Describe the best practice to employ to mitigate malware effects on a machine.
In the fight against the malicious software, it is not enough to treat only the infected machines. As today’s malware uses multiple vectors to spread and also infecting file shares and stealing of weak passwords. Organizations need to implement some security policies and procedures so that all the threats are addressed before being affected by it.
An enterprise firewall provides a one layer protection between the organizations internal network and the internet. However, not all the threats come through the front door so organizations should develop some prior policies in order to mitigate this threat. And combating with malware in an organization means not only locating the suspicious program on servers but also detecting what the malware does on the network.
In an organization thousands of computers are connected loosely to perform different tasks, so malware incidents must be treated as elements of a holistic security incident cycle. And this cycle includes four different steps. They are:
1. Plan
2. Resist
3. Detect and
4. Respond.
In the plan phase it is better to begin by understanding the computing environment and know whether any infection vectors that are likely to encounter. There are some common approaches for malware to enter into the system like if the computer contains week passwords of network accessible accounts and through the removable media such as USB cables. So organizations need to take better measures for detecting malware and responding to the associated security incidents.
When implementing the policies developed in the plan phase of the security cycle, enterprises must take better steps to resist malicious software attacks in the first place. And organizations should install and maintain modern antivirus software and they should have control against what software is to be installed and allowed to run. And resisting malware must take place not only at the system level but also at the network level.
The sooner the presence of malware is identified in the enterprises, the sooner we can react to it and can limit the spread of malicious code before the infection finds its way onto many more systems.
Responding to a malware incident involves three steps like containment, eradication and recovery. And after all the things are resolved, the organization must improve its ability to handle future infections and adjust the relevant security components to see whether the environment can be made more resilient to such incidents.
Organizations that develop, deploy, monitor, and test security tools throughout their network and information security policies that govern these devices, will be better able to avoid compromises and, in the event they do get infected, a faster recovery.
Posting 2 Reply Required topic “Cyber Security and Risk Management”
Digital security is considered to include the advancements, the controls and the procedure which are intended to help in the insurance of the framework and furthermore the assaults that include the information. At the point when digital security is viable it helps in decreasing the digital assaults and furthermore it is helping in the ensuring the associations and furthermore the people which are originating from unapproved framework abuse. Hazard administration is really the idea of guaranteeing that benefits of the organization are ensured and this may include the utilization of protection which may incorporate life, wellbeing and accident coverage. Hazard administration can likewise stretch out to physical gadgets which are including entryways and secures which are helping in the insurance of the homes; we additionally have the vaults in the assurance of the cash and furthermore the inclusion of the police and security to help in ensuring a portion of the physical dangers (Haimes, 2015).
The connection between the hazard administration and digital security is that them two are fundamental for the assurance of the advantages which are profitable to the proprietors or to the business, the digital security helps in keeping the ventures from being assaulted using the PCs and furthermore averts take f the information and furthermore crucial data about the organization, then again, the hazard administration additionally guarantees that the undertaking is shielded from any hazard that may influence the business physically or even through web. Along these lines, we have understood that the connection between the digital security and the hazard administration applies the activity of the organization to help in giving the answers for the association (Malhotra, 2015).
As IT administrator I will guarantee that digital security is executed in my association and furthermore hazard administration is influenced successful to help in controling the physical assault of the association and furthermore to guarantee that the imperative data of the association is all around ensured, I will guarantee that the association is safeguarded for any physical hazard that may jump out at the association to guarantee that there is sufficient wellbeing for the advantages of the business