Scenario:
You are employed as a cybersecurity analyst at NCU-FSB, a financial organization that has invested in establishing a security program but is in the process of developing a risk management strategy. This means that there is a critical need for implementing risk reduction strategies to prevent intrusions or attacks, like monitoring and response strategies, security awareness, training, and systems administration tools. In the second month of working for the organization, a user received a phishing email from a foreign country. After opening and reading the email, the users computer was compromised. Using ARP caching, the attacker was able to sniff password hashes and crack them, which escalated to spear-phishing and whaling attacks (domino effect). The attack or intrusions have been there for months, making it an Advanced Persistent Threat (APT) related attack. ARP stands for address resolution protocol, used to connect layer 2 of the OSI model, data link layer with layer 3 of the OSI model, network.
Instructions:
For this assignment, you must create a technical paper with an illustrated workflow diagram that examines the root cause of an incident or source of attacks and presents action steps to avoid or control different types of persistent internal and external attacks.
This workflow diagram will be included in your corporate risk management plan. You can use software tools like MS-Visio, Edraw, Lucidchart, LibreOffice, or any drawing tool to create your workflow diagram or infographic.
Your illustrated workflow should include the following:
Steps to assess, respond and mitigate a threat
Assessment tools and measures
Checklist to certify perimeter protection
Your paper should include:
Nature of the agency or business
Framework to be followed
Rationale for the adoption of the selected framework
Relevant laws or standards
Steps for framework adoption
Changes needed to fit the operations or services
Best practices for security and risk mitigation
Software solution recommendations
Recent Comments