Executive Summary

This report provides a list of computers in use by various departments within the organization as well as
their operating systems, last system update, computer name, and last login information.

Scan Results
Operating System:

Windows Server 2012 (x9)

Windows Server 2019 (x7)

CentOS (x2)

Windows XP (x1)

Last System Update: 06/07/2021 (for all computers)

Computer Names:

WINSRV28BL2 (x2)

WinServ2012BudgetDept

WIN_SENSITIVE_CEO001

XPAccountingDeptMaster

CENTOSSRVMRK128

SQLSRVSENSITIVE001

WINSRV28BL3

WINSRV28BL4

WINSRV28BL5

WINSRV28BL6

WINSRV28BL7

WINSRV28BL8

WINSRV28BL9
WINSRV28BL10

WINSRV28BL11

WINSRV28BL12

WINSRV28BL13

WINSRV28BL14

WINSRV28BL15

WINSRV28BL16

WINSRV28BL17

WINSRV28BL18

WINSRV28BL19

WINSRV28BL20

WINSRV28BL21

WINSRV28BL22

WINSRV28BL23

WINSRV28BL24

WINSRV28BL25

Last Login: 06/07/2021 (for all computers)

Department:

Operations (x3)

Master Accounting Dept

Front end Web Server

Company Finances

Proxy (x2)

Accounting Depts (x2)

Logistics (x3)

Maintenance Dept (x2)

Marketing (x2)

HR

Findings (2-3 sentences)

There are various operating systems being used in this organization, including Windows Server 2012,
Windows Server 2019, Windows XP, and CentOS.

The majority of the servers have been updated as of June 7, 2021, and most of them were also logged in
on the same day.

The Windows XP machine, XPAccountingDeptMaster, has not been updated since July 20, 2013. This
could be a security risk and needs to be addressed immediately.

Remediation (2-3 sentences)

Based on the provided report, my overall recommendation would be to update all outdated operating
systems, including Windows XP, as it is no longer supported by Microsoft and poses a significant security
risk to the company's data.

Additionally, the company should review and update their login policy to ensure that all employees are
logging in regularly, as some computers in the report have not been logged into since the last system
update.

The company should also review their departmental access to sensitive servers, such as
"WIN_SENSITIVE_CEO001" and "SQLSRVSENSITIVE001", to ensure that only authorized personnel have
access.

It would also be wise for the company to conduct a thorough security audit to identify any potential
vulnerabilities in their systems and take appropriate measures to mitigate them.

Lastly, the company should establish a regular maintenance schedule to ensure that all systems are up-
to-date and functioning correctly.