201696
Cyber Security/Computer Systems Security
Table of contents
Relationship to CPT …………………………………………………………3
Introduction………………………………………………………………….4
Problem statement and justification…………………………………………5
Literature review…………………………………………………………….6
References………………………………………………………………….10
Relationship to CPT
CPT course is designed to provide skills and knowledge to students by covering basic concepts and terminologies in computer security. Students with no security experience in computer systems will be introduced to basics of networking and computer. They will also learn basics of security management, organizational policy and cryptography among others. Topics included in the course for computer security include basic security terminology, network infrastructure security, information security policy and framework, and DoS attacks among others.
CPT course learning outcomes include the ability of students to identify computer system threats, clearly describe the function of computers in a security framework, application of cryptographic techniques in security, and development of organizational security policies. The research on computer systems security will provide in-depth information on security in computer systems. Computer security is concerned with protection of information systems from disruption, damage or theft of information, hardware and software. It will enhance understanding on computer security and the challenges that is part security of the CPT course.
Introduction
Businesses, financial institutions, and governments collect, process, and store meaningful data and information on computers that is shared to other computers through networks. These meaningful information and data should be secured to protect the businesses, personal information and the nation at large. It becomes significantly important to have computer security measures that will prevent cyber attacks that continue to grow rapidly in the current world. Attacks, damage or disruption of sensitive information is quite costly if proper security measures are not put in place. Having computer security measures helps to secure sensitive information.
Advancement in technology, information and communication has enhanced connection around the globe through the internet. Most people and organizations are using the internet for various activities that has been of benefit. However, the sharing of information through computer networks is associated with a number of security risks that need to be addressed to keep sensitive information secure. Cyber security involves a range of concepts, practices, and tools essential to enhance security practices when handling information through networks. Cyber security remains a challenge in the current world due to a number of factors including lack of computer security knowledge and advances in technology. Neglecting the importance of computer security is costly, thus the need to elaborate the importance of having adequate computer security skills and knowledge.
Problem Statement and Justification
Cyber security or computer systems security remains a challenge despite its effectiveness in resisting information and critical data attacks. Computer users make important security decisions daily when dealing with critical information. These range from using passwords and deciding whether or not to open links with insecure sources among others all in the name of protecting critical information and data from attacks or disruption. Cyber security is vital to protecting security attacks on sensitive information and data but is not well understood by the larger population due to lack of formal education on cyber security. Organizations and businesses have lost meaningful information from attacks that had significant consequences. Investing in cyber security is essential for businesses and organizations as it helps to resist information and critical data attacks that have negative consequences. Informal security education enhances user knowledge on the importance of making good security decisions.
Literature Review
Cyber security is simply the processes and technologies established to protect networks, data, computers, computer software and hardware from vulnerabilities and unauthorized access such as hackers. The internet links autonomous computers to share resources and enhances research but fails to track users’ behavior that contributes to cyber security challenges we experience in the current world (Goutam, 2015). This calls for the need of cyber security to prevent attacks or damage of data and information by hackers and terrorist among others. Securing sensitive information is essential for organizations, institutions and the government. However, internet users may lack adequate knowledge and appropriate skills on cyber security to reduce vulnerabilities. Similarly, (Rader & Wash, 2015) argue that lack of adequate knowledge on computer security hinders effective ways to resolve computer security issues. For instance, knowledge on security threats like Malware may be incomplete or inaccurate hindering reduction of vulnerabilities.
According to Rader and Wash (2015), cyber security remains a global challenge. Security issues are on the rise due to technological advancement that has enhanced use of computers and networking to communicate and perform a number of tasks. Incorrect or inappropriate decisions significantly contribute to security issues in businesses and organizations. Vulnerabilities in computing systems, in particular, end users are the targets of most security attacks because of their lack of understanding of computer security issues. Few people learn about cyber security
threats and protective measures. Many people, non-expert computer users rely on others on cyber security issues. The authors identify three important sources of learning cyber security, web pages, articles, and personal stories. These sources help to communicate security knowledge and concerns such as data breaches, hacking and viruses that are a major concern of cyber security in different environments.
Cyber security is practiced in different environments including the military. An understanding of the environment is significant in analysis of different threats in the specific environment to identify strategies that will help counter threats or malicious attacks (Galinec et al, 2017). Cyber security involves a number of activities to protect critical information and data such as understanding sensitive information and attack detection and reaction among others. The process of having a cyber security strategy is costly but it helps minimize the costs associated with an attack. Cyber security is aimed at lowering vulnerability levels as well as enhancing threat awareness.
According to Gordon and his team (2015), digital revolution has lead to significant changes on how infrastructure assets are operated in private firms. Digital revolution has increased efficiency in use of infrastructure assets. However, it has also created serious risks resulting from cyber security breaches to critical infrastructure assets that have negative effects. The authors question the costs associated with investing in cyber security in firms in the private sector. They are aware that private firms tend to rely largely on the cost-benefit analysis results when investing in cyber security. The cost-benefit analysis greatly considers costs linked to cyber security breaches. It does not consider individual costs and spill-over costs when making cyber security investment decisions. This has led to underinvestment in cyber security among private firms.
Cyber security breaches have been experienced in many organizations thus the need to make urgent remedial actions to manage future cyber security risks. The authors recommend a national cyber security strategy to help leverage the government strengths in enhancing security practices in businesses as well as among citizens. The strategy should focus on preventing vulnerabilities that allow attacks (Galinec et al, 2017). Similarly, (Gordon et al, 2015) feel that the government can do something when it comes to cyber security. They feel that the government needs to intervene in cyber security to ensure that organizations are investing adequately in cyber security activities. This could be done through regulations or incentives to encourage private firms to adequately invest in cyber security.
According to (Jensen, 2014), the spread of malware such as viruses and worms in the current world has made computer security a challenge. The threat of computer security indicates failure in the existing computer security technologies thus need for improved computer security. The author examines traditional models and policies of computer security to help identify areas that have failed. He focuses on trust that is considered a security property. Trust issues arise when the systems environment changes, for instance, using the systems on a global scale via the internet. The root authority may have security policies in place to help in computer security. However, trust issues arise when other entities use the systems.
References
Galinec, D., Moznik, D., & Guberina, B. (2017). Cybersecurity and cyber defence: national level
strategic approach. Journal for Control, Measurement, Electronics, Computing and Communication, 273-286.
Gordon, L. A., William, M. L., & Zhou, L. L. (2015). Increasing cybersecurity investments in
private sector firms. Journal of Cybersecurity, 1(1): 3-17.
Goutam, R. K. (2015). Importance of Cyber Security. International Journal of Computer
Applications, 111(7): 14-17.
Jensen, C. D. (2014). The Importance of Trust in Computer Security. Trust Management VIII, 1-
12.
Rader, E., & Wash, R. (2015). Identifying patterns in informal sources of security information.
Journal of Cybersecurity, 1(1): 121–144.