Scribd Logo
Upload

Welcome to Scribd!

  • Iaa202 Lab 04 Iam302

    Uploaded by

    Nguyen Tuan Cuong QP3044
    2 views9 pages

    Original Title

    iaa202-lab-04-iam302

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    2 views9 pages

    Iaa202 Lab 04 Iam302

    Uploaded by

    Nguyen Tuan Cuong QP3044

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    lOMoARcPSD|28693211

    IAA202 - LAB 04 - IAM302

    Malware Analysis and Reverse Engineering (Trường Đại học FPT)

    Scan to open on Studocu

    Studocu is not sponsored or endorsed by any college or university


    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)
    lOMoARcPSD|28693211

    Lab #4: Assessment Worksheet


    Part A – Perform a Qualitative Risk Assessment for an IT
    Infrastructure
    Part A – Perform a Qualitative Risk Assessment for an IT
    Infrastructure
    Part A – Perform a Qualitative Risk Assessment for an IT
    Infrastructure

    Course Name: IAA202


    Student Name: Ngô Hiến Hào
    Instructor Name: DINHMH
    Lab Due Date: 4/2/2023

    Overview
    The following risks, threats, and vulnerabilities were found in an IT
    infrastructure. Your instructor will assign you one of the four different
    scenarios and vertical industries each of which is under a unique
    compliance law.

    1. Scenario/Vertical Industry:
    a. Healthcare provider under HIPPA compliance law
    b. Regional bank under GLBA compliance law
    c. Nationwide retailer under PCI DSS standard requirements
    d. Higher-education institution under FERPA compliance law
    2. Given the list, perform a qualitative risk assessment by assigning a
    risk impact/risk factor to each of identified risks, threats, and

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

    vulnerabilities throughout the seven domains of a typical IT


    infrastructure that the risk, threat, or vulnerability resides.

    Risk – Threat - Primary Domain Risk


    Vulnerability Impacted Impact/Factor
    Unauthorized access LAN-to-WAN Critical
    from public Internet
    User destroys data in Systems/Application Critical
    application and deletes
    all files
    Hacker penetrates your LAN-to-WAN Critical
    IT infrastructure and
    gains access to your
    internal network
    Intra-office employee User Minor
    romance gone bad
    Fire destroys primary Systems/Application Major
    data center
    Service provider SLA is WAN Minor
    not achieved
    Workstation OS has a Workstation Major
    known software
    vulnerability
    Unauthorized access to Workstation Major
    organization owned
    Workstations
    Loss of production data Systems/Application Minor

    Denial of service attack LAN-to-WAN Major


    on organization DMZ
    and e-mail server

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

    Remote communications Remote access Major


    from home office
    LAN server OS has a LAN Critical
    known software
    vulnerability
    User downloads and User Critical
    clicks on an unknown
    Workstation browser has Workstation Major
    software vulnerability

    Mobile employee needs User Minor


    secure browser access to
    sales order entry system
    Service provider has a WAN Minor
    major network outage

    Weak ingress/egress LAN-to-WAN Minor


    traffic filtering degrades
    Performance
    User inserts CDs and User Minor
    USB hard drives with
    personal photos, music,
    and videos on
    organization owned
    computers
    VPN tunneling between Remote Access Major
    remote

    3. For each of the identified risks, threats, and vulnerabilities, prioritize


    them by listing a “1”, “2” and “3” next to each risk, threat, vulnerability
    found within each of the seven domains of a typical IT infrastructure.
    “1” = Critical, “2” = Major, “3” = Minor. Define the following
    qualitative risk impact/risk factor metrics:

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

     “1” Critical – a risk, threat, or vulnerability that impacts


    compliance (i.e., privacy law requirement for securing privacy
    data and implementing proper security controls, etc.) and
    places the organization in a position of increased liability.
     “2” Major – a risk, threat, or vulnerability that impacts the C-
    I-A of an organization’s intellectual property assets and IT
    infrastructure.

     “3” Minor – a risk, threat, or vulnerability that can impact


    user or employee productivity or availability of the IT
    infrastructure.

    User Domain Risk Impacts: 1, 2, 3


    Workstation Domain Risk Impacts: 2, 3
    LAN Domain Risk Impacts: 1, 2
    LAN-to-WAN Domain Risk Impacts: 1, 2, 3
    WAN Domain Risk Impacts: 2, 3
    Remote Access Domain Risk Impacts: 2, 3
    Systems/Applications Domain Risk Impacts: 1, 2

    4. Craft an executive summary for management using the following 4-


    paragraph format. The executive summary must address the following
    topics:
     Paragraph #1: Summary of findings: risks, threats, and
    vulnerabilities found throughout the seven domains of a typical IT
    infrastructure.

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

     Paragraph #2: Approach and prioritization of critical, major, minor


    risk assessment elements

     Paragraph #3: Risk assessment and risk impact summary to the


    seven domains of a typical IT infrastructure

     Paragraph #4: Recommendations and next steps for executive


    management

    Overview
    Answer the following Lab #4 – Assessment Worksheet questions
    pertaining to your qualitative IT risk assessment you performed.

    Lab Assessment Questions


    1. What is the goal or objective of an IT risk assessment?
    To mitigate risks to prevent security incidents and to define how the risk will be
    managed, controlled, and monitored.
    2. Why is it difficult to conduct a qualitative risk assessment for an IT
    infrastructure?
    Because a qualitative assessment is based on opinion than actual fact, and IT risk
    assessments need to be based on a quantitative analysis.
    3. What was your rationale in assigning “1” risk impact/ risk factor
    value of “Critical” for an identified risk, threat, or vulnerability?
    The critical needs to be mitigated immediately.
    4. When you assembled all of the “1” and “2” and “3” risk impact/risk
    factor values to the identified risks, threats, and vulnerabilities, how
    did you prioritize the “1”, “2”, and “3” risk elements? What would

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

    you say to executive management in regard to your final


    recommended prioritization?
    The risk impact/risk factor which is “1” or “2” need to be mitigated immediately,
    “3” can be mitigated after “1” and “2” have done.
    5. Identify a risk mitigation solution for each of the following risk
    factors: User downloads and clicks on an unknown e-mail
    attachment.
    Restrict user access and set it up that a user has to get authorization for downloads.
    6. Workstation OS has a known software vulnerability
    Patch or update software
    7. Need to prevent eavesdropping on WLAN due to customer privacy
    data access
    Increase WLAN security using WPA2 and AES encryption
    8. Weak ingress/egress traffic filtering degrades performance
    Strengthen firewall filtering
    9. DoS/DDoS attack from the WAN/Internet.
    Strengthen firewall security, install IPS and IDS system to the infrastructure
    10. Remote access from home office
    Make sure the VPN is in place and secure
    11. Production server corrupts database
    Remote server

    Infrastructure

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)


    lOMoARcPSD|28693211

    Infrastructure
    Infrastructure
    Overview
    The following risks,
    threats, and
    vulnerabilities
    were found in an IT
    infrastructure. Your
    instructor will
    assign you one of
    four different
    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)
    lOMoARcPSD|28693211

    scenarios and
    vertical industries
    each of which is
    under a unique
    compliance law.

    Downloaded by Nguyen Tuan Cuong K17-HL (cuongnthe171301@fpt.edu.vn)

    You might also like