Given the following list of end-user policy violations and security breaches, se

Question

Given the following list of end-user policy violations and security breaches, select three breaches and identify strategies to control and monitor each event to mitigate risk and minimize exposure. Define an auditing plan which includes:

scope

benchmarks

data-collection

post-audit activities

log management

testing of security systems

Select three of the following end-user breaches for your assignment:

Open network drive shares allow storage privileges to outside users.

Sensitive laptop data is unencrypted and susceptible to physical theft.

Remote users do not have recent patches or current updates.

Removable storage drives introduce malware filtered only when crossing the network.

Predictable passwords meet minimum length requirements but remain easily guessable.

INFORMATION SEC: Can youplease help me with the following:

Explanation / Answer

Open network drive shares allow storage privileges to outside users.

Strategy to control:

Strategy to monitor:

Auditing plan:

Scope: Within network

Benchmarks: Drives logically partitioned wrt. Users, encrypted and virus free.

Data-collection: Collecting metadata about username, time of access, size of data transferred, type of data, storage area details.

Post-audit activities: Removing access to users who do not use the shared drive and make more space for others or new users.

Log management: Global, log data stored in centrally

Testing of security systems: Checking if one user cannot access other users data anyhow by means of hacking.

Sensitive laptop data is unencrypted and susceptible to physical theft.

Strategy to control:

Strategy to monitor:

Auditing plan:

Scope: Global, can be a threatened from anywhere in the city/world

Benchmarks: Laptop incoming and outgoing data fully monitored and restricted in some cases.

data-collection: Links where data has been uploaded/downloaded from, what data has been uploaded/downloaded

post-audit activities: Blocking access to certain links services, including various data policies.

log management: Global, log data stored in centrally

testing of security systems: Testing how laptop behaves in outside network

after implementing new data policies and securities.

Remote users do not have recent patches or current updates.

Strategy to control:

Strategy to monitor:

Auditing plan:

Scope:global, any remote computer can have this probelm

Benchmarks: all remote users should have latest patch.

data-collection: Username, IP address, mac address, Patch details

post-audit activities: Notify users or force update remote PC’s

log management: Global, log data stored in centrally

testing of security systems: Testing out how well the latest patch is able to prevent malicious activities and enhancing system performance.

I have solved your question.Please do not forget to give a positive like to the asnwer. Thank you.

Related Questions

Navigate

• Browse (All)
• Browse G
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.