Vulnerability Assessment ( Va )

It was the spring of 2011, and I was sitting behind my desk along with my colleagues in the Communications Security section of the 1st Information Operations Battalion’s Vulnerability Assessment Detachment. Our section NCOIC had just been relieved of duty for violating several Army regulations and security protocols while an individual augmentee deployed to Afghanistan, representing our organization within a special operations Task Force. While his conduct had nothing to do with the mission nor our section, his abject failure to display any integrity or adhere to the Army Values reflected very poorly on our unit and cast our office in a particularly unflattering light...not to mention the additional scrutiny from our chain of command.

Weaknesses are a symptom that is prevalent in today’s information technology realm, indicating vulnerabilities and risks that come hand and hand with shared networks like Aircraft Solutions. With enterprises exchanging an unprecedented level of information over open networks, the vulnerabilities and possibility of compromised security by unwanted intruders is swelling up into a new type of beast.

Companies should develop a control that requires that routine vulnerability assessment of their customer facing web sites, network infrastructure, and associated systems (such as database systems). Vulnerability assessment can help identify potential weaknesses to systems and also provide a sort of feedback to the organization’s IT department on their current operational policy and security posture. The cost of performing a routine vulnerability assessment is considerably less than that of an actual data breach.

IS355_BestW5Assignment Lab #6 – Report file Developing a Risk – Mitigation Plan Outline for an IT Infrastructure Course Name and Number: Risk Management IS355 Student Name: Sherry Best Instructor Name: Nicole Goodyear Lab Due Date: 2/13/2018 Risks, Threats, and Vulnerabilities Primary Domain Impacted Risk Impact/ Factor Unauthorized access from public Internet Remote Access Domain 1 User destroys data in application and deletes all files Systems/Application Domain 3

You will discover different network topologies and different types of networks: LANs, WANs, and internetworks (internets). The concept of switching is discussed to show how small networks can be combined to create larger ones. You will learn about the Internet: its early history, the birth of the Internet, and the issues related to the Internet today. This module covers standards and standards organizations.

* Identify risks, threats, and vulnerabilities in the 7 domains of a typical IT infrastructure

A vulnerability assessment is a risk testing process which finds, quantity and rank possible vulnerabilities to threats in as many security defects as possible in a given timeframe. Depend upon organization scope there are many way to conduct vulnerability assessment. This assessment may involve automated and manual techniques.

9. Which domains need software vulnerability assessments to mitigate risk from software vulnerabilities? The end point or workstation.

9. When assessing the risk impact a threat or vulnerability has on your application and infrastructure, why must you align this assessment with both a server and application software vulnerability assessment and remediation plan? Because they may coincide with each other which

1. Understand how risk from threats and software vulnerabilities impacts the seven domains of a typical IT infrastructure

In today’s society, it is commonplace for one to be electronically “connected”, by using devices like computers, mobile smartphones, gaming devices, tablets or laptops. Typically there is some type of network, which enables us to be connected, such as a Wide Area Network (WAN), a Local Area Network (LAN) or even a Home Area Network (HAN). A WAN is the most expansive type of network commonly used, which can cover large geographical areas, usually by amalgamating multiple LANs. The most frequently used WAN is the internet, which many of us connect to daily. A smaller type of network is a LAN, most often used in the workplace to connect computers and devices in the same office or building, so users can collaborate and efficiently share resources.

Application of context to scan results – to determine which infrastructure vulnerabilities should be targeted first and most aggressively.

Since the rapid increase of use of Internet, computer network technology has rapid growth. Now a day’s internet is used in almost every fields like governments, business and health care and schools etc. made the rapid development of the computer network technology.

In present scenario every company has an objective, in this digital era, companies uses automated information technology system to process their information for better support. Risk assessment and management plays an important role in protecting company’s information assets, and therefore its objectives. An effective risk assessment process is a significant factor of a successful IT security program. The major goal of a company’s risk assessment process should be to protect the companies and its abilities to perform their objectives.

Wide Area Networks constitute the next stage of MANs; interconnections between computer networks have no geographical limit and can extend to cities, prefectures, countries and the whole world. Through the usage of a wide