Network Security Engineer by StoreIt Case Study - Self Paced Activities - Team Presentation - IT Assessment Answer

Assessment Task:

IT Assessment Answer

1.1 During a security assessment Steve finds a user authentication is done using a username and password pair where passwords are similar to the following:
“John1234” “workstation14” Is there anything wrong with this? If yes, please explain.

What other methods of user authentication exist and what issues, if any, do they present?

1.2 While working for Netalk, a new IP telephony company, Jessica was in the process of identifying tools to increase network security. She noticed that the current system used methods to create direct connections between end users. Are there any security risks associated with this type of setup? Explain your answer and
what should be done to increase security. What sources should Jessica investigate to learn more about the latest advancements in network security?

1.3 After submitting his proposal for recommended changes, Anthony meets with the head of security who wants to discuss the topic of creating secure connections via virtual private network (VPN). After a quick discussion on the overall technology and how it would help, the head of security asks if there are any drawbacks to using a VPN. Are there any issues with using a VPN, if yes what are they and if anything can be done to counter them? (outline common virtual private network (VPN) issues, including bandwidth and dynamic security environment)

1.4 Edward found that the networking devices in his company, a paper supplier, are all simply connected and set-up to work on their default configurations. He thought it was a miracle that there weren’t any attacks, possibly due to the small size of the company. While looking through the network diagram he notices that there are some specialised routers used which have in-built firewalls. After speaking to the regional manager of the office, he gets the go-ahead to reconfigure all of the devices.
Briefly explain how routers and switches are configured, starting with what steps Edward should take in this situation. He’s been given permission to do whatever is necessary for their security. (explain how to configure routers and switches).

1.6 Continuing from assessment question 1.3, Anthony then meets with the systems engineer to discuss setting up a VPN server in the enterprise network. The systems
engineer asks why they can’t just use a third-party VPN instead of setting up a VPN server which would increase costs to the company. How would Anthony explain that having their own VPN server would provide the best secure channel for accessing their enterprise network? (outline the function and operation of VPN concepts, including encryption, firewalls, packet tunnelling and authentication)

1.7 While working for ABC Ltd., Ronaldo was going over the various protocols that are used for various aspects of their business. Transport layer file transfer protocols, routing protocols, and protocols used for network monitoring. What are some protocols used in these categories and what are they for? (outline network protocols and operating systems).

1.8 Melissa finished setting up the new systems for enhanced security and completed all tests to ensure everything is working as it should. Once she got permission for and ordered the necessary software for monitoring the network, she set up her console and went to work. After a few days she got called in to meet with the head of IT security who asked her where she was with the security documentation. After clearing up the misunderstandings she went back to her office and started working on it.
What is included in the security documentation and why is it important? (summarise organisational issues surrounding security).

1.9 Charley was discussing security practices with one of his colleagues, Sarah. As they got on to the topic of perimeters, one of their co-workers from a different department asked what it was and how it was related to security. How would Sarah explain what perimeter means when it comes to networking, and why it’s
important? (outline security perimeters and their functions)

1.10 What is the difference between policies, standards, and procedures when it comes to network security? Give an example. While going through the security documents, Janice begins to look through the recorded incidents and notices there are frequent attacks being made in a similar way which means there must be some issue the security team has been overlooking. Going over the security set-up she finds that hypertext transfer protocol is still being used by one of the web servers.
What is HTTP and why is it a problem? What should be done to cater for it? (describe security protocols, standards and data encryption)

1.11 While going over previous security incidents, Joanna finds cases where certain IP addresses were caught eavesdropping on network communication. Those incidents seemed to happen more than things like data interception. Aside from networking related issues, the server security seemed to be doing well. The last
time any data was corrupted on a server was approximately 2 years ago. Similarly, it seems like none of the data had ever been falsified. If she had to explain the terms corrupted and falsified data to a co-worker, what would Joanna say?

1.12 Currently the company uses a third-party VPN service, after discussing it with the appropriate personnel Janice decides to implement a VPN server on site, meaning within the company network, but before she can do so she needs to determine the logistics. What types of VPNs are there and what are they used for? (outline types of VPNs, including site-to-site and user-to-site internet traffic and extranets).

1.13 From question 1.11, Joanna needs to find a way to prevent any method of tampering with crucial configuration data located on the servers. Are there any tools or methods she could use to do so? (summarise the systems and procedures related to audit and intrusion detection systems; use of virus detection software.)

Practical Assessment / Case Study:
You’re hired as a network security engineer by StoreIt, a start-up that offers cloud storage services at affordable prices. Although their promotional campaign helped to get many new customers who have signed up for their services far before their debut, they’ve also caught the attention of many hackers looking to steal their data.
There is one other network security engineer, Jessica, on the team as well. You both meet with the head of network security, Jared, who welcomes you to the team and explains the current situation.

