Instruction: This is a group assessment.
Task: CMP73001 Cyber Security Management Assessment
Description: You are hired by MyHealth Company as a cybersecurity consultant to help in security management and to address the contemporary and emerging risks from the cyber threats the company is facing. The mission of MyHealth Company is providing quality health care services to its patients. In addition, MyHealth Company is involved in clinical practice, education, and cancer-related research. The company is a new company which is growing quickly. While the company uses its database server to store the information of its patients’ medical history. Therefore, they have hired you to do the following task:
Vulnerability assessment and Business Impact Analysis exercise: 1. Perform vulnerability assessment and testing to assess a fictional business information system.
Existing IT infrastructure of MyHealth Company:
- E-mail server
- Web server providing web services and payment options
- A physical database server storing patients’ information and research data
- DHCP and DNS servers
- Servers located in a server room accessible by all staff
- There is no virtual/cloud storage
- The backup files are stored in a single computer connected to the internal network
- Two 24-port Cisco Catalyst switches (1Gbps ports)
- Switches are layer-two switches
- ADSL router
- 40 PCs with outdated antivirus
For this assignment, you need to write a report to the CEO of the company, and answer a number of questions and perform business impact analysis. In addition, you should propose the required testing methods.
ORDER This CMP73001 Cyber Security Management Assignment NOW And Get Instant Discount
This assignment has a number of group questions. Therefore, you should make groups with a maximum of three members in each. In each question, there are three roles, and each team member should choose one role and answer its question. It is the group decision to decide about the roles. Students need to submit all answers from their team, and they should mention the name of the student who answered each question.
Guideline: CMP73001 Cyber Security Management Assessment
Vulnerability assessment and Business Impact Analysis exercise: perform vulnerability assessment and testing to assess a fictional business information system. Perform BIA in the given scenario. Communicate the result to the management.
Task 1: Penetration testing Individual:
a) What is the purpose of cybersecurity penetration testing and how it can help to mitigate security risks against the company assets?
b) Explain the Reconnaissance phase of penetration testing. Do some research and propose three resources which can be used to collect information in Reconnaissance.
Task 2: Managing personnel security
1. Social engineering is a security attack which is easy to perform. Due to the low level of employee awareness of IT and cybersecurity, it is important to find efficient methods to mitigate the risk of social engineering attacks. For this question, you should explain three common methods to perform social engineering attacks in penetration testing. How can you mitigate this risk?
ORDER This CMP73001 Cyber Security Management Assignment NOW And Get Instant Discount
Get COIT20249 Cybersecurity Use Assignment written by experts.