Prevention / Containment Measures For Cyber Threats

CIS 500 Week 6 Case Study 1 - Cyber Security in Business Organizations - Strayer University 2015 Version NEW

The world of cyber security continues to introduce new threats each year against network infrastructures and computer devices. In the recent years, the impact from cyber-attacks has wreaked havoc on many company brands and organizational reputations. As this issue grows so does the technology to prevent and protect against these malicious attacks. It is absolutely crucial for organizations and businesses to shift focus from defense for different types of attacks to improving safeguards to mitigate the loss of sensitive data when an attack occurs. In addition to the traditional security technology used to detect an attack, companies will have to include

Looking at recommendations I would make, it’s important that management first recognize the function of cybersecurity in their overall business structure. They must maintain ongoing interactions

Deploying the right security products – IT security today has a wide range of technologies that are aimed specifically at lowering risks and threats.

The article “Defending America in Cyberspace” in the journal The National Interest authored by Keith Alexander, Emily Goldman, and Michael Warner taught me much about how the Department of Homeland Security handles America’s cyber threats. The Department of Security is the lead agency in protecting America from domestic cybersecurity incidents. It stated how America fights Cyber crime and security threats. In this day and age, countries are very vulnerable to skilled hackers. Some of them not even under the age 18.

Terrorists have begun to exploit the availability of information with the malicious intent to sabotage. Conversely, there are those who are not quite sure if cyber warfare is an actual threat. This will also provide an ample answer to questions such as: What is cyber warfare? And will answer the question of, what is the history of cyber warfare? And will answer the question Is there any real way to protect ourselves from a cyber attack?

Research Objective: The main theme of this research paper is to protect sensitive information that any organization or business possess. With community’s increasing reliance on information systems and technology there is scope for security breaches, more likely to happen. Not only monetary loss it can create damage to information assets that has sensitive data. To secure these assets from any internal or external damage organizations has to follow proposed rules and guidelines. Also security responsibilities

These proposals and systems suggestions can minimize the vulnerabilities associated with any compromises or intrusions within the network. Deploying an intrusion detection system is an essential security strategy for monitoring a network information system for abnormal or authorized activity. An intrusion detection system (IDS) is set of tools which monitor a network topology by providing a system administrator with the overall picture of how the system is being utilized. Executing an IDS will make a difference in creating a defense in depth architecture to be more compelling in recognizing any form of malicious activities. The capacity of the IDS is to monitor and survey the network traffic without affecting network activity. IDS tools gather information and analyzes it against a pre-characterized manage set, and against a set of known assault 'marks'. The IDS can scan port numbers and to determine if any breaches or attacks are occurring (Kuipers,

Even with the best laid plans, however, cybersecurity incidents happen. When your cyber space is (inevitably) penetrated by an unauthorized user or some malicious software (malware), your organization must recognize the attack or breach as quickly as possible, that capability, covered in the Detect Core

Our program incorporates these security capabilities into a comprehensive, multi-layered defensive approach for ensuring the confidentiality, integrity, and availability of the public’s sensitive personally identifiable information. As we continue to provide new opportunities for better customer service through new online services, we must remain vigilant in continuing to strengthen our cyber terrorism program capabilities. To that end, we proactively try to penetrate our own information systems daily to rigorous test and analyze any points of vulnerability. We continuously learn more about the ways hackers may try to gain access to our systems, and we continuously devise ways to stop them. Therefore, our cyber terrorism defense program will overpass the performance standards to remain strong, we will continue to evolve our cyber terrorist defense program to reflect changes in technology, changes to business processes, and changes in the complexity of internal or external threats. Continued investments in cyber terrorism projects and initiatives will ensure we have the resources needed to accomplish our agency’s mission and thus maintain public confidence in the agency’s ability to protect their

Despite deploying various types of security technologies, organizations continue to experience multiple challenges in responding to cyber threats. One major problem is the inability of antivirus and network perimeter in preventing threats. In addition to that, IT security personnel are receiving too many incident events to review in which many are false positives (i.e. is an error in some evaluation process in which a condition tested for is mistakenly found to have been detected). Furthermore, as stated earlier, the shortage of skilled IT personnel to respond fast enough to these incidents is causing the problem to be

Organizational structure plays an important role in the implementation of different types of strategies including cybersecurity. This is because the structure of an organization establishes a clear understanding of the processes required to achieve a given strategy. Organizational structure describes an entity’s internal pattern of communication, authority and relationships. It clearly outlines the manner in which power and authority within an organization is granted and shared as well as the role that different members of an organization should play. Organization structures often vary from one organization to another. This variation often depends on the size of the business, the industry within which the company is operating in to mention but a few. This means that the cybersecurity functions and mandate often vary from one organization to another. Implementation of cybersecurity is likely to be successful in organizations whose structure is formal and well-defined as opposed to those with an informal structure. Within a formal organizational structure, the roles and responsibilities of organizational leaders and other members of the organizations are usually well articulated. A formal

This document reviews the over ability of the recommend product to execute our clients unique need for a Security Information and Event Monitoring solution (SIEM). The information provided comes from research of the vendor’s website, the industry leading analyses and customers review. The review is broken-down the features, capabilities, and deficiencies for the selected SIEM solution. The solution’s overall cybersecurity objects will be analyzed and compared to the needs of our client.

Security monitoring is an important factor in keeping any organization network safe as various attacks are on a rise. A company constantly must practice monitory techniques to keep their data safe. " The first step is to scan the internal and external environment and identify information technology risks before they become a problem. The key is to be proactive rather than reactive" (Marilyn Greenstein). Different organization consist of many applications that require a certain level of security measures and risk assessment. To determine the associated risks within an organization each application

Maintaining a continual security posture is critical to staying ahead of the vulnerabilities. With the number of new attacks constantly on the rise even the most seasoned IT security staff can overlook a vulnerability. To assist your staff in reviewing the security of your infrastructure a vulnerability assessment is a valuable tool. There are many free and licenses software packages such as Nessus and Metasploit which can be loaded onto a workstation and left to run. These packages run through a library of known vectors of attack against your network equipment and servers. You are then presented a report showing a list of attack successes and suggested mitigation steps. Such software should be run on a monthly, or even weekly, basis by your internal staff against your critical infrastructure.