Unit 10 IT595

profileshells0143
CShells-IT595Assignment-Unit9.docx

Unit 9 Assignment 1

Unit 9 Assignment 1

Unit 9 IT595

Clifford Shells

Purdue University Global

IT595: Master’s Capstone in Cybersecurity Management

February 10, 2025

Milestone 4: Assessment and Finalization - Status Report

Milestone 4 entails the final stage of the cybersecurity project and aims at assessing the implemented system's efficiency to achieve any adjustments. This stage focuses on reviewing the attempts made by unauthorized people, detecting the times taken to respond to the threats, and providing feedback on the users' sessions. This will guarantee that the organization is ready to manage new threats arising within the new future occasionally.

A diagram of a network  AI-generated content may be incorrect.

figure 1 Configuration of the Network Security System

Recommendations for Stakeholders

Enhanced continuous monitoring requires artificially intelligent technologies that are used to surveillance and prevent threats to computers in real-time (Aminu, Akinsanya, Dako, & Oyedokun, 2024). Using machine learning techniques, organizations can identify bumps quickly enough, thus ensuring a faster response and preventing losses from the resulting impacts. In addition, using SIEM enhances the monitoring of logs, which means overall monitoring is achieved and made effective.

Zero Trust Enforcement enhances the authentication process by implementing MFA and applying zero trust principles with micro-segmentation (Patel & Chaudhary, 2024). Some measures that organizations should implement include identity-based access control and context-awareness authentication to exclude unauthorized access. Role-based access and just-in-time privilege escalation are good practices as they minimize the exposure to potential threats.

Being aware of common threats that may arise due to employee negligence, employee training programs organize recurring cybersecurity sessions to refresh employees on the relevant preventive measures. Employees must comprehend the objectives of phishing attacks and social engineering within an organization and the safer approach to passwords to minimize threats.

A diagram of a diagram  AI-generated content may be incorrect.

figure 2 Monitoring Logs & Performance Metrics

Tasks Completed (Updated WBS)

Task

Planned Duration (Days)

Actual Duration (Days)

Notes

Deployment of Continuous Monitoring Tools

5

6

Additional testing required

System Performance Evaluation

4

5

Adjustments to security settings needed

User Training Sessions

3

3

Completed as planned

Final Penetration Testing

5

6

Extra retesting for vulnerabilities

Documentation & Reporting

2

2

Finalized and submitted

Lessons Learned

Point five of the Importance of Real-Time Monitoring states that automated threat identification improves response to threats (Aminu, Akinsanya, Dako, & Oyedokun, 2024). One of the benefits of implementing artificial intelligence and machine learning for analytical predictions is that it provides organizations with the necessary tools to consider threats before they become problematic. Besides, monitoring across different system layers provides a more thorough outlook on security issues.

The article User Engagement is Key also acknowledges that active engagement in the training sessions minimizes compliance with risks and openings (Silic & Lowry, 2020). End-user awareness is also important within the organization; hence, it is reassuring that the employees are trained to embrace a good working culture to curb cyber threats. Such incentives can be used supplementarily to engage the learner further and reinforce the training session’s content.

The reasons stated in the topic 'Stakeholder Communication is Vital' state that feedback loops are used for increased system effectiveness and to meet the demands of real-life situations to improve stakeholder communication. Business institutions seeking clear communication with stakeholders such as IT departments, managerial level, and customers will be uniquely positioned to implement security solutions in response to their requirements. Such security implementations will be more accomplished by doing regular security briefings and collaborative sessions and making decisions.

A diagram of a plan  AI-generated content may be incorrect.

figure 3 Creating a Data Breach Response Plan

Conclusion

Hence, Milestone 4 assessed the system's effectiveness, adjustment of securities, and approximation for future cybersecurity threats. The documentation comprises the logbooks, penetration testing, training materials, and system configurations, among others, to show that the specified milestones were accomplished, and the project achieved its goals.

References Aminu, M., Akinsanya, A., Dako, D. A., & Oyedokun, O. (2024). Enhancing cyber threat detection through real-time threat intelligence and adaptive defence mechanisms. International Journal of Computer Applications Technology and Research, 13(8), 11-27. https://www.researchgate.net/profile/Ayokunle-Akinsanya/publication/382782321_Enhancing_Cyber_Threat_Detection_through_Real-time_Threat_Intelligence_and_Adaptive_Defense_Mechanisms/links/66abc9a12361f42f23abd2a1/Enhancing-Cyber-Threat-Detection-through-Real-time-Threat-Intelligence-and-Adaptive-Defense-Mechanisms.pdf Patel, A., & Chaudhary, M. (2024). Zero Trust Architecture: A Comprehensive Guide to Modern IT Security. Baltic Multidisciplinary Research Letters Journal, 1(3), 44–53. https://www.bmrlj.com/index.php/Baltic/article/view/24 Silic, M., & Lowry, P. B. (2020). Using design-science-based gamification to improve organizational security training and compliance. Journal of Management Information Systems, 37(1), 129–161. https://doi.org/10.1080/07421222.2019.1705512

image3.png

image1.png

image2.jpeg