Answer

Running Header: SYSTEM SUSCEPTABILITIES 1

SYSTEM SUSCEPTABILITIES 5

System Susceptibilities

Student’s Name

Professor’s Name

Date

Question 1

“Computer Security Incident Response Team (CSIRT)” is referred to be the collection of “Information Technology” experts that deliver a company with support and services round the administration, prevention, and organization of probable emergencies associated with cybersecurity. There exist several sources when a person wants to undertake training on CSIRT (CSIRT. 2020). The key aim of “CSIRT” is to minimize the harm that is emanating from the hackers. The different sources are First, “(ENISA) European Union Agency for the network and Information security”. Secondly is the "European Computer security Incident response team network”. Thirdly is the “Exa beam”. Another source is “Nippon CSIRT Association” and finally “FIRST. Org” (EPO. 2016).

Question 2

From the website www.mitre.org., there are several widgets that are addressing different challenges that are currently facing the world. To address these challenges which range from health, cybersecurity threats, data science, and artificial intelligence and robotics, MITRE does provide well-researched articles on the above challenges. This info is destined for the interest of the public in entire state, federal and local administration, and also the manner to alleviate the “cyber threats” which have to post a huge risk to the technological world in current academia and industry which can be used to provide solutions to challenges and also giving insight (www.mitre.org.)

Question 3

Through the study of Bugtraq, they have given an area where system operators are capable of subscribing through submission their electronic mails addresses. Such a subscription is of importance since the persons subscribed to get the announcement of present common susceptibilities that have been recognized for numerous systems. This helps the system used to be able to protect their systems from been attacked which can be performed on the present susceptibility that has already been recognized. In addition to that, it portrays guests who access the site with general “frequently asked questions” concerning common susceptibilities exploits and displays (Securityfocus. 2019).

Through the use of the vulnerability tab, an account of dissimilar common vulnerability revelations has been recorded. Such revelations have accessible solutions of exploits delivered by the system suppliers to help the users to be able of protecting the systems they have from been attacked. More so, system users are given a form to help them to filter susceptibilities by the supplier, version, and heading. This is a speedy manner to look for susceptibilities that merely have effects systems that are in use. If any point a system has precise “Common vulnerabilities and exposures (CVE) number”, they are offered with experience for speedy looking for using particular figures (SecurityFocus. 2019).

Question 4

Under the website www.cert.org., it is evident that the company is dealing with cybersecurity threats control and resilience measures. The website provides users with detailed ways of dealing with sophisticated cybersecurity threats by developing tools to counter the threats. They also do research security vulnerabilities in software products and contribute to long-run alterations in systems of a network ( www.cert.org.). From www.cert.org/csirts/ additional information on ways of developing resilience in cyber threats has been provided in a procedural manner which includes “cyber center development and cyber intelligence among others” (www.cert.org/csirt/)

Question 5

Sharing of Information is important for protecting essential substructure and advancing “cybersecurity” for the country. For instance, as the lead “federal department for the protection of critical infrastructure” and the advancing of cybersecurity, the “Cybersecurity and Infrastructure Agency (CISA)” has come up with and applied frequent programs for sharing information. Via such these programs, “CISA” acquires companies and distributes utilitarian data with the “private sector” that possesses and functions the mainstream of the country’s analytical substructure. Cybersecurity and Infrastructure Agency as well as shares info with local, state tribal, and regional administration and with global associates, as “cybersecurity” risk factors are not forced by topographical boundaries (CFR. 2018)

References

CFR. (2018, May 15). Sharing classified cyber threat information with the private sector. Council on Foreign Relations. https://www.cfr.org/report/sharing-classified-cyber-threat-information-private-sector

CSIRT. (2020, January 23). What is CSIRT? What are CSIRT roles and responsibilities? Logsign. https://blog.logsign.com/what-is-csirt-what-are-csirt-roles-and-responsibilities/

EPO. (2016). Challenges for national CSIRTs in Europe in 2016: Study on CSIRT maturity.

Securityfocus. (2019, July 26). Symantec Connect. SecurityFocus. https://www.securityfocus.com