Question

Question 4 (20 marks) - Planning the Audit & Evaluation You have been hired as a Network and Security Manager at a company which just established not more than five years. The core and nature of business is highly depending on network and cloud services. Unfortunately, Security Audit and Evaluation in the company is never been done yet. Therefore, you are responsible to plan and design a systematic framework for cyber security check, monitoring and auditing in the company in order to evaluate the current level of security and propose a guideline that can be implemented in the long run. [20 marks]

Answer 1

A vulnerability is a shortcoming in structure, execution, activity or inside control. The vast majority of the vulnerabilities that have been found are reported in the Common Vulnerabilities and Exposures (CVE) database. An exploitable powerlessness is one for which in any event one working assault or "endeavor" exists.Vulnerabilities are regularly pursued or misused with the guide of computerized apparatuses or physically utilizing redid contents.

An indirect access in a PC framework, a cryptosystem or a calculation, is any mystery strategy for bypassing ordinary validation or security controls. They may exist for various reasons, including by unique structure or from helpless arrangement. They may host been added by an approved gathering to permit some genuine access, or by an aggressor for malevolent reasons; yet paying little heed to the thought processes in their reality, they make a powerlessness. Secondary passages can be difficult to distinguish, and location of indirect accesses are normally found by somebody who approaches application source code or cozy information on the PC's Operating System.

Denial of service attacks (DoS) are intended to make a machine or system asset inaccessible to its expected users.[5] Attackers can refuse assistance to singular casualties, for example, by purposely entering an off-base secret word enough back to back occasions to cause the casualties record to be bolted, or they may over-burden the abilities of a machine or system and square all clients without a moment's delay. While a system assault from a solitary IP address can be obstructed by including another firewall rule, numerous types of Distributed forswearing of administration (DDoS) assaults are conceivable, where the assault originates from an enormous number of focuses – and shielding is considerably more troublesome. Such assaults can begin from the zombie PCs of a botnet, or from a scope of other potential methods, including reflection and intensification assaults, where honest frameworks are tricked into sending traffic to the person in question.

Phishing is the endeavor to procure touchy data, for example, usernames, passwords, and charge card subtleties straightforwardly from clients by misleading the clients.

Phishing is commonly completed by email ridiculing or texting, and it frequently guides clients to enter subtleties at a phony site whose "look" and "feel" are practically indistinguishable from the real one. The phony site frequently requests individual data, for example, sign in subtleties and passwords. This data would then be able to be utilized to access the person's genuine record on the genuine site. Going after a casualty's trust, phishing can be delegated a type of social designing. Aggressors are utilizing imaginative approaches to access genuine records. A typical trick is for assailants to send counterfeit electronic invoices[9] to people indicating that they as of late bought music, applications, or other, and educating them to tap on a connection if the buys were not approved.

Benefit acceleration depicts a circumstance where an aggressor with some degree of confined access can, without approval, raise their benefits or access level. For instance, a standard PC client might have the option to abuse a powerlessness in the framework to access confined information; or even become "root" and have full unlimited access to a framework.