Expert answer:critique the attached assignment

Uncategorized

Expert answer:The major issue I
see when reading the Red Team’s report is the lack of security
awareness by the Sifers-Grayson employees. This could be caused by
complacency and the feeling of being secure because of the small town
environment or ignorance from really not knowing any better. Regardless,
it goes to show the importance of security policies to ensure every
employee understands the risks and knows how to do their part to keep
the company safe.For instance, the Red Team reported that it had stolen passwords for
20% of the employee logins using keylogging software installed on USB
keys that were left on the lunch table in the headquarters building
employee lounge. That means at least one employee picked up the USB and
plugged it into a system without knowing what it was. NIST’s Security and Privacy Controls for Federal Information Systems and Organizations
suggests the safeguards for media protection. The media use control,
MP-7, states “the organization prohibits the use of portable storage
devices in organizational information systems when such devices have no
identifiable owner” (U.S. Department of Commerce [DoC], 2015, p. F-124).
Therefore, with no owner identified for the USB keys in the break room,
no employee should have plugged them in.Additionally, the Red Team reported that the Sifers-Grayson employees
were quite friendly and talkative as they opened the RFID controlled
doors for the “new folks” on the engineering staff. This alone is an
incident that should be identified by both OPSEC and physical security
policies. NIST also outlines controls for physical and environmental
protection. PE-2 (Physical Access Authorizations) suggests all visitors
should be required to show two forms of ID and unescorted access should
be restricted (DoC, 2015).Reference:U.S. Department of Commerce. National Institute of Standards and
Technology. Computer Security Division. Information Technology
Laboratory. (2015, January 22). Security and Privacy Controls for Federal Information Systems and Organizations (NIST Special Publication 800-53, Rev. 4). doi:10.6028/NIST.SP.800-53r4

How it works

Paste your instructions in the instructions box. You can also attach an instructions file
Select the writer category, deadline, education level and review the instructions
Make a payment for the order to be assignment to a writer
Download the paper after the writer uploads it

Will the writer plagiarize my essay?

You will get a plagiarism-free paper and you can get an originality report upon request.

Is this service safe?

All the personal information is confidential and we have 100% safe payment methods. We also guarantee good grades

Continue to order Get a quote

Place your order

Type of paper

Academic level

Deadline

Pages (550 words)

Approximate price: $22

Our guarantees

Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.

Money-back guarantee

You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.

Zero-plagiarism guarantee

Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.

Free-revision policy

Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.

Privacy policy

Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.

Fair-cooperation guarantee

By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.