Cyber Security Security Strategy Implementation Recommendations document 5-8 pages

Introduction

In this report, we have to focus on Cyber Security Strategy Implementation for Sifers-Grayson. Every day more and more IT companies are moving online, at the same time the number of hackers is also increasing. So cybersecurity is playing a vital role in the IT business. If vital data is compromised by a hacker then a business is in jeopardy of losing clients and perhaps going bankrupt. So it is time to manage and protect the business and focusing on cybersecurity policies. Attackers are not certainly fishing for huge companies. Some businesses contain very vital data from customers like mobile information, credit card information, health-related data, and property data. U.S. Securities and Exchange Commission reports, hackers generally are focused on small and midsize businesses and greater focus is needed on them. Businesses are at risk to lose thousands to millions of dollars which puts them at risk of going bankrupt ("SEC.gov | The Need for Greater Focus on the Cybersecurity Challenges Facing Small and Midsize Businesses", 2020).

There are many methods to protect against cyber-attacks. In this report, we will concentrate on 2 defensive protection strategies. We will also discuss how they will be practiced to safeguard the Sifers-Grayson from both internal as well as external threats & attacks.

1. Building a Demilitarized Zone (DMZ) for the R&D Center:

“DMZ network seperates the public (potetional maclisious users) from internal networks and sensitive data. The State Department has been using DMZ technology since the late 1900's (Goldstein, 2020).” The DMZ will need to be paired with business-type routers, enterprise-class data security firewalls, as well as intrusion detection and prevention system.

Defense Strategy #1 Analysis: (include router, firewall, intrusion detection & prevention system)

In cyber protection, a DMZ system operates as a subnetwork including a firm's presented outward-related assistance (Cameron & Marcum, 2019). It serves as the presented subject to a risky network. That is usually the Internet facility system. The purpose of a DMZ is to attach an additional layer of protection to the company's local area network (LAN). It provides a secured, as well as monitored interface connection. It can obtain what is shown in the DMZ. The support of the firm's system is protected back to a firewall. When executed correctly, a DMZ System provides companies’ additional security in identifying as well as decreasing confidence gaps before they relinquish the private interface, where important assets are collected (Rababah, Zhou & Bader, 2018).

The DMZ Network survives to preserve the proprietors most exposed to hack. These gatherings normally include duties that continue to practices external of the local area network (LAN). The most well-known representatives being electronic mail, website servers, as well as DNS servers. Due to the enhanced potential for the hack, they are introduced within the monitored sub network to assist preserve the foundation of the system if they grow settled. Masters in the DMZ have strongly advised entrance support to other duties within the private channels. The reason is based on the information reached through the DMZ (Dadheech, Choudhary, & Bhatia, 2018). Defense Strategy #2 Analysis: (Analyze Defense Strategy 2) Results: (Explain how both defense strategies will increase security posture)

Is Defense on Depth on here?

Layered security is one of the optimal methods to ensure that in the security system we have many implementations techniques to get the defect of every single perspective. If at an individual layer the failure or rupture has been present then there present more complex layers to discover the disputes (Andry & Setiawan, 2019). It has been implemented to at least reduce the processor number of the disputes by the attack. This serves concurrently presenting a larger than the amount of the description of the character of the security. One perspective needs to be considered that layered security technique is NOT performing the corresponding support many events, right layering is regarding multiple kinds of security actions, each defending against a complex vector for the crime. Levels of a center may be involved by safeguarding on different levels. Those levels are the Perimeter Defense level, Network Defense level, Host Defense level, Application Defense, level, Data Defense level, Physical Security level. Originally manufactured in a military environment, while discussing more extra-base security standards.  Security on the deeper level would be more familiar to a multifaceted vital system where layered defense, as well as security, would be one phase of security. Security in the deeper level involved further than simply the direct intervention but also allows a larger plus extra variable cause of security. Policies include Monitoring, informing including emergency acknowledgment, Approved group project accounting, Accident reconstruction, Illegal activity recording, as well as Forensic investigation (Simbolon & Hardiyanti, 2019).

