Cyber security discussion question

Cyber security discussion question

In preparing your response, include at least one source from professional or academic literature—such as articles from peer-reviewed journals and relevant textbooks. For this course, Wikipedia is not considered an academic or professional reference. Also, proofread and spell check your responses. All sources should be formatted using APA guidelines.

1. Discuss the different access control types for mitigating risk within an organization’s IT infrastructure. What is your basis for selecting those countermeasure(s)?
2. Discuss the concepts related to data and data classification as they relate to the security concept of “Need to Know.” How can this access control guideline impact the sharing of information within an organization’s disparate business units?

3. Review the case facts associated with “The Omega files: A true story” (http://www.cnn.com/2000/TECH/computing/06/27/omega.files.idg/).
Discuss which security controls would have helped avoid the breach and what steps the organization should implement to avoid a similar event in the future.
4. SQL injection attacks take advantage of dynamic SQL. Many websites require users to enter data in a text box or web address. If the user-supplied data is used directly in a SQL statement, a SQL injection attack can occur. Instead of giving the data that’s expected, a SQL injection attack gives a different string of SQL code. This different code can compromise the database. What mitigation strategies would you recommend to mitigate the organization’s exposure to SQL injection attacks?

5. Discuss the differences between qualitative and quantitative risk assessment methodologies. What are the advantages and disadvantages of each methodology, and how can each be leveraged during the risk analysis process to improve the organization’s information security posture?

6. Under what circumstances might it be more beneficial for an organization to utilize a quantitative risk assessment process? What are the pros and cons associated with quantitative risk assessment programs?

7. Discuss how OSINT can be used as part of an organization’s risk assessment program to enumerate potential threats not revealed as a part of a traditional risk assessment process.

8. What emerging cybersecurity threat do you think will have the greatest impact on the field of cybersecurity? Based on your initial post, what security controls would you recommend an organization take to mitigate their exposure to the emerging threat you identified?

The post Cyber security discussion question appeared first on EssayGuru Pro.

Write my Essay. Premium essay writing services is the ideal place for homework help or essay writing service. if you are looking for affordable, high quality & non-plagiarized papers, click on the button below to place your order. Provide us with the instructions and one of our writers will deliver a unique, no plagiarism, and professional paper.

Get help with your toughest assignments and get them solved by a Reliable Custom Papers Writing Company. Save time, money and get quality papers. Buying an excellent plagiarism-free paper is a piece of cake!

All our papers are written from scratch. We can cover any assignment/essay in your field of study.