Introduction: Contemporary organizations collect, store, and transmit a tremendous amount of highly sensitive data.Despite the many benefits that information technology offers, these systems are not completelysecure. Proper controls must be put in place to mitigate security risks and protect vital businessinformation.
Scenario: Fullsoft, Inc. is a software development company based in New York City. Fullsofts software productdevelopment code is kept confidential in an effort to safeguard the companys competitive advantage 8in the marketplace. Fullsoft recently experienced a malware attack; as a result, proprietary informationseems to have been leaked. The company is now in the process of recovering from this breach.You are a security professional who reports to Fullsofts infrastructure operations team. The ChiefTechnology Officer asks you and your colleagues to participate in a team meeting to discuss theincident and its potential impact on the company.
Tasks: Prepare for the meeting by deliberating on the following questions:
How would you assess the risks, threats, and/or vulnerabilities that may have allowed this incidentto occur, or could allow a similar incident to occur in the future?
What insights about risks, threats, and/or vulnerabilities can you glean from reports of similarincidents that have occurred in other organizations?
What potential outcomes should the company anticipate as a result of the malware attack andpossible exposure of intellectual property?
Which countermeasures would you recommend the company implement to detect currentvulnerabilities, respond to the effects of this and other successful attacks, and prevent futureincidents?Write an outline of key points (related to the questions above) that the team should discuss at the meeting.
Format: Microsoft Word
Font: Arial, Size 12, Double-Space
Citation Style: APA format, see link https://owl.english.purdue.edu/owl/resource/560/02/
Length: 56 pages double space.