IT470: Computer Security Fundamentals
1
Running Header: Student as
2
DATA BREACH
Student 1:
Meenakshi Sethi
I Global University
Explain that the IT security engineer is responsible for ensuring that a coherent set of processes, procedures, and technologies are installed to support the day-to-day management of risks.
Policies and procedures explain what is expected, how this is to be met and what results are to be achieved if this expectation is not fulfilled. This removes any surprises, since this is clearly defined and therefore protects the organization. Everyone is accountable for information security inside a company. From the owner to the summer intern, you need to ensure that information is safe by participating in the business and processing of data and that you stay attentive to security risks like hackers. When everything is said or done, the CISO is responsible for establishing security policies and for communicating and implementing robust security measures with both the rest of the business. Confidentiality, integrity as well as availability are the basic principles (tenets) of information security. Each element of an ISP (and any security control established by an organization) should be intended to implement one or more of these concepts. They're dubbed the CIA Triad together (Pieprzyk, 2013).
Compromising information systems is an increasingly popular method of espionage. Discuss the challenges companies face and how can they prevent data loss?
Nor are they simply malevolent actors. Employees may unintentionally damage systems and cause risks to computer security via ignorance. Simple errors like clicking through rigged links in e-mails, messaging applications and advertising allow hackers to monitor firms and organizations with huge repercussions. Some important phrases should be remembered when evaluating how computer security risks from insiders may be prevented (Pieprzyk, 2013).
Virus;
A computer virus is malicious programming which may rob the affected device of passwords, spam contacts, corrupted files, log keystroks. To get infected, someone has to transmit the virus deliberately or unintentionally (Pieprzyk, 2013).
Antivirus;
Antivirus is intended to identify, delete and prevent malware on such a device or network. Although designed primarily to remove viruses, antivirus software may also help malware, adware and other unwanted software. Basic antivirus applications analyze dangerous software files, enable users may schedule automatic scans as well as delete hazardous software (Pieprzyk, 2013).
REFERENCE
Pieprzyk, J., Hardjono, T., & Seberry, J. (2013). Fundamentals of computer security. Springer Science & Business Media.
Student 2
1. IT security engineer responsibilities towards processes, procedures, and technologies installation.
The IT Security Engineer is responsible for the security of an organization’s computer systems and networks. IT security engineering is also the process of incorporating security controls into the information system. This engineer implements security measures that effectively safeguard sensitive data in the event of a cyber-attack. The role is highly collaborative, involving processes, frequent interaction with various members of the IT team, procedures, and technologies goes hand-in-hand. By installation of various layers of protection, this security engineer will research and investigate the potential impact of new threats and exploits (Security Engineering - an Overview | ScienceDirect Topics, n.d.). They provide advice on vulnerabilities or potential vulnerabilities within architecture. The Information security engineer should work in collaboration with the information security team to offer support to security tools and technologies such as proxy server, firewall, remote access, and others. It is the Information Security Engineer who conducts log analysis and other network forensic investigations. They provide full cooperation to the appropriate teams for participating in cyber investigations ([email protected], 2013).
Some procedures IT security engineer’s follows (Information Security Risk Management (ISRI), n.d.):
· Apply system security engineering features in one or more of the following: engineering life cycle; system security design process; information domain; intrusion detection; incident handling; cross domain solutions; auditing.
· Provide security requirements to architects, engineers, and developers
· Experience with security features and/or vulnerability of various OS (CentOS, Red Hat Linux, AWS). ICD-503, XACTA, WebInspect, FISMA, Nessus, AppDetective, and design, implement, and test network intrusion detection system (IDS), RMF/A&AEngineer, network host intrusion protection system (HIPS), intrusion protection system (IPS), application protection, and web.
· Enterprise anti-virus suite to protect the following IT components: storage, network, computing, web services, databases, and application.
· Serve as the security subject matter expert in installation for the Continuous Monitoring processes and A&A.
· Work closely with other engineers, architects and developers in the implementation and identification of appropriate IT security functionality to ensure uniform application of security policy, procedures and enterprise solutions are established.
2. Company challenges face towards IT Espionage
Information System Espionage embraces illegal and unethical methods of collecting corporate data. It involves stealing intellectual property and trade secrets to use them for a competitive advantage.
Usual targets of IT espionage are:
- Trade secrets
- Critical Data requirements
- Financial information
- Marketing information
- Client information
Though espionage can happen anywhere, companies in industries that require considerable investment in R&D – including the computer, automotive, energy, aerospace, and chemical industries – should be especially alert. Espionage is an illegal yet widespread practice. If it hasn’t affected your company already, it’s only a matter of time (Counterintelligence, n.d.).
There are several challenges the companies face and do not report cases of IT espionage:
- IT spionage is hard to prove
- It’s hard to hold perpetrators accountable
- It may negatively affect your stock
- It can be seen as a violation of IT regulations
All of these factors compel companies to keep cases of espionage to themselves and conduct internal investigations.
Company prevention (What Is Corporate Espionage?, n.d.)
Conduct a risk assessment - Find potential targets. You need to know what trade secrets and other valuable data your company possesses and how much they’re worth. Once you identify your most valuable data, you can guess who may want it. Once you know possible threats and potential attack vectors, you can detect vulnerabilities in your own defenses.
Establish an effective security policy - All security rules should be formalized in a clearly written security policy. This policy should include rules prohibiting password sharing and employees bringing their own devices to work, among other things.
Maintain an efficient data access policy - Many companies provide access to critical data and infrastructure by default. While it may be more convenient, this policy is not secure. Applying the so-called “need to know” principle means that you provide access only to employees who really need information. If unauthorized employees occasionally need to work with confidential information, they can do it under the supervision of authorized staff.
Secure your infrastructure - Establish a secure perimeter around your company network. Conventional corporate cybersecurity software, such as firewalls and antivirus software, is your first line of defense.
References
Counterintelligence. (n.d.). [Folder]. Federal Bureau of Investigation. Retrieved August 1, 2021, from https://www.fbi.gov/investigate/counterintelligence
Information Security Risk Management (ISRI). (n.d.). Rapid7. Retrieved August 1, 2021, from https://www.rapid7.com/fundamentals/information-security-risk-management/
Security Engineering—An overview | ScienceDirect Topics. (n.d.). Retrieved August 1, 2021, from https://www.sciencedirect.com/topics/computer-science/security-engineering
[email protected]. (2013, January 15). Security Engineering and Risk Management [Text]. NIST. https://www.nist.gov/itl/csd/security-engineering-and-risk-management
What is Corporate Espionage? | UpGuard. (n.d.). Retrieved August 1, 2021, from https://www.upguard.com/blog/corporate-espionage