SlideShare une entreprise Scribd logo

Running Head RISK, THREAT AND VULNERABILITY MANAGEMENT .docx

Télécharger en tant que DOCX, PDF
J
jeanettehully

The document discusses risk, threat, and vulnerability management based on an analysis conducted by the Para Delta Company. The analysis included identifying security requirements and goals, common security threats and their impacts, network infrastructure components, and methods for securing networks. The company developed guidelines for managing risks, conducting penetration testing, and updating security components. It analyzed the costs and benefits of implementing various security control measures to mitigate risks. In summary, the document outlines Para Delta Company's process for assessing risks and vulnerabilities, identifying threats, and developing strategies to strengthen network security and defense.

Formation
1  sur  11
Running Head: RISK, THREAT AND VULNERABILITY MANAGEMENT 1 RISK, THREAT AND VULNERABILITY MANAGEMENT 2 Risk, Threat and Vulnerability Management 1. Introduction A general review of threats and vulnerabilities on IT systems was carried out by an American based company known as Para Delta that deals with information technology and sells electronic software. This was done in order to assist the firms to come up with effective security control measures which reduce the risk and threats on the IT networks. Para Delta Company developed procedures through which threat and vulnerability can be managed. The management steps provide emphasis on advance action of network security tasks such as insertion testing. Some automatic systems have advanced antivirus software installed in them, which are not able to identify the specific security threat and vulnerability even though they are capable of detecting dangers. The Para Delta came up with solutions to these threats by creating a threat intelligence foundation that combines human capability and data-driven intersection. Cyber-attacks and risk management are done by first assessing vulnerabilities that help to identify the common threats and the magnitude of their effects on the manufacturing
environment. The right set of security arrangements and risk management procedures are required to avoid cybersecurity vulnerabilities that pose serious threats to IT networks. The company found out that there is a need to develop guidelines and techniques which avail adequate information security to secure the operating system. By protecting the information and information systems create an affirmative foundation for strong information. This initiative helps to mitigate risks on the IT networks by protecting it from unauthorized access or destruction. Frameworks given by IT security procedures provide management to the information technology and governance. Frameworks also acknowledge IT governance objectives and good actions by the IT process. Companies are required to develop policies on the planning processes of information security systems, which again require plans of action for implementing security controls. This makes it possible for the provision of a more confidential information system and its availability. 2. The Analysis of Security Baseline The analysis was carried out by the Para Delta Company through the identification of various procedures, security requirements, the security attacks to the enterprise network control systems, and network infrastructure with security posture components. 2.1. Security requirements and goals The Para Delta Company carried out an analysis of security baseline through which the identification of various security necessities and results were listed for the preparation of any action of security baseline. The company found out that for strong networks of IT control system to be achieved, there must be some essential elements of the security network. This helps IT personnel to secure network systems and the important services of the network. The company identified specialized IT personnel to work together to establish cost-effective guidelines. This assists them in securing IT security products and helping in dealing with specific security risks and threats
during an outsourcing process and when carrying out procurement processes. The requirements such as security by design, security by default, and least privileges are identified by risk-assessment, which again helps in developing a favorable system’s objectives and the dominance of pictorial security view. 2.2. General attacks on security networks and their impacts Most of the known cybersecurity threats include computer viruses. The computer virus is software in nature and is designed in a way that it can be spread from one computer to another. The Para Delta Company found that the virus is capable of defaulting security settings, corrupting the information, and can even further steal data such as sensitive personal information from the computer. The sources of computer viruses consist of attachments sent from email and download from the infected websites. Another threat is rogue security software, which is known to commit internet deception. The software is harmful in that it deceives users to believe that they have computer virus installed on their computers, and the security control measures are never updated. This leads to malfunctioning of the software is installed, and it can impact risks on IT networks. Trojan horse is another security threat which deceives user into inviting a cyber-attacker into a securely protected area and stealing the user’s passwords through recording and further steal the important information from the computer. Computer worms multiply very fast and spread out from one computer to another. Denial of service attack is performed by various machines and internet connections through website flooding. A distributed denial of service attack function the same as the denial of service, but it is more forceful. It is very hard to control since it is launched from several computers. Phishing attacks are brought by short text messages shared and emails sent that appear to be authentic and valid. The person receiving the email is deceived into opening harmful links, which again leads to the installation of malfunctioning of the computers. Other threats include rootkit,
which invites the attacker and operates as phishing and injection attacks that execute harmful statements that operate a database behind web applications. Since it involves the interception of communication between two or more digital systems, it is very difficult to detect and control, and the solution to this is defense. To manage all security network threats, preparation is done in advance to make sure the security network systems are secure. Security risks are managed by raising concerns on server and security network virtualization issues that need to be controlled. This helps to block the hackers from attacking the security network system. A number of system checks are carried out to enforce the dual controls for critical tasks, which reduce the risk of IT networks. Network infrastructure is deployed to create awareness for IT staff to avoid any significant vulnerability of network systems such as the denial of access. 2.3. Network infrastructure and security posture components. The figure below shows the network infrastructure with security posture components. Different types of tests on security networks are done continuously to reduce threats and vulnerability of computers. The different security test types include; static cord analysis, penetration test, conformance test, heavy demand test, and analysis of origin testing. The company stated that to achieve a successful response to any incident, a well-coordinated and organized approach must be put in place. 2.4. Open and closed access areas and interconnection access points The Para Delta Company identified various wireless devices vulnerable to security network hacking. The open-access points are closed to avoid any external invasion. This is done by outlining important steps covered by any response program to effectively address the security incidents (Venkatraman, Daniel, & Murugaboopathi, 2013). These steps include preparation in policy establishment, detecting and reporting potential security events, triage, and analysis of data collection from tools and systems. The contaminant and neutralization perform an equal
closure of all systems, threats mitigation, requests, and post- incident activity, which improves security measures. 2.5. Hardware parts of the security network The company identified major components of the computer network required for the software installation. These components include networking devices connecting several Ethernet known as hub, network interface card, device connecting multiple devices on a computer(switch), connecting internet device called a router, telephone lines internet connecting device called modem and signal transmitters (cables and connectors). 2.6. Network-server management The Para Delta Company carried out research and found that network-server management can be done through monitoring, maintaining, and optimizing a network system (Hu, et al, 2018). The management is done with full compliance with security, reliability, and smooth operations. Workforce skill is improved by exploring cybersecurity risks which help in diagnostic planning. This further creates essential technical skills of the security workforce and helps in commanding the necessary tools set to carry out the work. Network security baselines are used as styles applied during the first evaluation and analysis of gap phases. It ensures the provision of the least necessities for security control management. The identification of strengths and weaknesses of real network control systems in the world is done by comparing it against the network baseline. The Para Delta Company stated some threat remedies to perform risk assessment, such as gathering systems and related information. Threats are identified, and their weaknesses discovered before doing the analysis to uncover the dangers and impact of these threats. Proper action is then carried out depending on the level and magnitude of each threat. The solution is provided through the installation of antivirus software and vulnerability management system to handle and resolve vulnerabilities. 2.7. Methods of security network protection
