to the design, deployment and/or the uses of secure technologies within various organisational contexts.

Task Summary

The goal of assessment 2 (A2) is to identify threats/vulnerabilities in the case scenario described in the associated file, Assessment Initial Case Scenario.docx. Not all threats/vulnerabilities you "discover" are in the initial case scenario. The scenario discusses some elements of the business that are needing mitigation, but you will need to also "discover" other threats/vulnerabilities.

The word count for this assessment is 1,500 words (±10%), not counting tables or figures. Tables and figures must be captioned (labelled) and referred to by caption (note that publishers do not guarantee tables and figures to be placed the same order or location as in your article). Caution: Items without a caption may be treated as if they are not in the report.

Be careful not to use up word count discussing cybersecurity basics. This is not an exercise in summarising your class notes, and such material will not count towards marks.
The report will not be marked without an Academic Integrity Declaration (see below).

DFD Requirements
The DFD must relate to the business described in the initial case scenario. Remember, the DFD is the first step in the risk analysis, but it is not the main output of the assessment. The main output is the categorised threats, see below.

For the DFD, you need at least a context diagram and a level-0 diagram. You can include further levels if you feel they are needed to show a threat boundary, but this is not necessary. The level-0 diagram (and further level diagrams, if needed) must not break the rules for proper DFD formation. And the DFDs (excluding the context diagram) must have labelled threat boundaries.

Threat Discovery
The main output of A2 should be a set of no less than 10 threats or vulnerabilities that need mitigation in the organisation. You will discover these with the help of the DFD and the threat boundaries.

The main threat for this assessment resembles a real-world attack. You need to develop a brief, factual overview of the real-world attack (web links can count as references here since the attack might not yet be covered academically). You are required to reference suggested mitigations, or costs in the real-world attack, this will help enormously with both A2 and A3 and will be taken into consideration when marking. Note carefully that any explanation of the real-world case is based on real information/data, not speculation or simulated "discovery".

It is important to understand that you need to "discover" additional threats/vulnerabilities on the associated initial case scenario. The scenario is only an initial assessment of the organisation. Your "discovery" can be simulated, based on your simulated investigation.

Obviously, you must cover the main threats already identified in the scenario, but other threats/vulnerabilities should be "discovered" by you.

Inform the reader about what discovery techniques were used. In dot points inform the audience.....who you talked to, questions you asked - but keep this very brief...8-10 dot points max.

Imagine yourself as a consultant called in to work inside the business to discover threats.

For this assignment, business acumen and business logic in approaching threats is what is required of you.

STRIDE methodology will be used for the reports. Note carefully that the DFD itself is not the main output of the assignment. The main result of the report is a set of threats or vulnerabilities. Important points are:

• Try to map these threats/vulnerabilities as best you can against threat boundaries;
• and categorize them as best you can against STRIDE categories. The STRIDE categories are not the threats.
Do not be concerned if the threats you discover do not fit all STRIDE categories. In a full, real-world assessment with hundreds of threats, this would be the case, but with around 10 threats this will probably not be possible. Try to cover at least three.

You can make assumptions, but the report is written from the point of view of a consultant who has made "discoveries" from their investigations. In the simulation you may gather needed information from stakeholders. Assessment markers are aware that the technical information "discovered" by you might not be 100% accurate in all details. However, your discoveries should be somewhat realistic.

Report Structure & Format
The report should have the following heading structure.
• Title Page
With subject code and name, assignment title, student's name, student number, and lecturer's
name. Also include AI declaration.
• Executive Summary
This should be written after the report and should briefly summarise what you did and what you found. It should be capable of being read by management generally, even those with relatively little IS experience.
• Body of the Report
DFD
threat discovery
threat list and STRIDE categorisation
• Conclusion
Summarise major findings or recommendations that the report puts forward.
• References
Use only APA style for citing and referencing

Attachment:- Cybersecurity.rar

Reference no: EM133020173

Questions Cloud

Effective in preventing the recurrence of depression : -Draw a conclusion. Based on this study, which drug was the most effective in preventing the recurrence of depression? Support your conclusion using conditional
Make a comment about quality control : Consider the following four scenarios (take time for each scenario) and frame a response. You must come up with one single response to each scenario supported w
Explain leadership of suharto : Under the leadership of Suharto, the Indonesian economy grew at a steady pace. Why was this ultimately not sustainable?
What effect does the local culture in which a company : What effect does the local culture in which a company is doing business have on ethical practices?
Threats and staying safe in cyberspace : Report and should briefly summarise what you did and what you found. It should be capable of being read by management generally, even those with relatively
Does wal-mart contribute to or detract from the communities : Does Wal-Mart contribute to or detract from the communities in which they operate stores? Discuss both the positive and negative aspects.
Explain the concept of transcultural competence : Explain the concept of transcultural competence.
Examine the relations between the same variables : Provide an example of a study, including the variables, level of measurement, and hypotheses, for which a researcher could appropriately choose two different st
Why did this tragedy occur : The Harvard Business Review case on Mount Everest and answer the following quest

Reviews

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd