The Open Web Application Security Project (OWASP) is a nonprofit foundation dedicated to helping people understand and improve the security of software. One of their projects it the OWASP Top Ten Web Application Security Risks found https://owasp.org/www-project-top-ten/Links to an external site. . For this discussion you will choose one of the Top Ten Risks and give … Read more
In the event of an unknown zero-day attack, an intrusion detection system (IDS) might not be able to detect the attack and therefore fail to alert the administrator. Any failure to detect an attack is called a false negative. When alarms are not going off, it’s common to assume that no malicious events are taking … Read more
LAN Version Subnetting Large organizations often consist of multiple departments that require logical networks to be created across the physical network. Two main ways to create logical networks are virtual LANs (VLANs) and subnetting. Answer the following question(s): In what situation would you create logical networks with VLANs rather than subnetting? Why?
Week 13 Discussion – Metadata For your initial post, discuss the two topics below. Respond to posts from other students. Metadata collection Compare Government and the Private Sector policies for collecting and using metadata Describe how metadata might be used to protect future national security, and for boosting retail commerce and economic growth.
The purpose of a vulnerability scanner is to scan systems within your environment to make sure there are no missing patches or known threats. Depending on the size of the environment this can be a daunting task. Is this discussion you are to research a vulnerability scanner (try not to duplicate your classmates if possible). … Read more
A typical IT infrastructure has seven domains: User Domain, Workstation Domain, LAN Domain, LAN-to-WAN Domain, WAN Domain, Remote Access Domain, and System/Application Domain. Each domain requires proper security controls that must meet the requirements of confidentiality, integrity, and availability. Answer the following question(s): In your opinion, which domain is the most difficult to monitor for … Read more
Week 12 Discussion – Drones and Mobile Computers For your initial post, select and discuss two topics below. Respond to posts from other students who have chosen different topics. Drones and Computers that are Mobile Describe possible legal legal and liability challenges related to Civilian Drones, Driverless Cars, and Autonomous Robots. Is it right to hold software designers … Read more
There are several different firewall architectures available: Main Border Firewall Screened Firewall Internal Firewall Host Firewall DMZ Firewall In this discussion, you are to describe each of these and describe when they could/would be used. Additionally, how can these be layered and used together to provide better security? What could be a disadvantage to using … Read more
Week 11 Discussion – Protection of Intellectual Property For your initial post, discuss the two topics below. Respond to posts from other students. Protection of Intellectual Property: Describe the possible effects 3-D printing may have on Copyright and Patent. How might pirated 3-D digital designs affect future innovation? Explain how 3-D printing of biological DNA and replacement organs in … Read more
Your nation’s technical staff expects you to report on all summit events once you return to your nation’s capital. The CISO has requested that each analyst work independently to create an Intelligence Debriefing for technical staff. This debriefing is a comprehensive report and is comprised of your BCP, SITREP 1, SITREP 2, and SITREP 3. Each team … Read more