The method employed by the company was through installing automated systems for regular monitoring of the network. Risk mitigation is done by reducing the threat level by eliminating and intercepting adversaries before they attack the security operating systems. Steps that one applies for mitigation include encryption of data, educating members of staff, and the use of proper termination practices. 3. Determination of Network Defense Strategy The company further came up with effective strategies for the assurance of service continuity under attack collaboration (Li, et al, 2007). The service providers face risks whose major sources are harmful attacks on the network control systems. Network attacker intends to interrupt and bring disorder in the services, on the other hand, the user providing defense has to make sure there is continuity of the service provision, and this brings a high degree of complexity characteristic. The defender has to apply the effective and appropriate strategies such as deploying specific advance action and reaction defense mechanisms, under resources and predefined provision quality services to protect the network control system. 3.1. Determination of test violations and procedures of the security network The Para Delta Company carried out testing violations and assessment of vulnerabilities by using various manual methods and automated tools. The review of manual application systems and the network policies were found to be significantly vulnerable and possible for malicious attackers. The company identified ports, services, and their capability of vulnerabilities. The verification of these vulnerabilities on the network systems is done by carrying out penetration testing. The review techniques used by the company were manually carried out to examine systems, applications, and network policies to ensure everything put in place. The network security personnel were interviewed to help in identifying important systems, applications, and services that run on the network, such as word press from the web server and security policies and monitoring
systems. The company primarily focused on the webserver for vulnerabilities during the evaluation process. The vulnerabilities are due to the inspection of packets conveying the network and how the number of times ports are opened. These malicious attacks can be intentionally or accidentally initiated into the network software by an end-user. Automated tools such as maps are used to verify the open ports and to scan them for the possibility of vulnerable directories. Test of violations on network defense includes identifying system operations through providing backups, and disaster recovery tested, maintaining information through periodic verification and validity of the data updates, identifying and modifying the process, and maintaining system software. 3.2. Identification of different test types and test plans There two types of tests carried out by the company, which include a security scanning test that is done either manually or by use of automated machines and penetrating tests. The techniques and procedures used to conduct the test are first starting with obtaining additional information and performing more reconnaissance through network scanning, an inspection of potential parts of exploit on a network system and vulnerability scan help in detecting them, scanning done to find out hackers vulnerabilities to gain access to the network system, attempting to gain unauthorized access to restricted systems by use of password cracking and finishing with a penetration test. The company noted that when carrying out a test on network security, the following guidelines need to be followed; most critical areas which exposed to the public access should be tested first to avoid exposing risk on the network, the system being tested should have the latest updates of the security patches installed, the correct interpretation of testing outcomes because sometimes vulnerability testing give false-positive results, those carrying out the test should be aware of the security policies, selection of the correct equipment that give favorable characteristics needed to carry out testing. The Para Delta Company suggested that the outcome achieved from the
network security test assist the developers in coming up with various strategies of protecting network security systems and web applications and can also be shared among the security team within the company. Security implementation is done by figuring out the measurement of all collective action that needs to be taken and also initiate the progress or improvement process. 4. Plans for the Penetration Testing Engagement The company noted that when planning for penetration testing, the rules of engagement for penetration testing need to be addressed. The rules of engagement are directives defining circumstances and conditions such as hostilities and actions needed to be applied when carrying out a penetration test (Tiller, 2011). 4.1. Definition of penetration test and steps involved This process involves the advanced testing of web applications through executing attacks that are the same as the real attack (Wilhelm, 2013). These attacks might occur at a specific time during the process of testing. They are computed in a specified manner to get security faults and to provide effective strategies and steps on how to reduce the risks brought by these defects. The process aim at uncovering vulnerabilities and highlight the practical risks involved. The steps involved in rule of engagement process include; identifying the type and depth of test to be carried out, checking contact details of a client involved, looking at the notifications of the IT team and the client, handling data responsibly and checking the status of any meeting and going through reports. The company argued that the type of test to be applied is identified depending on the directives given out in the rule of engagement and also the size of information given out by the team conducting the test. The team carrying out the test operates from the view of an attacker from outside the company in the black box test. The process of penetration starts by identifying the network mapping, implementation of various defense strategies, and website services. This type of test is best applicable internally and can
be used by the specialized IT personnel of the Para Delta Company. The white box test is where the available information about the targets is distributed to the testing. The information sometimes includes the source code of the applications. Testing of web applications is done using a gray box test, and the main purpose is to identify vulnerabilities within the applications. The company found out that the penetration tester can operate with the user accounts to adopt the point of view of a harmful attacker that is capable of gaining access through social engineering. The client, together with the team conducting testing, evaluate the information that is valuable and necessary to be protected, and the application needed to be tested when making a decision on scope testing. The company found out that capturing the right information contact of the client-side helps to mitigate denial of service attack. The tests are used to create awareness concerning the readiness of the supporting staff members in responding to incident and intrusion attempts. The client is informed about the testing process through time and date indication and also the source of addresses from where the testing. The penetration tests are always announced. The data handling process requires special attention in the rule of engagement through which proper storage and communication measures are taken. For a penetration test to be successful, frequent communication is required and very fundamental. The testing team and client of the company are required to carry out regular meetings and give information concerning report status. 4.2. Determination of updates on security components The Para Delta Company emphasized on the importance of software updates citing that there are critical patches to security network that requires regular monitoring and updates. This brings improvement to the stability of the software and also ensuring that the outdated features are removed. These updates aim at making the service provider have a better experience. The latest patch implantation is done through efficient patch management, which ensures the security and smooth functioning of corporate software, and the company indicated that it should
be automated by the use of specialized patch management solutions. The aim of patch implementation is to ensure that all applications running on the network are secure and stable. The company listed how these goals can be achieved through taking control of software inventory, monitoring the existence of security for all operating systems and applications, by detecting any software that is not correctly patched, identifying patches to be applied to specific systems, testing of patches and ensuring that they are all installed at the right time to avoid risks to the network security. 5. Analysis of Risk Management Cost Advantage The company found out that benefit-cost analysis provides one with means of identifying the situations in which the specific interventions to manage risks appear to be cost-effective of mitigating the risk of disaster and orders of magnitude involved. This process is significant in selecting the appropriate loss prevention and control measures. 5.1. Identification of cost test violations and implementation of control measures Various tests violation were identified, and the implementation of security control measures to help mitigate the risk volume sufficiently (Stoneburner, Goguen, & Feringa, 2002). This provides security on an acceptable level and benefits for the company. These control measures on risk management include the elimination of automated machines that are vulnerable to malicious attackers, a substitution which reduces the risk by replacing a more vulnerable device with a secure device that is cost-effective, and engineering controls that ensure the protection of the service provider. The engineering control gives priority to measures that protect all employees of the company over the individual measures. References Hu, H., Liu, Y., Zhang, H., & Pan, R. (2018). Optimal network defense strategy selection based on incomplete information evolutionary game. IEEE Access, 6, 29806-29821.
Li, M., Koutsopoulos, I., & Poovendran, R. (2007, May). Optimal jamming attacks and network defense policies in wireless sensor networks. In IEEE INFOCOM 2007-26th IEEE International Conference on Computer Communications (pp. 1307-1315). IEEE. Stoneburner, G., Goguen, A., & Feringa, A. (2002). Risk management guide for information technology systems. Nist special publication, 800(30), 800-30. Tiller, J. S. (2011). CISO's guide to penetration testing: a framework to plan, manage, and maximize benefits. CRC Press. Venkatraman, K., Daniel, J. V., & Murugaboopathi, G. (2013). Various attacks in wireless sensor network: Survey. International Journal of Soft Computing and Engineering (IJSCE), 3(1), 208-212. Wilhelm, T. (2013). Professional penetration testing: Creating and learning in a hacking lab. Newnes.

Recommandé

Computer Network Security
Computer Network SecurityComputer Network Security
Computer Network Security
Sachithra Gayan
 
Presentation1 A.pptx
Presentation1 A.pptxPresentation1 A.pptx
Presentation1 A.pptx
RabinBidari
 
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
Belayet Hossain
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security Fundamentals
Rahmat Suhatman
 
Honey Pot Intrusion Detection System
Honey Pot Intrusion Detection SystemHoney Pot Intrusion Detection System
Honey Pot Intrusion Detection System
International Journal of Engineering Inventions www.ijeijournal.com
 
Phi 235 social media security users guide presentation
Phi 235 social media security users guide presentationPhi 235 social media security users guide presentation
Phi 235 social media security users guide presentation
Alan Holyoke
 
A Brief Note On Companies And The Largest Ever Consumer...
A Brief Note On Companies And The Largest Ever Consumer...A Brief Note On Companies And The Largest Ever Consumer...
A Brief Note On Companies And The Largest Ever Consumer...
Erin Moore
 
Why Penetration Tests Are Important Cyber51
Why Penetration Tests Are Important Cyber51Why Penetration Tests Are Important Cyber51
Why Penetration Tests Are Important Cyber51
martinvoelk
 

Recommandé

Computer Network Security
Computer Network SecurityComputer Network Security
Computer Network Security
Sachithra Gayan
 
Presentation1 A.pptx
Presentation1 A.pptxPresentation1 A.pptx
Presentation1 A.pptx
RabinBidari
 
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
Belayet Hossain
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security Fundamentals
Rahmat Suhatman
 
