CYB 200 Project Three Milestone Decision Aid Template

Physical Security Survey   In this project you will perform a survey of the physical security at your school or workplace.   Identify vulnerabilities in the design and use of the following aspects of the facility:   Use of locking doors at main entrances   Access to sensitive areas   Cabling, communications, or computing equipment readily accessible   Video surveillance   Personnel badges   Loading area   Fire suppression   Make a list of issues you found. Include a categorization of risk and a suggested remedy to reduce the risk.   Do not enter any “employee only” areas during this exercise unless you have obtained permission in advance or are escorted by authorized personnel

Title: Ransomware Attack and Prevention Strategies   Objective: The objective of this assignment is to research and propose prevention strategies for ransomware attacks, which have become a growing threat to individuals, organizations, and even governments.   Task: Provide an overview of what ransomware attack are, including how they work and the motivation behind them. Present real-life examples of notable ransomware attacks and their impact on various entities. Explain the common vectors through which ransomware is delivered, such as phishing emails, malicious downloads, and vulnerabilities in software. Present a range of preventive measures that individuals and organizations can take to minimize the risk of ransomware attacks. This could include regular software updates, employee training, and endpoint security solutions.

Software Security Identify whether their organization uses critical software which is exposed to possible external attack. This would most likely be software running on an externally visible web server to handle responses to forms or other dynamic data handling. You should check what version of software is being used, what the most current version available is, and match this with any reports of known vulnerabilities in this software, as provided by organizations such as CERT, CIO, NIST/NSA, SANS etc. You should detail the threat posed to the organization by any known vulnerabilities, and whether you would recommend this software be upgraded, or hardened in some manner.

What is the ultimate goal of incident response? Question 8 options: Mitigate the damage Secure the database Minimize the damage Eliminate the threat

There are various enacted statutes or laws that address different aspects of cybersecurity.  1.) What piece of legislation (law) do you think has been most impactful in this realm and why?  Be sure to give the name of a state or federal statute (law), a brief description discussing its purpose, and how it has impacted cybersecurity from a legal perspective.

SALESFORCE Richard Bresnan is working on his Space tour program. His team is working on Salesforce to make reports for listing the potential threats that he may face. After completing the report his handed over to Bresnan but he is unable to select it from the Report type list. What is causing this problem?

Step-By-Step Assignment Instructions Assignment Topic: How data breaches occur and are discovered. Setup instructions: Go to https://www.privacyrights.org/data-breaches and review some of the information on data breaches. Then pick 3 different types of data breaches and report on one data breach each.  The types are located on the left hand side. How to submit: Submit a summary of each data breach and answer the following questions in your response: What was the data breach? How was the data breach found out? What were the threats? What were the vulnerabilities and how did the threats interact with them? Based on what you have learned in the course, what threats or vulnerabilities were present that caused the data breach? Submissions must be submitted in rich text format. Each summary should be at least 2 paragraphs in length but not more than 1 page.  In other words, since you are reviewing 3 data breaches, you will have 6 paragraphs to 3 pages total for the overall submission.

Research three (3) computer or security solutions that are available to purchase.Post: The name and reference for the solution: The details on what threats the solution should mitigate and how the solution addresses them.. References to any validations to their claims. What security issue the solution does not address and what would be required to augment the solution to meet this problem

C: Emotet Breach Details (What it affects): How to eliminate it:

Question:: Case Exercises Amy walked into her office cubicle and sat down. The entire episode with the blond man had taken well over two hours of her day. Plus, the police officers had told her the district attorney would also be calling to make an appointment to speak to her, which meant she would have to spend even more time dealing with this incident. She hoped her manager would understand. Questions: 1. Based on this case study, what security awareness and training documents and posters had an impact in this event? 2. Do you think that Amy should have done anything differently? What would you have done in the situation in which she found herself?