Benefits: A multi-level strategy can be tailored to various phases of protection. Not each asset wants to be fully protected; rather, only the various company-critical assets, like proprietary as well as private knowledge. It can be preserved by the most qualified environments. There are several recess answers as well as intimidations. Companies today frequently require to manage various network security purposes. Those are against-virus applications, anti-spyware applications, as well as anti-malware applications. Network security concerns numerous intimidations nowadays that different devices are frequently needed.

Any assistance granted to users on the unrestricted internet ought to be located in the DMZ interface. Any of the various commons of those duties involve web servers as well as proxy servers, and web servers for electronic mail, area title method, Data Transfer Protocol, as well as decision covering Internet Protocol. Attackers, as well as hackers throughout the system, can transfer the services operating these settings on DMZ web servers. It wants to be trained to endure a constant attack.

There are several methods to create a system including a DMZ. The 2 primary purposes are to practice every 1/2 firewalls, though the greatest common DMZs are created with 2 firewalls. This fundamental program can be developed to build multiple buildings, based on the system specifications. A personal firewall by at most limited network views (3) can be practiced to imagine a system design including a DMZ. The outside system is made by comparing the known internet through an internet assistance provider relationship to the security of the primary system designs. The private network is made from the following material interface as well as the DMZ system itself is compared to the three network layers.

DMZs are designed to work as a kind of defense position within the unrestricted internet as well as the individual system. Expanding the DMZ within 2 firewalls suggests that every inbound system packages are selected using a security layer or another safety device ere they appear at the web address of the company bartenders in the DMZ. Lastly, considering that a well-capable menace actor can breach the outside security layer as well as take over a custom received in the DMZ interface (Zacher, 2018). They need yet burst through the regional internet layer before they can move sensible business support.

I will select CISCO for all the types. The main goal will be to create a network security server by DMZ. It is a secure web address that combines a panel of protection to the system as well as appearances as a barrier. The user must configure a hardened Internet Protocol place for the last point. The DMZ owner ought to be assigned an Internet Protocol number in the corresponding subnet. It cannot be equal to the Internet Protocol business is assigned to the LAN layers of the firewall. Applicable devices are RV120W and RV220W. The software version is v1.0.4.17.

If the organization was beaten by ransomware that changed its OT methods as well as held several of its clients from taking control. The organization didn't hold an approved DMZ within its IT as well as OT devices. Its OT materials weren't well dressed to manage the ransomware once. This gap strongly influenced the energy firm's foundation as well as the multitudes of consumers based on their co-operation. An executed DMZ would have presented improved network segmentation as well as could have likely checked the spillover destruction that the ransomware produced to the modern conditions.

1. Router: (CHOOSE ONE OF THE FOLLOWING BELOW you will name and describe the individual products) a. Linksys b. CISCO c. NetGear Business Class Firewall: (samething as above) a. SonicWall b. Fortinet c. Watchguard d. CISCO

Intrusion Detection and Prevention System (network based – not cloud)

0. McAfee

0. Trend Micro

0. Entrust

0. Cisco

Application Lifecycle Management (ALM) Tool:

Identity & Access Management (IAM) Tool: Security Information and Event Management (SIEM) OR Unified Threat Management (UTM): Forensic Image Capture Utility (e.g. FTK Imager, Belkasoft, Paladin/Sumuri, SIFT):

Cameron, E. A., & Marcum, T. M. (2019). Why Business Schools Must Incorporate Cybersecurity into The Business Curriculum: Preparing the Next Generation for Success. Journal of Higher Education Theory and Practice, 19(4).

Dadheech, K., Choudhary, A., & Bhatia, G. (2018, April). De-Militarized Zone: A Next Level to Network Security. In 2018 Second International Conference on Inventive Communication and Computational Technologies (ICICCT) (pp. 595-600). IEEE.

Goldstein. (2020). DMZ Networks Can improve Infrastructure Security. Retrieved 7 May 2020, from https://fedtechmagazine.com/article/2017/07/what-dmz-network-and-how-can-it-improve-your-security

Rababah, B., Zhou, S., & Bader, M. (2018). Evaluation the Performance of DMZ. Assoc. Mod. Educ. Comput. Sci, 0-13.

SEC.gov | The Need for Greater Focus on the Cybersecurity Challenges Facing Small and

Midsize Businesses. (2020). Retrieved 7 May 2020, from https://www.sec.gov/news/statement/cybersecurity-challenges-for-small-midsize-businesses.html