Honey Pot Intrusion Detection System
Honey Pot Intrusion Detection SystemHoney Pot Intrusion Detection System
Honey Pot Intrusion Detection System
International Journal of Engineering Inventions www.ijeijournal.com
 
Phi 235 social media security users guide presentation
Phi 235 social media security users guide presentationPhi 235 social media security users guide presentation
Phi 235 social media security users guide presentation
Alan Holyoke
 
A Brief Note On Companies And The Largest Ever Consumer...
A Brief Note On Companies And The Largest Ever Consumer...A Brief Note On Companies And The Largest Ever Consumer...
A Brief Note On Companies And The Largest Ever Consumer...
Erin Moore
 
Why Penetration Tests Are Important Cyber51
Why Penetration Tests Are Important Cyber51Why Penetration Tests Are Important Cyber51
Why Penetration Tests Are Important Cyber51
martinvoelk
 
network security.pdf
network security.pdfnetwork security.pdf
network security.pdf
JeganathanJayaran
 
Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
Ken Flott
 
What is the process of Vulnerability Assessment and Penetration Testing.pdf
What is the process of Vulnerability Assessment and Penetration Testing.pdfWhat is the process of Vulnerability Assessment and Penetration Testing.pdf
What is the process of Vulnerability Assessment and Penetration Testing.pdf
ElanusTechnologies
 
Enhanced method for intrusion detection over kdd cup 99 dataset
Enhanced method for intrusion detection over kdd cup 99 datasetEnhanced method for intrusion detection over kdd cup 99 dataset
Enhanced method for intrusion detection over kdd cup 99 dataset
ijctet
 
network_security.docx_2.pdf
network_security.docx_2.pdfnetwork_security.docx_2.pdf
network_security.docx_2.pdf
ahmed53254
 
Anatomy of a cyber attack
Anatomy of a cyber attackAnatomy of a cyber attack
Anatomy of a cyber attack
Mark Silver
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
edgar6wallace88877
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
fathwaitewalter
 
Different Types Of Network Security Devices And Tools.docx
Different Types Of Network Security Devices And Tools.docxDifferent Types Of Network Security Devices And Tools.docx
Different Types Of Network Security Devices And Tools.docx
SameerShaik43
 
Network srcurity
Network srcurityNetwork srcurity
Network srcurity
sheikhparvez4
 
Computing safety
Computing safetyComputing safety
Computing safety
titoferrus
 
The NIST Cybersecurity Framework
The NIST Cybersecurity FrameworkThe NIST Cybersecurity Framework
The NIST Cybersecurity Framework
EMMAIntl
 
Importance of Vulnerability Scanning for Businesses | SOCVault.io
Importance of Vulnerability Scanning for Businesses | SOCVault.ioImportance of Vulnerability Scanning for Businesses | SOCVault.io
Importance of Vulnerability Scanning for Businesses | SOCVault.io
SOCVault
 
46 102-112
46 102-11246 102-112
46 102-112
idescitation
 
Include at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words inInclude at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words in
maribethy2y
 
8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf
Metaorange
 
Advantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdfAdvantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdf
Careerera
 
Vulnerability Management System
Vulnerability Management SystemVulnerability Management System
Vulnerability Management System
IRJET Journal
 
Causes And Consequences Of Data Leakage
Causes And Consequences Of Data LeakageCauses And Consequences Of Data Leakage
Causes And Consequences Of Data Leakage
Patty Buckley
 
250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx
jeanettehully
 
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
jeanettehully
 

Contenu connexe

Similaire à Running Head RISK, THREAT AND VULNERABILITY MANAGEMENT .docx

Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
Ken Flott
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
edgar6wallace88877
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
fathwaitewalter
 
46 102-112
46 102-11246 102-112
46 102-112
idescitation
 
Include at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words inInclude at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words in
maribethy2y
 
Advantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdfAdvantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdf
Careerera
 
Causes And Consequences Of Data Leakage
Causes And Consequences Of Data LeakageCauses And Consequences Of Data Leakage
Causes And Consequences Of Data Leakage
Patty Buckley
 

Similaire à Running Head RISK, THREAT AND VULNERABILITY MANAGEMENT .docx (20)

network security.pdf
network security.pdfnetwork security.pdf
network security.pdf
 
Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
 
What is the process of Vulnerability Assessment and Penetration Testing.pdf
What is the process of Vulnerability Assessment and Penetration Testing.pdfWhat is the process of Vulnerability Assessment and Penetration Testing.pdf
What is the process of Vulnerability Assessment and Penetration Testing.pdf
 
Enhanced method for intrusion detection over kdd cup 99 dataset
Enhanced method for intrusion detection over kdd cup 99 datasetEnhanced method for intrusion detection over kdd cup 99 dataset
Enhanced method for intrusion detection over kdd cup 99 dataset
 
network_security.docx_2.pdf
network_security.docx_2.pdfnetwork_security.docx_2.pdf
network_security.docx_2.pdf
 
Anatomy of a cyber attack
Anatomy of a cyber attackAnatomy of a cyber attack
Anatomy of a cyber attack
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
 
Different Types Of Network Security Devices And Tools.docx
Different Types Of Network Security Devices And Tools.docxDifferent Types Of Network Security Devices And Tools.docx
Different Types Of Network Security Devices And Tools.docx
 
Network srcurity
Network srcurityNetwork srcurity
Network srcurity
 
Computing safety
Computing safetyComputing safety
Computing safety
 
The NIST Cybersecurity Framework
The NIST Cybersecurity FrameworkThe NIST Cybersecurity Framework
The NIST Cybersecurity Framework
 
