SlideShare a Scribd company logo

Cst 630 project 2 incident response

Download as DOC, PDF
P
persons20ar

The document outlines a multi-step project aimed at developing a cybersecurity incident report (CIR) focused on wireless and BYOD security plans. It includes steps for tracking suspicious employee behavior, creating a continuous improvement plan, implementing remote configuration management, investigating potential employee misconduct, and analyzing wireless traffic. The final deliverables include an executive briefing, an executive summary, and a comprehensive CIR document meant for company leadership.

Education
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
CST 630 Project 2 Incident Response Click Here to Buy the Tutorial http://www.newtonhelp.com/CST-630/product-29121- CST-630-Project-2-Incident-Response For more course tutorials visit www.newtonhelp.com Project 2 Step 1: Develop a Wireless and BYOD Security Plan Since the company you work for has instituted a bring your own device (BYOD) policy, security attitudes have been lax and all sorts of devices, authorized and unauthorized, have been found connected to the company's wireless infrastructure. In this first step, you will develop a wireless and BYOD security plan for the company. Use the NIST Guidelines for Securing Wireless Local Area Networks (WLANs) Special Publication 800-153 to provide an executive summary to answer other security concerns related to BYOD and wireless. Within your cybersecurity incident report, provide answers to the threat of unauthorized equipment or rogue access points on the company wireless network and the methods to find other rogue access points. Describe how to detect rogue access points and how they can actually connect to the network. Describe how to identify authorized access points within your network.
Within your plan, include how the Cyber Kill Chain framework and approach could be used to improve the incident response times for networks. Include this at the beginning of your CIR as the basis for all wireless- and BYOD-related problems within the network. Title the section "Wireless and BYOD Security Plan." Click the following link to learn more about security management: Security Management. In the next step, you will explore a scenario on suspicious behavior, and your report will provide another section of your CIR. Step 2: Track Suspicious Behavior You've completed your wireless and BYOD security plan. Now it's time to take a look at another workplace situation. You have been notified of an employee exhibiting suspicious behavior. You decide to track the employee's movements by using
various tools and techniques. You know the location and time stamps associated with the employee's mobile device. How would you track the location of the company asset? Explain how identity theft could occur and how MAC spoofing could take place in the workplace. How would you protect against both identity theft and MAC spoofing? Address if it is feasible to determine if MAC spoofing and identity theft has taken place in the workplace. Include a whitelist of approved devices for this network. Examples may include authorized access points, firewalls, and other similar devices. Are there any legal issues, problems, or concerns with your actions? What should be conducted before starting this investigation? Were your actions authorized, was the notification valid, or are there any other concerns? Include your responses as part of the CIR with the title "Tracking Suspicious Behavior." In the next step, you will explore another workplace scenario, and your responses will help you formulate a continuous improvement plan, which will become another part of your CIR.
Step 3: Develop a Continuous Improvement Plan Now that you've completed the section on tracking suspicious behavior for your CIR, you are confronted with another situation in the workplace. You receive a memo for continuous improvement in the wireless network of your company, and you are asked to provide a report on the wireless network used in your company. You have been monitoring the activities on the WPA2. Provide for your leadership a description of wired equivalent privacy and also Wi-Fi protected access networks, for education purposes. Include the pros and cons of each type of wireless network, as well as WPA2. Since WPA2 uses encryption to provide secure communications, define the scheme for using preshared keys for encryption. Is this FIPS 140-2 compliant, and if not, what is necessary to attain this? Include this for leadership. Include a list of other wireless protocols, such as Bluetooth, and provide a comparative analysis of four protocols including the pros, cons, and suitability for your company. Include your responses as part of the CIR with the title "Continuous Improvement Plan." In the next step, you will look at yet another workplace scenario, and you will use that incident to show management how remote configuration management works.
Step 4: Develop Remote Configuration Management You've completed the continuous improvement plan portion of the CIR. Now, it's time to show how your company has implemented remote configuration management. Start your incident report with a description of remote configuration management and how it is used in maintaining the security posture of your company's network. Then, consider the following scenario: An undocumented device is found on the company network. You have determined that the owner of the device should be removed from the network. Implement this and explain how you would remove the employee's device. How would you show proof that the device was removed? Include your responses as part of the CIR with the title "Remote Configuration Management." In the next step, you will illustrate how you investigate possible employee misconduct.
Step 5: Investigate Employee Misconduct In this portion of your CIR report, you will show how you would investigate possible employee misconduct. You have been given a report that an employee has recorded logins during unofficial duty hours. The employee has set up access through an ad-hoc wireless network. Provide a definition of ad hoc wireless networks and identify the threats and vulnerabilities to a company. How could this network contribute to the company infrastructure and how would you protect against those threats? Use notional information or actual case data and discuss. Address self-configuring dynamic networks on open access architecture and the threats and vulnerabilities associated with them, as well as the possible protections that should be implemented. From your position as an incident manager, how would you detect an employee connecting to a self-configuring network or an ad hoc network? Provide this information in the report. How would signal hiding be a countermeasure for wireless networks? What are the countermeasures for signal hiding? How is the service set identifier (SSID) used by cybersecurity professionals on wireless networks? Are these always broadcast, and if not, why not? How would you validate that the user is working outside of business hours? Include your responses as part of the CIR with the title "Employee Misconduct." In the next step, you will use lab tools to analyze wireless traffic.
Step 6: Analyze Wireless Traffic You've completed several steps that you will use to present your CIR. In this step, as part of a virtual lab, you will analyze wireless traffic. You are given access to precaptured files of wireless traffic on the company network. This is another way to monitor employee behavior and detect any malicious behavior, intentional or even unintentional. Note: You will use the tools in Workspace for this step. If you need help outside the classroom, you can register for the CLAB 699 Cyber Computing Lab Assistance (go to the Discussions List for registration information). Lab assistants are available to help. Click here to access the instructions for Navigating the Workspace and the Lab Setup. Click here to access the Project 2 Workspace Exercise Instructions. Explore the tutorials and user guides to learn more about the tools you will use. Then, enter Workspace. Include your responses from the lab as part of the CIR with the title "Wireless Traffic Analysis."
Step 7: Prepare the Cybersecurity Incident Report, Executive Briefing, and Executive Summary You've completed all of the individual steps for your cybersecurity incident report. It's time to combine the reports you completed in the previous steps into a single CIR. The assignments for this project are as follows: Executive briefing: This is a three- to five-slide visual presentation for business executives and board members. Executive summary: This is a one-page summary at the beginning of your CIR. Cybersecurity Incident Report (CIR): Your report should be a minimum 12-page double-spaced Word document with citations in APA format. The page count does not include figures, diagrams, tables or citations. Submit all three documents to the assignment folder. Deliverables: Cybersecurity Incident Report (CIR), Slides to Support Executive Briefing
Learning Competencies: 5.1, 5.3, 5.5., 5.6, 5.7, 5.9
Learning Competencies: 5.1, 5.3, 5.5., 5.6, 5.7, 5.9

More Related Content

DOC
Cst 630 project 2 incident response
persons20ar
 
DOC
Cst 630 project 2 incident response
persons20ar
 
PPTX
PACE-IT: Network Access Control
Pace IT at Edmonds Community College
 
PPTX
NetWatcher Customer Overview
Scott Suhy
 
PDF
Why Penetration Tests Are Important Cyber51
martinvoelk
 
PPTX
VAPT, Ethical Hacking and Laws in India by prashant mali
Adv. Prashant Mali ♛ [Bsc(Phy),MSc(Comp Sci), CCFP,CISSA,LLM]
 
PPTX
AKS IT Corporate Presentation
aksit_services
 
PPTX
Aksit profile final
Saurabh Kumar
 
Cst 630 project 2 incident response
persons20ar
 
Cst 630 project 2 incident response
persons20ar
 
PACE-IT: Network Access Control
Pace IT at Edmonds Community College
 
NetWatcher Customer Overview
Scott Suhy
 
Why Penetration Tests Are Important Cyber51
martinvoelk
 
VAPT, Ethical Hacking and Laws in India by prashant mali
Adv. Prashant Mali ♛ [Bsc(Phy),MSc(Comp Sci), CCFP,CISSA,LLM]
 
AKS IT Corporate Presentation
aksit_services
 
Aksit profile final
Saurabh Kumar
 

What's hot (20)

PPTX
Vulnerability assessment & Penetration testing Basics
Mohammed Adam
 
PDF
DTS Solution - Penetration Testing Services v1.0
Shah Sheikh
 
PDF
Dp4301696701
IJERA Editor
 
PDF
Network Vulnerability and Patching
Emmanuel Udeagha B.
 
