Premium Essay

Csec Individual Assignment

In:

Submitted By Arast
Words 2784
Pages 12
CSEC 610, University of Maryland University College
July 12, 2014

Cybersecurity Vulnerabilities Facing IT Managers

Cybersecurity Vulnerabilities Facing IT Managers
Table of Contents
Introduction ………………………………………………………………………………………………………………… 3
Types of Vulnerabilities ………………………………………………………………………………………………. 5
Important Vulnerability, Impact & Solutions ……………………………………………………………….. 8
References …………………………………………………………………………………………………………………… 12

Cyber-security demands are ever increasing in the field of Information Technology with the globalization of the internet. Disruptions due to cyber-attacks are affecting the economy, costing companies billions of dollars each year in lost revenue. To counter this problem corporations are spending more and more on infrastructure and investing to secure the cyber security vulnerabilities which range anywhere from software to hardware to networks and people that use them. Due to the complexity of information systems that interact with each other and their counter parts, the requirement to meet specific cyber security compliances have become a challenging issues for security professionals worldwide. To help with these issues, security professionals have created different standards and frameworks over the years for addressing this growing concern of vulnerabilities within enterprise systems and the critical information they hold (“Critical Security Controls,” n.d.).
Before we get into the details let first examine what exactly is a security vulnerability. By definition a security vulnerability can be flaws in hardware, software, networks or the employees that use them which in turn can allow hackers to compromise the confidentiality, integrity and availability of the information system (“Common Cybersecurity,” 2011). To thoroughly discuss this topic in more detail I will first discuss Confidentiality as it is one

Similar Documents

Free Essay

Csec 620 Individual Assignment 2

...Estonia Banks Targeted University of Maryland University College CSEC 620 Individual assignment # 2 Table of Contents Introduction …………………………………………………………………………………………………………. 3 Estonia under attack……………………………………………………………………………………………….. 4 Types of attacks ……………………………………………………………………………………………………… 5 Threats actors and their motives ……………………………………………………………………………. 6 Who were responsible for the attacks ……………………………………………………………………. 7 Strategic Shifts in Response to attacks ……………………………………………………………………. 8 Conclusions ……………………………………………………………………………………………………………. 10 Introduction The Baltic state of Estonia was attacked by hackers in April of 2007. Scores of government and private sector website were shut down. Estonian’s daily activities, such as pumping gas or making withdrawals from ATM machines were severely impacted. The architecture of the Internet allowed networks of bots, called botnets, to direct millions of packets to the servers of the Estonian targets, overloading and rendering them inaccessible to visitors. Digital traffic from servers ranging all the way to Peru, Vietnam and the United States overwhelmed Estonian websites, overloading their buffers with superfluous data. At the apex of this DDoS flooding, government websites that had been receiving 1,000 visits each day were suddenly inundated with 2,000 per second (Crouch, Pg 1). No overt financial motivations were discovered as the driver of these attacks, with the principal motivation being political...

Words: 2634 - Pages: 11

Free Essay

Csec 620 Individual Assignment 1

...IA#1 Cybercrime Law, Regulation, Effects on Innovation John Doe CSEC 620 Section 9022 Note: This paper was submitted through originality check websites. Table of Contents 1. Introduction 3 2. Private Industry & Regulations 4 3. National Security Concerns 4 4. Methods 6 5. Impacts of Government Regulation 7 6. Compliance 8 7. Responsibility 9 8. The Real World 10 9. Conclusion 11 References 12 1. Introduction Cybersecurity and cybersecurity initiatives are commonplace in all aspects of our digital lives. Personal computers are still widely used, especially in the workplace, but mobile devices seem to be the preferred computing choice of the average person. This would include but not be limited to; smart phones, tablets, and laptops to name a few. Mobile devices have changed the digital landscape in a manner that could not have been predicted. This is because other than work or school related activities, most personal computers were used to play a few games, check email, and browse the internet. These activities eventually transitioned over to the aforementioned mobile devices. Now we mix in social media, and a whole new digital cyber-world has emerged. Talk about getting your head out of the clouds. We live in the cloud, literally and figuratively. What does this mean to the average consumer? Perhaps not much. Most people who operate in the digital world could probably care less about the underpinnings of cyberspace and...

