Describe the current configuration along with the steps taken to harden the system based on best practices. Describe how the hardening techniques improve the security of the system.
Added by April G.
Step 1
- Identify any unnecessary services, open ports, and default settings that could pose security risks. Show more…
Show all steps
Your feedback will help us improve your experience
Chandra Jain and 83 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
Discuss how to enhance the security of a Linux computer in a systematic manner.
Chandra J.
You are the Cybersecurity Analyst for a mid-size retail company. Your company has just acquired a rival company and has discovered that its security practices are deficient and need to be updated to be compliant with your company's standards. The acquisition's primary network uses Microsoft Active Directory with Windows Server 2019 and Windows 10 on the desktops. In addition, the point of sale (POS) system is on its own network and consists of four Linux servers with Oracle 11g databases running on top of them. There is a plan to merge the two networks, but they do not want to proceed until they are sure that all systems have been sufficiently hardened. Management has asked you to supply hardening recommendations only for the following systems: - Windows Server 2019 - Domain Controllers - Web servers (Intranet mainly) - Oracle Linux (POS Servers) - Windows 10 - Users using the POS software - Users not using the POS software The domain controllers and POS servers need extra security, as do the Windows 10 machines running the POS software, so use Level 2 controls for them. Use Level 1 controls for the rest. Using the CIS Controls and Benchmarks, craft a basic hardening guide for all five groups of systems. The benchmark documentation for these systems is extensive, so just pick a few that you feel would be important enough to include in your recommendations.
Akash M.
As organizations embrace cloud computing, cybersecurity practices continue to evolve. A robust cloud security posture protects assets from bad actors and helps organizations realize the benefits of cloud computing. In this task, you will assume the role of a cloud security engineer for SWBTL LLC. You have been hired following the departure of a disgruntled employee who left behind no documentation and created cybersecurity concerns. You will analyze the current environment, using the lab environment web link and the “Company Overview and Requirements” attachment, making recommendations and implementing configuration changes in alignment with regulatory and business requirements. The analysis should also include shared responsibilities, risks, threats, and countermeasures. The chief information officer has requested a walk-through of the environment with demonstrations of security misalignments, updated configurations, and how the updates meet compliance requirements.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD