Course Learning Outcomes:
a) Analyze and evaluate the organizational adoption of security controls
b) Design solutions for concrete security problems for distributed applications
c) Formulate and evaluate security countermeasures to reduce potential security risks
d) Analyze emerging security threats and controls.
Assignment Details:
Assignment 1:
Assignment type: Practical and Written Assessment, Individual assignment (1,000 words).
Purpose: The purpose of this assignment is to assess student understanding on firewall design and configuration and students ability to exercise the operational, analytical and critical skills needed to reduce the potential security risks. This assessment contributes to learning outcomes a, b.
Assignment topic: Firewall Setup and Configuration
Task Details: This Assignment requires you to perform a security testing on the network to identify the threats, prepare a Risk Mitigation report and configure some of the firewall settings using Kali Linux to secure the network and the distributed applications. The assignment consists of two parts.
Part A:
Use Nmap - a security testing in Kali Linux to perform penetration testing on the network (features of Nmap listed below). Prepare a short Risk Mitigation plan to identify the threats for the assets. This plan will guide you to proceed with the firewall settings required for the organization as you focus on the second part of the assignment.
Features of Nmap:
o Host discovery: useful for identifying hosts in any network
o Port scanning: lets you enumerate open ports on the local or remote host
o OS detection: useful for fetching operating system and hardware information about any connected device
o App version detection: allows you to determine application name and version number
o Scriptable interaction: extends Nmap default capabilities by using Nmap Scripting Engine (NSE) Part B:
Configure a few settings on the firewall for the network using Kali Linux commands to achieve a required level of security. The initial set of commands are given to you to start with. You may need to perform online search to complete the rest of the requirements for the firewall settings.
Case Study for the Assignment:
Carpathian Corporation has grown and needs increased security and additional capacity in the form of a new firewall. If the Carpathian Corporation wants to continue with its proposed plan for self-hosting, it needs to consider the security-related issues. It is taking the right steps by asking what security ramifications should be addressed prior to making the purchase. The Carpathian IT staff needs to take a good look at the risk factors involved with providing for its own Internet services (web servers) and where the pitfalls might occur: Security policies provide information for network users for using and auditing the network. Firewall is considered to be a part of the security policy providing necessary protection to the network and the applications.
You have been hired as the Chief Security Officer of Carpathian Corporation and its top management urges you to design the required firewall for the organization's network. Looking into the requirements of the security and adhering to information security policy you are required to provide firewall settings to secure the network from different types of possible attacks that can harm the business network.
Part A: Perform the following task.
1. Use Nmap from Kali on your Virtual Box
2. Write an introduction to include the description of the tool
3. Demonstrate four tasks Nmap can perform with respect to host scanning, domain and port scanning. The discussion should include the name and brief description of the threat and must be supported by screenshots.
4. From the report generated from the above tasks write a short Risk Mitigation Plan to identity the type of threats on the organisation's assets.
Part B: Configure the following setting on the firewall using the appropriate commands in Kali Linux.
The list of commands is provided below:
|
Command
|
Description
|
|
Ufw status
|
To check firewall status
|
|
Ufw enable
|
Enable firewall
|
|
Ufw allow
|
Allow services, port range and network
|
|
Ufw deny
|
Blocking a service
|
1. Check the firewall status
2. Enable or disable the firewall accordingly
3. Allow services such as TCP, SSH and samba using their port number or name
4. Verify the firewall rules after adding the above services
5. Enable the appropriate ports for the secure web server applications on a network
6. Execute commands for allowing and denying a range of ports
7. Verify the firewall rules
8. Allow HTTP from a specific subnet to access your web services
Assignment 2:
Purpose: The purpose of this assessment is to demonstrate student awareness of current industry and research trends in the field of information security. Analyze and evaluate the organizational adoption of security controls. Design solutions for concrete security problems for distributed applications. This assessment contributes to learning outcomes c, d.
Assignment topic: Security Plan and Training Program
Task Details: This assignment requires you to design a security plan based on a given case study. The learning outcomes of this assignment are to recognize the threats that exist in your current or future work place. Through your research, identify the threats, outline security guidelines and develop a robust and pragmatic training programme. You should develop a plan that you would regard as helpful to you, the information user, as well as protecting your organization's information environment. Use your imagination in combination with a wide-range of material. You are required to complete and submit a security plan based on the following scenario:
Case Study Scenario:
The director of Cyber Café was concerned of the information assurance and network security concerns. The director was concerned that a virus or other forms of cyber-attack could cause extended downtime, which would have a negative impact on morale and productivity. It turned out, there were threats received via email. Law enforcement agencies were notified and the source of the emails was tracked back to one of the Cyber Café Locations. The Law enforcement agencies shut down the Cyber Cafés for 2 days during the investigation. Due to the non-existence of security policies at the Cyber Café, it could not be determined who specifically sent the email. This incident did get the attention of upper management, which made getting approval for most of the recommendations much easier.
There are actually 3 locations that fall under the Cyber Café umbrella. The primary location, known as ECC, consists of 30 workstations and is open 24 hours a day. The second location is inside a food service outlet known as CPC. This location consists of 10 workstations and is open from 1100-2200 daily. The third location is in the library. This location consists of 2 workstations and the hours vary. The Cyber Cafés are located in a very remote location. The nearest computer/electronics store is 7 hours away. Nearly 100% of the local population is either a company employee or works for a contractor supporting company operations. There is a small telephone company that services the area and provides ISP services. The charge for Dial-up Internet access is $.05 per minute. Long Distance phone calls start at $.50 per minute; due to the remote location all extra-company calls are long distance. The Cyber Café offers free Internet access and is the main form of communication between the employees and their friends and family. The availability of these Cyber Cafés has a direct impact on morale and employee productivity.
a) Identify few employees of the organization and conduct interviews to gather information on the major complaints
b) Identify what are the organizational holdings at risk
c) Apart from the threats that has been recognized by the employees develop a list of other possible threats
d) Design a security plan with the details of necessary counter-measures to manage and address the threats
e) Develop a comprehensive information security training and awareness program for the staff personnel of the organization.
We encompass an enthusiastic panel of professional Cyber Security Assignment Help tutors, who are highly qualified and have years of industry experience in the relevant field and are capable to write on any topic of any complexity level.
Tags: Cyber Security Assignment Help, Cyber Security Homework Help, Cyber Security Coursework, Cyber Security Solved Assignments
Attachment:- Cyber Security.rar