Words: 2894 - Pages: 12

Premium Essay

Csec 650 Individual Assignment 2

...IA2: Business Continuity Plan for Information Technology CSEC 650 University of Maryland University College Abstract Business contingency and continuity of operations plan are vital to business, especially those reliant on digital media. Whether through nature events or the more likely interruption of computer systems and networks, a disruption of any type is a serious business concern. A disruption can harm operational revenue, services, supply-chain, and reputation. Any of the preceding effects from a disruption could possibly be severe enough to mean the end of business as a going concern. To avoid severe or long term damaging disruption, a comprehensive contingency plan can provide a guide for how resources and personnel will be allocated in the event of a crisis. Keywords: Business Continuity Plan (BCP), Information Technology, contingency plan Table of Contents Business Continuity Plans 4 Planning Steps 5 Business Impact Analysis 6 Recovery Strategies 8 Data Backup 10 IT Personnel Training 10 Alternate Site 11 Contingency Plan Development 12 Training and Testing 13 Recommended Training and Testing 14 Test Schedule 15 Summation 17 References 18 Business Continuity Plans Greater numbers of businesses now must consider the protection of their computer information systems as a vital aspect of their operations. Even as organizations became ever more reliant on computer systems over the past several decades, information technology (IT) contingency planning was not...

Words: 4274 - Pages: 18

Premium Essay

Csec 630 Lab 1

...Lab Assignment #1: Introduction to Encryption Algorithms CSEC 630 University of Maryland University College Professor Jingyu Zhang 1. Which tool or technique would be most effective for a cryptanalyst to use to decipher a text encrypted with the Caesar cipher, and why? The best analysis tool to break the Caesar cipher is histogram because it performs a statistical analysis on cipher text which shows the frequency of each letter used in the file. This can later be compared and matched to the frequency of letters in the English language. 2. What do you notice about the histogram results when text is encrypted with the Vigenère cipher in comparison to the results of the Caesar cipher? Why is this the case? Histogram simply gives the frequency of each individual letter in cipher text without taking the plaintext into consideration. Since in Caesar cipher the relationship between plaintext and cipher text is one to one, histogram is more efficient to break the cipher. Since the key in vigenere is somewhat random the histogram shown below seems random as well. 3. There is an error in the following cipher text representation of this quote, what is it? The original unencrypted message is: TH ED IF FE RE NC EB ET WE EN ST UP ID IT YA ND GE NI US IS TH AT GE NI US HA SI TS LI MI TS The original encrypted message is: THE CORRECT CIPHERTEXT SD AH FO HL AR ST RE AS YL BS CI MQ TF NI VE TG HB SN QC NC SD TD HB SN QC DE CN IC IF OT IC This is the error example: SD...

Words: 1083 - Pages: 5

Free Essay

Csec 610 Lab One

...1) Explain the two different types of attacks that can be performed in Cain and Abel to crack user account passwords. Which do you think is the most effective and why? For the assignment we utilized Cain & Abel password recovery tool for Microsoft Operating Systems. For this lab assignment we utilized Brute Force NT LAN Manager (NTUM) and LAN Manager (LM) and Dictionary NTLM and LM hashes. (Features overview, n.d.) Brute Force is a password cracking -technique that tries every combination of numeric, alphanumeric, and special characters until the password is broken or the user is locked out. Dictionary is a technique that runs a given password against each of the words in a dictionary (file of words) until a match is found or the end of the dictionary is reached. (p. 13) Cain and Abel couples Brute Force and Dictionary with LM and NTLM hash. Based on my lab experience, my assessment is that the Dictionary NTLM Manager is the better of the processes. The table below reveals that Dictionary NTLM delivered more favorable results over LM because this process uncovered the passwords in the shortest amount of time and recovered the passwords in their entirety. Table | Brute Force LM | Brute Force NTLM | Dictionary LM | Dictionary NTLM | User1 | No password, 6-8 hours | No password, estimated time 10 years | yes, 75 seconds | yes, 40 | User2 | No password, 6-8 hours | No password, estimated time 10 years | yes, 30 | yes, 25 | User3 | No password, 6-8 hours...

Words: 971 - Pages: 4

Premium Essay

The Attributes of Employee in the Marketing Department of Lasco Company

...CXC CSEC Caribbean Secondary Examination Council Office Administration “ AN INVESTIGATION OF THE ATTRIBUTES OF EMPLOYEES IN THE MARKETING DEPARTMENT AT THE LASCO COMPANY CANDIDATE NAME: ROMARIO TULLOCH SCHOOL/CENTRE: EXCELSIOR HIGH SCHOOL CENTRE NUMBER:100033 TEACHER:MR .HOLNESS TERRITORY: JAMAICA YEAR: 2015 AIMS * To access the level of work ethics at the Lasco Company * To find out the impact the attributes of the workers have on the department * To determine the effect that the attributes have on teamwork in the department FUNCTION OF THE MARKETING DEPARTMENT 1. One of the key activities for a Marketing Department is to integrate an organization’s goals, strengths, channels of distribution, competitive environment, target markets, pricing, core messages, and products into one cohesive document known as the Marketing Strategy. 2. Establishing and communicating messages to the marketplace costs money. Therefore, Marketing Departments should be responsible for estimating the anticipated expenditures associated with marketing activities. Once set, Marketers should be held responsible for meeting all budget projectionrt55ts. ...

Words: 936 - Pages: 4

Free Essay

Religious Education

...their right to be identified as the author of this work in accordance with the Copyright, Design and Patents Act 1988. First published 2014 This revised version published 2015 Permission to copy The material in this book is copyright. However, the publisher grants permission for copies to be made without fee. Individuals may make copies for their own use or for use by classes of which they are in charge; institutions may make copies for use within and by the staff and students of that institution. For copying in any other circumstances, prior permission in writing must be obtained from Macmillan Publishers Limited. Under no circumstances may the material in this book be used, in part or in its entirety, for commercial gain. It must not be sold in any format. Designed by Macmillan Publishers Limited Cover design by Macmillan Publishers Limited and Red Giraffe CSEC Biology Free Resources LIST OF CONTENTS CSEC Biology Syllabus Extract 3 CSEC Biology Syllabus 4 CSEC Biology Specimen Papers: Paper 01 Paper 02 Paper 032 89 104 125 CSEC Biology Mark Schemes for Specimen Papers: Paper 01 Paper 02 Paper 032 136 137 149 CSEC Biology Subject Reports: 2004 January Subject Report 2004 June Subject Report 2005 January Subject Report 2006 January Subject Report 2007 January Subject Report 2007 May/June Subject Report 2008 January...

Words: 29406 - Pages: 118

Premium Essay

Emerging Cybersecurity Policies in the Federal Government

...Emerging Cybersecurity Policies in the Federal Government Information Assurance Officer and Risk Management Analyst Department of Defense. Emerging Cybersecurity Policies in the Federal Government Information Assurance Officer and Risk Management Analyst Department of Defense. CSEC 655 UMUC Individual Assignment 1 September 16, 2014 CSEC 655 UMUC Individual Assignment 1 September 16, 2014 Table of Contents Emerging Cybersecurity Policies in the Federal Government 3 Emerging Policies and Practices 4 Defense in Depth (DID) 5 Security Risk Frameworks 6 Test Driven Development 8 Business Service Frameworks 9 Acceptance and Preparation for Failure 11 The Federal Government and these Emerging Policies and Practices 13 The Feds and Defense in Depth 14 The Feds and Security Risk Frameworks 14 The Feds and Test Driven Development 16 The Feds and Business Service Frameworks 17 The Feds and Acceptance and Preparation for Failure 19 How could the Feds continue to improve 20 References 22 Emerging Cybersecurity Policies in the Federal Government One of the largest and most important enterprises there is to protect in the cyber security realm are the various networks that make up the federal government. This massive undertaking to secure the systems, networks, and data of the various governmental agencies is a never ending uphill battle. The requirements of the federal government enterprise to be globally far reaching, as well...

Words: 6354 - Pages: 26

Free Essay

Christainty

...CARIBBEAN EXAMINATIONS COUNCIL Caribbean Secondary Education Certificate CSEC ® PRINCIPLES OF BUSINESS SYLLABUS Effective for examinations from May/June 2008 Including 2009 amendments CXC 08/G/SYLL 06 Published by the Caribbean Examinations Council. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold Road, Kingston 5, Jamaica, W.I. Telephone: (876) 630-5200 Facsimile Number: (876) 967-4972 E-mail address: cxcwzo@cxc.org Website: www.cxc.org Copyright © 2006, by Caribbean Examinations Council The Garrison, St Michael BB14038, Barbados CXC 08/G/SYLL 06 2 Contents RATIONALE...........................................................................................................................................................1 AIMS ........................................................................................................................................................................1 GENERAL OBJECTIVES ......................................................................................................................................2 SKILLS AND ABILLITIES TO BE ASSESSED ........................

Words: 8268 - Pages: 34

Premium Essay

Yaow

...CARIBBEAN EXAMINATIONS COUNCIL Caribbean Secondary Education Certificate CSEC® RELIGIOUS EDUCATION SYLLABUS Effective for examinations from May/June 2012 CXC 28/G/SYLL 09 Published by the Caribbean Examinations Council © 2010, Caribbean Examinations Council All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold Road, Kingston 5, Jamaica, W.I. Telephone: (876) 630-5200 Facsimile Number: (876) 967-4972 E-mail address: cxcwzo@cxc.org Website: www.cxc.org Copyright © 2009, by Caribbean Examinations Council The Garrison, St Michael BB14038, Barbados CXC 28/G/SYLL 09 Contents RATIONALE ................................................................................................................................... 1 AIMS ................................................................................................................................................ 1 CRITERIA FOR CONTENT SELECTION .................................................................................... 2 ORGANISATION OF THE SYLLABUS ....................................................................................... 2 APPROACHES TO TEACHING THE SYLLABUS .......

Words: 35087 - Pages: 141

Premium Essay

Cxc-Sba

...of festivals in Christianity. However my focus is on the following festivals: 1. Christmas 2. Easter 3. Lent 4. Good Friday Aim of Research The researchers hope to find out: 1. The different festival in Christianity 2. The importance of these festival in Christianity Research Topic The Types of Festival in Christianity Method of Collection This research was done between the months of September through to December 2010. The instruments the researcher used to collect these data are: literature, pen, paper, and computer. The researcher used the Spanish town library to complete this data. CXC 28/G/SYLL 09 CARIBBEAN EXAMINATIONS COUNCIL Caribbean Secondary Education Certificate CSEC® RELIGIOUS EDUCATION SYLLABUS Effective for examinations from May/June 2012 Published by the Caribbean Examinations Council © 2010, Caribbean Examinations Council All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold...

Words: 35172 - Pages: 141

Free Essay

Information Tech

...CARIBBEAN EXAMINATIONS COUNCIL Caribbean Secondary Education Certificate CSEC ® INFORMATION TECHNOLOGY SYLLABUS Effective for examinations from May/June 2010 C XC 30/G /S YLL 08 1 Published by the Caribbean Examinations Council All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold Road, Kingston 5, Jamaica, W.I. Telephone: (876) 630-5200 Facsimile Number: (876) 967-4972 E-mail address: cxcwzo@cxc.org Website: www.cxc.org Copyright © 2008, by Caribbean Examinations Council The Garrison, St Michael BB14038, Barbados CXC 30/G/SYLL 08 Contents RATIONALE .............................................................................................................................................. AIMS ...................................................................................................................................................... 1 2 2 2 3 4 5 5 7 7 8 10 12 13 15 16 19 21 23 46 47 ORGANIZATION OF THE SYLLABUS .................................................................................................. SUGGESTED TIME-TABLE ALLOCATION .......................................................................................... FORMAT...