He tells you they’ve already experienced a few attacks which was detected due to data corruption in their servers even though they haven’t actually begun their business.
All of their data will be stored on servers in an offsite server farm which will be physically guarded around the clock by a professional team of security guards. Their programming team, the people behind their application as well as making the service possible all work remotely. Their current setup makes it so that the programmers are only able to access then specific code they are needed for so it is not possible for them to steal any data which will be useful to them. They are also made to work on the company’s own platform so none of the data is stored on the endpoint devices either.

Users will access their own storage space using the company’s own application which currently uses two-factor authentications.

Afterwards, Jared says they’re hoping to have everything straightened out within 2 months when they’d like to start their business properly. You’re both given the network
documentation to review the current setup and so begin your work.

2.1 What are the main security threats and vulnerabilities faced by StoreIt? How might they affect the business? (assess and identify security threats, vulnerabilities and risks).

2.2 What methods would you propose to address the issues raised in question 2.1? (determine appropriate countermeasure for threat, vulnerability or risk).

2.3 Once you’ve identified the various risks and vulnerabilities as well as what can be done to counter them. The next step is to implement your solution. Jessica and you divide the work up between each other. You decide to take on the task for server hardening which will involve various steps. What is one way you can prevent certain request types to the servers? How can it be configured to offer the best level of security if all connections to StoreIt’s network are done via a VPN?

2.4 Suppose after discussing it with the various parties such as Jared, the systems administrator, network administrator, as well as others from the business side of things, it’s been decided that StoreIt will host its own VPN server. Aside from this you discover that StoreIt has 3 redundant, meaning 4 total, internet connections to ensure availability as well as to improve overall speed. Of course, the higher the number of connections the more entry-points there are for any would-be attackers. What are some things you will implement in order to protect the network perimeter? (install, configure and test network elements to ensure perimeter security).

2.5 After you have implemented the security measures from the previous questions, Jared asks how you plan on testing the various systems to ensure everything is working as it should. How will you do so? (test and verify function and performance of selected security measures).

2.6 Given the various systems that are established throughout StoreIt’s network, how will you manage to keep track of everything? How will you identify any incidents or attacks and what will you have to do in order to keep the network secure? (monitor network for suspicious activity and take appropriate action where necessary).

2.7 In the Learner’s Guide the importance of security documentation was mentioned as it covered all of the various aspects of the network’s security including what tools and systems were put in place and for what reason, up to plans for how to deal with various situations. Suppose that StoreIt begins its business as planned thanks to the efforts of both you and Jessica.

While looking through the latest news in network security you find that a new vulnerability has been discovered in the software that is used for multiple StoreIt servers. Similarly, you find that in order to fix this issue a new patch had been revealed and it is highly recommended that it be installed as soon as possible. While looking for how that can be done, you find that the new patch is actually currently incompatible with some other crucial services. At the same time the threat to security posed by the vulnerability is too great. What steps will you take starting from deciding how to tackle the problem up to execution of those changes? What would you do if you are not given permission to make the proposed changes? What would you do if you are given permission? (document newly discovered threats, vulnerabilities and risks, including change recommendations for approval.).

Assessment 4 – Team Presentation
Introduction
Presentation is the process of showing and explaining the content of a topic to an audience. It is often used to assess student learning in individual or group research projects. Presentation assessment consists of a topic for the student to research, discuss and present, followed by a question and answer session between a tutor and the presenter(s).
This measures the ability of students to respond, think under pressure and manage discussion. It is in this part of the presentation that the student shows his/her in-depth
knowledge of the topic and presentation skills. A good presentation is generally expected to consist of:

•  Introduction/ Aims/Objectives
•  Major points and ideas explained and summarised
•  Results/Related points/Issues/or others depending on the topic
•  Conclusion – future work
•  The presentation should be presented in the time allowed

Presentation Requirements:
Using examples, develop a class presentation of no more than 15 minutes to demonstrate your understanding of either:
a) How to assess network security threats and vulnerabilities to identify risk, or
b) How to implement countermeasures for identified vulnerabilities and threats,
or
c) How to test and verify functionality and performance of security system implemented, or
d) How to provide systems for monitoring and maintaining security

This IT Assessment has been solved by our IT experts at My Uni Paper. Our Assignment Writing Experts are efficient to provide a fresh solution to this question. We are serving more than 10000+ Students in Australia, UK & US by helping them to score HD in their academics. Our experts are well trained to follow all marking rubrics & referencing style.

Be it a used or new solution, the quality of the work submitted by our assignment experts remains unhampered. You may continue to expect the same or even better quality with the used and new assignment solution files respectively. There’s one thing to be noticed that you could choose one between the two and acquire an HD either way. You could choose a new assignment solution file to get yourself an exclusive, plagiarism (with free Turnitin file), expert quality assignment or order an old solution file that was considered worthy of the highest distinction.