Importance of Vulnerability Scanning for Businesses | SOCVault.io
Importance of Vulnerability Scanning for Businesses | SOCVault.ioImportance of Vulnerability Scanning for Businesses | SOCVault.io
Importance of Vulnerability Scanning for Businesses | SOCVault.io
 
46 102-112
46 102-11246 102-112
46 102-112
 
Include at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words inInclude at least 250 words in your posting and at least 250 words in
Include at least 250 words in your posting and at least 250 words in
 
8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf
 
Advantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdfAdvantages and Disadvantages of Network Security.pdf
Advantages and Disadvantages of Network Security.pdf
 
Vulnerability Management System
Vulnerability Management SystemVulnerability Management System
Vulnerability Management System
 
Causes And Consequences Of Data Leakage
Causes And Consequences Of Data LeakageCauses And Consequences Of Data Leakage
Causes And Consequences Of Data Leakage
 

Plus de jeanettehully

250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx
jeanettehully
 
250 word response. Chicago Style citingAccording to Kluver, what.docx
250 word response. Chicago Style citingAccording to Kluver, what.docx250 word response. Chicago Style citingAccording to Kluver, what.docx
250 word response. Chicago Style citingAccording to Kluver, what.docx
jeanettehully
 
2LeadershipEighth Edition3To Madison.docx
2LeadershipEighth Edition3To Madison.docx2LeadershipEighth Edition3To Madison.docx
2LeadershipEighth Edition3To Madison.docx
jeanettehully
 
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
jeanettehully
 
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
jeanettehully
 
250 word discussion post--today please. Make sure you put in the dq .docx
250 word discussion post--today please. Make sure you put in the dq .docx250 word discussion post--today please. Make sure you put in the dq .docx
250 word discussion post--today please. Make sure you put in the dq .docx
jeanettehully
 
2By 2015, projections indicate that the largest category of househ.docx
2By 2015, projections indicate that the largest category of househ.docx2By 2015, projections indicate that the largest category of househ.docx
2By 2015, projections indicate that the largest category of househ.docx
jeanettehully
 
29Answer[removed] That is the house whe.docx
29Answer[removed] That is the house whe.docx29Answer[removed] That is the house whe.docx
29Answer[removed] That is the house whe.docx
jeanettehully
 
250 words discussion not an assignementThe purpose of this discuss.docx
250 words discussion not an assignementThe purpose of this discuss.docx250 words discussion not an assignementThe purpose of this discuss.docx
250 words discussion not an assignementThe purpose of this discuss.docx
jeanettehully
 
250-500  words APA format cite references  Check this scenario o.docx
250-500  words APA format cite references  Check this scenario o.docx250-500  words APA format cite references  Check this scenario o.docx
250-500  words APA format cite references  Check this scenario o.docx
jeanettehully
 
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
jeanettehully
 
250 wordsUsing the same company (Bank of America) that you have .docx
250 wordsUsing the same company (Bank of America) that you have .docx250 wordsUsing the same company (Bank of America) that you have .docx
250 wordsUsing the same company (Bank of America) that you have .docx
jeanettehully
 
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
jeanettehully
 

Plus de jeanettehully (20)

250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx250-500  words APA format cite references  Check this scenario out.docx
250-500  words APA format cite references  Check this scenario out.docx
 
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
2 DQ’s need to be answers with Zero plagiarism and 250 word count fo.docx
 
270w3Respond to the followingStress can be the root cause of ps.docx
270w3Respond to the followingStress can be the root cause of ps.docx270w3Respond to the followingStress can be the root cause of ps.docx
270w3Respond to the followingStress can be the root cause of ps.docx
 
250 word response. Chicago Style citingAccording to Kluver, what.docx
250 word response. Chicago Style citingAccording to Kluver, what.docx250 word response. Chicago Style citingAccording to Kluver, what.docx
250 word response. Chicago Style citingAccording to Kluver, what.docx
 
250+ Words – Strategic Intelligence CollectionChoose one of th.docx
250+ Words – Strategic Intelligence CollectionChoose one of th.docx250+ Words – Strategic Intelligence CollectionChoose one of th.docx
250+ Words – Strategic Intelligence CollectionChoose one of th.docx
 
2–3 pages; APA formatDetailsThere are several steps to take w.docx
2–3 pages; APA formatDetailsThere are several steps to take w.docx2–3 pages; APA formatDetailsThere are several steps to take w.docx
2–3 pages; APA formatDetailsThere are several steps to take w.docx
 
2LeadershipEighth Edition3To Madison.docx
2LeadershipEighth Edition3To Madison.docx2LeadershipEighth Edition3To Madison.docx
2LeadershipEighth Edition3To Madison.docx
 
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
250 Word Resoponse. Chicago Style Citing.According to Kluver, .docx
 
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
250 word mini essay question.Textbook is Getlein, Mark. Living wi.docx
 
250 word discussion post--today please. Make sure you put in the dq .docx
250 word discussion post--today please. Make sure you put in the dq .docx250 word discussion post--today please. Make sure you put in the dq .docx
250 word discussion post--today please. Make sure you put in the dq .docx
 
2By 2015, projections indicate that the largest category of househ.docx
2By 2015, projections indicate that the largest category of househ.docx2By 2015, projections indicate that the largest category of househ.docx
2By 2015, projections indicate that the largest category of househ.docx
 
29Answer[removed] That is the house whe.docx
29Answer[removed] That is the house whe.docx29Answer[removed] That is the house whe.docx
29Answer[removed] That is the house whe.docx
 