Words: 16882 - Pages: 68

Free Essay

Caribbean Studies

...Caribbean Examinations Council (CXC) With assistance from The Commonwealth of Learning (COL) Copyright © 2004 CXC/COL Prepared by Dr Jennifer Mohammed Mr. Samuel Lochan Dr. Henderson Carter Dr. David Browne CARIBBEAN STUDIES TABLE OF CONTENTS Study Guide 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12. 13. 14. Titles Society, Culture and the Individual Geography, Society and Culture History, Society and Culture Cultural Diversity in Caribbean Society and Culture Impact of Societal Institutions on Caribbean People Caribbean - Global Interaction Concepts and Indicators of Development Contribution of Sports to Development in the Caribbean Regional Integration and Development Factors Promoting or Hindering Development Intellectual Traditions The Mass Media Social Justice Investigating Issues in the Caribbean Pages 1 – 21 22 – 51 52 – 87 88 – 116 117 – 146 147 – 170 171 – 187 188 – 195 196 – 207 208 –222 223 – 247 248 – 255 256 – 262 263 – 303 INTRODUCTION Purpose The Caribbean Examinations Council (CXC), in collaboration with the Commonwealth of Learning (COL), has developed Self-Study Guides for a number of Caribbean Secondary Education Certificate (CSEC) and Caribbean Advanced Proficiency Examination (CAPE) subjects. The main purpose of the Guides is to provide both in-school and out-of-school candidates with resource materials which should help them in preparing for CXC examinations. Each Study Guide is student centered and its language is student friendly. The Caribbean Studies course...

Words: 10072 - Pages: 41

Premium Essay

Chem Syllabus

...CARIBBEAN EXAMINATIONS COUNCIL Caribbean Secondary Education Certificate CSEC® CHEMISTRY SYLLABUS Effective for examinations from May–June 2015 CXC 21/G/SYLL 13 Published by the Caribbean Examinations Council. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold Road, Kingston 5, Jamaica Telephone Number: + 1 (876) 630-5200 Facsimile Number: + 1 (876) 967-4972 E-mail Address: cxcwzo@cxc.org Website: www.cxc.org Copyright © 2013 by Caribbean Examinations Council The Garrison, St Michael BB14038, Barbados CXC 21/G/SYLL 13 Contents RATIONALE ................................................................................................................................... AIMS ............................................................................................................................................. CANDIDATE POPULATION ............................................................................................................. SUGGESTED TIME-TABLE ALLOCATION ........................................................................................ ORGANISATION OF THE SYLLABUS .................................................

Words: 24316 - Pages: 98

Free Essay

Geography

...CARIBBEAN EXAMINATIONS COUNCIL Caribbean Certificate of Secondary Level Competence® SOCIAL STUDIES SYLLABUS Effective for examinations from May–June 2014 CXC CCSLC/SS/05/12 Published in Jamaica, 2012 by Ian Randle Publishers 11 Cunningham Avenue P O Box 686 Kingston 6 www.ianrandlepublishers.com © 2012, Caribbean Examinations Council ISBN ---------------------------------------- (pbk) All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form, or by any means electronic, photocopying, recording or otherwise without prior permission of the author or publisher. Cover and book design by Ian Randle Publishers Correspondence related to the syllabus should be addressed to: The Pro-Registrar Caribbean Examinations Council Caenwood Centre 37 Arnold Road, Kingston 5, Jamaica Telephone Number: +1 (876) 630-5200 Facsimile Number: +1 (876) 967-4972 E-mail Address: cxcwzo@cxc.org Website: www.cxc.org Copyright © 2012 by Caribbean Examinations Council The Garrison, St Michael BB14038, Barbados CXC CCSLC/SS/05/12 This document CXC CCSLC/SS/05/12 replaces CXC CCSLC/SS/05/2006 issued in 2006. Please note that the syllabus has been revised and amendments are indicated by italics. First issued 2006 Revised 2012 Please check the website www.cxc.org for updates on CXC’s syllabuses. CXC CCSLC/SS/05/12 Contents INTRODUCTION .......................................................

Words: 14343 - Pages: 58