PDF
NIST CSD Cybersecurity Publications 20160417
James W. De Rienzo
 
PDF
CompTIA PenTest+: Everything you need to know about the exam
Infosec
 
PDF
IRJET- Phishdect & Mitigator: SDN based Phishing Attack Detection
IRJET Journal
 
PDF
Security Policy Checklist
backdoor
 
PPTX
Journey from CCNA to Certified Network Defender v2
EC-Council
 
PDF
A Hybrid Intrusion Detection System for Network Security: A New Proposed Min ...
IJCSIS Research Publications
 
PPTX
How I Learned to Stop Information Sharing and Love the DIKW
Sounil Yu
 
PDF
An Extensive Survey of Intrusion Detection Systems
IRJET Journal
 
PDF
Wfh security risks - Ed Adams, President, Security Innovation
Priyanka Aash
 
PDF
Auditing a Wireless Network and Planning for a Secure WLAN Implementation
CARMEN ALCIVAR
 
PDF
RAMNSS_2016_service_porfolio
Rhys A. Mossom
 
PDF
Oissg
Conferencias FIST
 
PPTX
Learn intrusion detection: Using Zeek and Elastic for incident response
Infosec
 
PPTX
IBM ridefinisce la strategia e l'approccio verso gli Avanced Persistent Threa...
Luigi Delgrosso
 
DOCX
VAPT- A Service on Eucalyptus Cloud
Swapna Shetye
 
PDF
Intrusion detection system: classification, techniques and datasets to implement
IRJET Journal
 
Vulnerability assessment & Penetration testing Basics
Mohammed Adam
 
DTS Solution - Penetration Testing Services v1.0
Shah Sheikh
 
Dp4301696701
IJERA Editor
 
Network Vulnerability and Patching
Emmanuel Udeagha B.
 
NIST CSD Cybersecurity Publications 20160417
James W. De Rienzo
 
CompTIA PenTest+: Everything you need to know about the exam
Infosec
 
IRJET- Phishdect & Mitigator: SDN based Phishing Attack Detection
IRJET Journal
 
Security Policy Checklist
backdoor
 
Journey from CCNA to Certified Network Defender v2
EC-Council
 
A Hybrid Intrusion Detection System for Network Security: A New Proposed Min ...
IJCSIS Research Publications
 
How I Learned to Stop Information Sharing and Love the DIKW
Sounil Yu
 
An Extensive Survey of Intrusion Detection Systems
IRJET Journal
 
Wfh security risks - Ed Adams, President, Security Innovation
Priyanka Aash
 
Auditing a Wireless Network and Planning for a Secure WLAN Implementation
CARMEN ALCIVAR
 
RAMNSS_2016_service_porfolio
Rhys A. Mossom
 
Oissg
Conferencias FIST
 
Learn intrusion detection: Using Zeek and Elastic for incident response
Infosec
 
IBM ridefinisce la strategia e l'approccio verso gli Avanced Persistent Threa...
Luigi Delgrosso
 
VAPT- A Service on Eucalyptus Cloud
Swapna Shetye
 
Intrusion detection system: classification, techniques and datasets to implement
IRJET Journal
 
Ad

Similar to Cst 630 project 2 incident response (20)

DOCX
here has been an increase in the number of cybersecurity incident re.docx
simonithomas47935
 