250 words discussion not an assignementThe purpose of this discuss.docx
250 words discussion not an assignementThe purpose of this discuss.docx250 words discussion not an assignementThe purpose of this discuss.docx
250 words discussion not an assignementThe purpose of this discuss.docx
 
25. For each of the transactions listed below, indicate whether it.docx
25. For each of the transactions listed below, indicate whether it.docx25. For each of the transactions listed below, indicate whether it.docx
25. For each of the transactions listed below, indicate whether it.docx
 
250-word minimum. Must use textbook Jandt, Fred E. (editor) Intercu.docx
250-word minimum. Must use textbook Jandt, Fred E. (editor) Intercu.docx250-word minimum. Must use textbook Jandt, Fred E. (editor) Intercu.docx
250-word minimum. Must use textbook Jandt, Fred E. (editor) Intercu.docx
 
250-500  words APA format cite references  Check this scenario o.docx
250-500  words APA format cite references  Check this scenario o.docx250-500  words APA format cite references  Check this scenario o.docx
250-500  words APA format cite references  Check this scenario o.docx
 
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
250+ Words – Insider Threat Analysis Penetration AnalysisCho.docx
 
250 wordsUsing the same company (Bank of America) that you have .docx
250 wordsUsing the same company (Bank of America) that you have .docx250 wordsUsing the same company (Bank of America) that you have .docx
250 wordsUsing the same company (Bank of America) that you have .docx
 
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
250 mini essay questiontextbook Getlein, Mark. Living with Art, 9.docx
 
22.¿Saber o conocer…   With a partner, tell what thes.docx
22.¿Saber o conocer…   With a partner, tell what thes.docx22.¿Saber o conocer…   With a partner, tell what thes.docx
22.¿Saber o conocer…   With a partner, tell what thes.docx
 

Dernier

1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
QucHHunhnh
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
negromaestrong
 

Dernier (20)

Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
Unit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptxUnit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptx
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
ICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptx
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
 
PROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docxPROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docx
 
Application orientated numerical on hev.ppt
Application orientated numerical on hev.pptApplication orientated numerical on hev.ppt
Application orientated numerical on hev.ppt
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
 
Unit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptxUnit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptx
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 

Running Head RISK, THREAT AND VULNERABILITY MANAGEMENT .docx

  • 1. Running Head: RISK, THREAT AND VULNERABILITY MANAGEMENT 1 RISK, THREAT AND VULNERABILITY MANAGEMENT 2 Risk, Threat and Vulnerability Management 1. Introduction A general review of threats and vulnerabilities on IT systems was carried out by an American based company known as Para Delta that deals with information technology and sells electronic software. This was done in order to assist the firms to come up with effective security control measures which reduce the risk and threats on the IT networks. Para Delta Company developed procedures through which threat and vulnerability can be managed. The management steps provide emphasis on advance action of network security tasks such as insertion testing. Some automatic systems have advanced antivirus software installed in them, which are not able to identify the specific security threat and vulnerability even though they are capable of detecting dangers. The Para Delta came up with solutions to these threats by creating a threat intelligence foundation that combines human capability and data-driven intersection. Cyber-attacks and risk management are done by first assessing vulnerabilities that help to identify the common threats and the magnitude of their effects on the manufacturing
  • 2. environment. The right set of security arrangements and risk management procedures are required to avoid cybersecurity vulnerabilities that pose serious threats to IT networks. The company found out that there is a need to develop guidelines and techniques which avail adequate information security to secure the operating system. By protecting the information and information systems create an affirmative foundation for strong information. This initiative helps to mitigate risks on the IT networks by protecting it from unauthorized access or destruction. Frameworks given by IT security procedures provide management to the information technology and governance. Frameworks also acknowledge IT governance objectives and good actions by the IT process. Companies are required to develop policies on the planning processes of information security systems, which again require plans of action for implementing security controls. This makes it possible for the provision of a more confidential information system and its availability. 2. The Analysis of Security Baseline The analysis was carried out by the Para Delta Company through the identification of various procedures, security requirements, the security attacks to the enterprise network control systems, and network infrastructure with security posture components. 2.1. Security requirements and goals The Para Delta Company carried out an analysis of security baseline through which the identification of various security necessities and results were listed for the preparation of any action of security baseline. The company found out that for strong networks of IT control system to be achieved, there must be some essential elements of the security network. This helps IT personnel to secure network systems and the important services of the network. The company identified specialized IT personnel to work together to establish cost-effective guidelines. This assists them in securing IT security products and helping in dealing with specific security risks and threats
  • 3. during an outsourcing process and when carrying out procurement processes. The requirements such as security by design, security by default, and least privileges are identified by risk-assessment, which again helps in developing a favorable system’s objectives and the dominance of pictorial security view. 2.2. General attacks on security networks and their impacts Most of the known cybersecurity threats include computer viruses. The computer virus is software in nature and is designed in a way that it can be spread from one computer to another. The Para Delta Company found that the virus is capable of defaulting security settings, corrupting the information, and can even further steal data such as sensitive personal information from the computer. The sources of computer viruses consist of attachments sent from email and download from the infected websites. Another threat is rogue security software, which is known to commit internet deception. The software is harmful in that it deceives users to believe that they have computer virus installed on their computers, and the security control measures are never updated. This leads to malfunctioning of the software is installed, and it can impact risks on IT networks. Trojan horse is another security threat which deceives user into inviting a cyber-attacker into a securely protected area and stealing the user’s passwords through recording and further steal the important information from the computer. Computer worms multiply very fast and spread out from one computer to another. Denial of service attack is performed by various machines and internet connections through website flooding. A distributed denial of service attack function the same as the denial of service, but it is more forceful. It is very hard to control since it is launched from several computers. Phishing attacks are brought by short text messages shared and emails sent that appear to be authentic and valid. The person receiving the email is deceived into opening harmful links, which again leads to the installation of malfunctioning of the computers. Other threats include rootkit,
  • 4. which invites the attacker and operates as phishing and injection attacks that execute harmful statements that operate a database behind web applications. Since it involves the interception of communication between two or more digital systems, it is very difficult to detect and control, and the solution to this is defense. To manage all security network threats, preparation is done in advance to make sure the security network systems are secure. Security risks are managed by raising concerns on server and security network virtualization issues that need to be controlled. This helps to block the hackers from attacking the security network system. A number of system checks are carried out to enforce the dual controls for critical tasks, which reduce the risk of IT networks. Network infrastructure is deployed to create awareness for IT staff to avoid any significant vulnerability of network systems such as the denial of access. 2.3. Network infrastructure and security posture components. The figure below shows the network infrastructure with security posture components. Different types of tests on security networks are done continuously to reduce threats and vulnerability of computers. The different security test types include; static cord analysis, penetration test, conformance test, heavy demand test, and analysis of origin testing. The company stated that to achieve a successful response to any incident, a well-coordinated and organized approach must be put in place. 2.4. Open and closed access areas and interconnection access points The Para Delta Company identified various wireless devices vulnerable to security network hacking. The open-access points are closed to avoid any external invasion. This is done by outlining important steps covered by any response program to effectively address the security incidents (Venkatraman, Daniel, & Murugaboopathi, 2013). These steps include preparation in policy establishment, detecting and reporting potential security events, triage, and analysis of data collection from tools and systems. The contaminant and neutralization perform an equal
  • 5. closure of all systems, threats mitigation, requests, and post- incident activity, which improves security measures. 2.5. Hardware parts of the security network The company identified major components of the computer network required for the software installation. These components include networking devices connecting several Ethernet known as hub, network interface card, device connecting multiple devices on a computer(switch), connecting internet device called a router, telephone lines internet connecting device called modem and signal transmitters (cables and connectors). 2.6. Network-server management The Para Delta Company carried out research and found that network-server management can be done through monitoring, maintaining, and optimizing a network system (Hu, et al, 2018). The management is done with full compliance with security, reliability, and smooth operations. Workforce skill is improved by exploring cybersecurity risks which help in diagnostic planning. This further creates essential technical skills of the security workforce and helps in commanding the necessary tools set to carry out the work. Network security baselines are used as styles applied during the first evaluation and analysis of gap phases. It ensures the provision of the least necessities for security control management. The identification of strengths and weaknesses of real network control systems in the world is done by comparing it against the network baseline. The Para Delta Company stated some threat remedies to perform risk assessment, such as gathering systems and related information. Threats are identified, and their weaknesses discovered before doing the analysis to uncover the dangers and impact of these threats. Proper action is then carried out depending on the level and magnitude of each threat. The solution is provided through the installation of antivirus software and vulnerability management system to handle and resolve vulnerabilities. 2.7. Methods of security network protection
  • 6. The method employed by the company was through installing automated systems for regular monitoring of the network. Risk mitigation is done by reducing the threat level by eliminating and intercepting adversaries before they attack the security operating systems. Steps that one applies for mitigation include encryption of data, educating members of staff, and the use of proper termination practices. 3. Determination of Network Defense Strategy The company further came up with effective strategies for the assurance of service continuity under attack collaboration (Li, et al, 2007). The service providers face risks whose major sources are harmful attacks on the network control systems. Network attacker intends to interrupt and bring disorder in the services, on the other hand, the user providing defense has to make sure there is continuity of the service provision, and this brings a high degree of complexity characteristic. The defender has to apply the effective and appropriate strategies such as deploying specific advance action and reaction defense mechanisms, under resources and predefined provision quality services to protect the network control system. 3.1. Determination of test violations and procedures of the security network The Para Delta Company carried out testing violations and assessment of vulnerabilities by using various manual methods and automated tools. The review of manual application systems and the network policies were found to be significantly vulnerable and possible for malicious attackers. The company identified ports, services, and their capability of vulnerabilities. The verification of these vulnerabilities on the network systems is done by carrying out penetration testing. The review techniques used by the company were manually carried out to examine systems, applications, and network policies to ensure everything put in place. The network security personnel were interviewed to help in identifying important systems, applications, and services that run on the network, such as word press from the web server and security policies and monitoring
  • 7. systems. The company primarily focused on the webserver for vulnerabilities during the evaluation process. The vulnerabilities are due to the inspection of packets conveying the network and how the number of times ports are opened. These malicious attacks can be intentionally or accidentally initiated into the network software by an end-user. Automated tools such as maps are used to verify the open ports and to scan them for the possibility of vulnerable directories. Test of violations on network defense includes identifying system operations through providing backups, and disaster recovery tested, maintaining information through periodic verification and validity of the data updates, identifying and modifying the process, and maintaining system software. 3.2. Identification of different test types and test plans There two types of tests carried out by the company, which include a security scanning test that is done either manually or by use of automated machines and penetrating tests. The techniques and procedures used to conduct the test are first starting with obtaining additional information and performing more reconnaissance through network scanning, an inspection of potential parts of exploit on a network system and vulnerability scan help in detecting them, scanning done to find out hackers vulnerabilities to gain access to the network system, attempting to gain unauthorized access to restricted systems by use of password cracking and finishing with a penetration test. The company noted that when carrying out a test on network security, the following guidelines need to be followed; most critical areas which exposed to the public access should be tested first to avoid exposing risk on the network, the system being tested should have the latest updates of the security patches installed, the correct interpretation of testing outcomes because sometimes vulnerability testing give false-positive results, those carrying out the test should be aware of the security policies, selection of the correct equipment that give favorable characteristics needed to carry out testing. The Para Delta Company suggested that the outcome achieved from the
  • 8. network security test assist the developers in coming up with various strategies of protecting network security systems and web applications and can also be shared among the security team within the company. Security implementation is done by figuring out the measurement of all collective action that needs to be taken and also initiate the progress or improvement process. 4. Plans for the Penetration Testing Engagement The company noted that when planning for penetration testing, the rules of engagement for penetration testing need to be addressed. The rules of engagement are directives defining circumstances and conditions such as hostilities and actions needed to be applied when carrying out a penetration test (Tiller, 2011). 4.1. Definition of penetration test and steps involved This process involves the advanced testing of web applications through executing attacks that are the same as the real attack (Wilhelm, 2013). These attacks might occur at a specific time during the process of testing. They are computed in a specified manner to get security faults and to provide effective strategies and steps on how to reduce the risks brought by these defects. The process aim at uncovering vulnerabilities and highlight the practical risks involved. The steps involved in rule of engagement process include; identifying the type and depth of test to be carried out, checking contact details of a client involved, looking at the notifications of the IT team and the client, handling data responsibly and checking the status of any meeting and going through reports. The company argued that the type of test to be applied is identified depending on the directives given out in the rule of engagement and also the size of information given out by the team conducting the test. The team carrying out the test operates from the view of an attacker from outside the company in the black box test. The process of penetration starts by identifying the network mapping, implementation of various defense strategies, and website services. This type of test is best applicable internally and can
  • 9. be used by the specialized IT personnel of the Para Delta Company. The white box test is where the available information about the targets is distributed to the testing. The information sometimes includes the source code of the applications. Testing of web applications is done using a gray box test, and the main purpose is to identify vulnerabilities within the applications. The company found out that the penetration tester can operate with the user accounts to adopt the point of view of a harmful attacker that is capable of gaining access through social engineering. The client, together with the team conducting testing, evaluate the information that is valuable and necessary to be protected, and the application needed to be tested when making a decision on scope testing. The company found out that capturing the right information contact of the client-side helps to mitigate denial of service attack. The tests are used to create awareness concerning the readiness of the supporting staff members in responding to incident and intrusion attempts. The client is informed about the testing process through time and date indication and also the source of addresses from where the testing. The penetration tests are always announced. The data handling process requires special attention in the rule of engagement through which proper storage and communication measures are taken. For a penetration test to be successful, frequent communication is required and very fundamental. The testing team and client of the company are required to carry out regular meetings and give information concerning report status. 4.2. Determination of updates on security components The Para Delta Company emphasized on the importance of software updates citing that there are critical patches to security network that requires regular monitoring and updates. This brings improvement to the stability of the software and also ensuring that the outdated features are removed. These updates aim at making the service provider have a better experience. The latest patch implantation is done through efficient patch management, which ensures the security and smooth functioning of corporate software, and the company indicated that it should
  • 10. be automated by the use of specialized patch management solutions. The aim of patch implementation is to ensure that all applications running on the network are secure and stable. The company listed how these goals can be achieved through taking control of software inventory, monitoring the existence of security for all operating systems and applications, by detecting any software that is not correctly patched, identifying patches to be applied to specific systems, testing of patches and ensuring that they are all installed at the right time to avoid risks to the network security. 5. Analysis of Risk Management Cost Advantage The company found out that benefit-cost analysis provides one with means of identifying the situations in which the specific interventions to manage risks appear to be cost-effective of mitigating the risk of disaster and orders of magnitude involved. This process is significant in selecting the appropriate loss prevention and control measures. 5.1. Identification of cost test violations and implementation of control measures Various tests violation were identified, and the implementation of security control measures to help mitigate the risk volume sufficiently (Stoneburner, Goguen, & Feringa, 2002). This provides security on an acceptable level and benefits for the company. These control measures on risk management include the elimination of automated machines that are vulnerable to malicious attackers, a substitution which reduces the risk by replacing a more vulnerable device with a secure device that is cost-effective, and engineering controls that ensure the protection of the service provider. The engineering control gives priority to measures that protect all employees of the company over the individual measures. References Hu, H., Liu, Y., Zhang, H., & Pan, R. (2018). Optimal network defense strategy selection based on incomplete information evolutionary game. IEEE Access, 6, 29806-29821.
  • 11. Li, M., Koutsopoulos, I., & Poovendran, R. (2007, May). Optimal jamming attacks and network defense policies in wireless sensor networks. In IEEE INFOCOM 2007-26th IEEE International Conference on Computer Communications (pp. 1307-1315). IEEE. Stoneburner, G., Goguen, A., & Feringa, A. (2002). Risk management guide for information technology systems. Nist special publication, 800(30), 800-30. Tiller, J. S. (2011). CISO's guide to penetration testing: a framework to plan, manage, and maximize benefits. CRC Press. Venkatraman, K., Daniel, J. V., & Murugaboopathi, G. (2013). Various attacks in wireless sensor network: Survey. International Journal of Soft Computing and Engineering (IJSCE), 3(1), 208-212. Wilhelm, T. (2013). Professional penetration testing: Creating and learning in a hacking lab. Newnes.