DOCX
Project 1CST630 Project ChecklistStudent Name DateNote This che
davieec5f
 
DOC
Cst 630 Motivated Minds/newtonhelp.com
amaranthbeg53
 
DOC
Cst 630 Extraordinary Success/newtonhelp.com
amaranthbeg113
 
DOC
Cst 630 Education is Power/newtonhelp.com
amaranthbeg73
 
PDF
CST 630 RANK Remember Education--cst630rank.com
chrysanthemu49
 
DOCX
CST 630 RANK Achievement Education--cst630rank.com
kopiko147
 
DOCX
Cst 630Education Specialist / snaptutorial.com
McdonaldRyan79
 
DOC
Cst 630 Inspiring Innovation--tutorialrank.com
PrescottLunt385
 
DOCX
CST 630 RANK Inspiring Innovation--cst630rank.com
KeatonJennings104
 
DOCX
CST 630 RANK Educational Specialist--cst630rank.com
VSNaipaul15
 
PDF
CST 630 RANK Become Exceptional--cst630rank.com
agathachristie113
 
PDF
CST 630 RANK Introduction Education--cst630rank.com
agathachristie266
 
DOCX
CST 630 RANK Redefined Education--cst630rank.com
claric241
 
DOCX
CST 630 Exceptional Education - snaptutorial.com
DavisMurphyA97
 
PDF
Cst 630 Education Organization-snaptutorial.com
robertlesew6
 
PDF
Cst 630 Believe Possibilities / snaptutorial.com
Davis11a
 
DOCX
CST 630 Effective Communication - snaptutorial.com
donaldzs8
 
DOC
Cst 630 Enhance teaching / snaptutorial.com
Baileyabw
 
PPTX
Dncybersecurity
Anne Starr
 
here has been an increase in the number of cybersecurity incident re.docx
simonithomas47935
 
Project 1CST630 Project ChecklistStudent Name DateNote This che
davieec5f
 
Cst 630 Motivated Minds/newtonhelp.com
amaranthbeg53
 
Cst 630 Extraordinary Success/newtonhelp.com
amaranthbeg113
 
Cst 630 Education is Power/newtonhelp.com
amaranthbeg73
 
CST 630 RANK Remember Education--cst630rank.com
chrysanthemu49
 
CST 630 RANK Achievement Education--cst630rank.com
kopiko147
 
Cst 630Education Specialist / snaptutorial.com
McdonaldRyan79
 
Cst 630 Inspiring Innovation--tutorialrank.com
PrescottLunt385
 
CST 630 RANK Inspiring Innovation--cst630rank.com
KeatonJennings104
 
CST 630 RANK Educational Specialist--cst630rank.com
VSNaipaul15
 
CST 630 RANK Become Exceptional--cst630rank.com
agathachristie113
 
CST 630 RANK Introduction Education--cst630rank.com
agathachristie266
 
CST 630 RANK Redefined Education--cst630rank.com
claric241
 
CST 630 Exceptional Education - snaptutorial.com
DavisMurphyA97
 
Cst 630 Education Organization-snaptutorial.com
robertlesew6
 
Cst 630 Believe Possibilities / snaptutorial.com
Davis11a
 
CST 630 Effective Communication - snaptutorial.com
donaldzs8
 
Cst 630 Enhance teaching / snaptutorial.com
Baileyabw
 
Dncybersecurity
Anne Starr
 
Ad

Recently uploaded (20)

PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
PPTX
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
PDF
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
PDF
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
PDF
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
PDF
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
PPTX
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
PDF
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
PPTX
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
PDF
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
PPTX
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
PDF
Basic Mud Logging Guide for educational purpose
wdandworks
 
PPTX
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
PDF
Classroom Observation Tools for Teachers
Nicaramirez
 
PDF
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PDF
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
PPTX
Institutional Correction lecture only . . .
limvtheghins
 
PPTX
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
PDF
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
PDF
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
Basic Mud Logging Guide for educational purpose
wdandworks
 
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
Classroom Observation Tools for Teachers
Nicaramirez
 
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
Institutional Correction lecture only . . .
limvtheghins
 
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 

Cst 630 project 2 incident response

  • 1. CST 630 Project 2 Incident Response Click Here to Buy the Tutorial http://www.newtonhelp.com/CST-630/product-29121- CST-630-Project-2-Incident-Response For more course tutorials visit www.newtonhelp.com Project 2 Step 1: Develop a Wireless and BYOD Security Plan Since the company you work for has instituted a bring your own device (BYOD) policy, security attitudes have been lax and all sorts of devices, authorized and unauthorized, have been found connected to the company's wireless infrastructure. In this first step, you will develop a wireless and BYOD security plan for the company. Use the NIST Guidelines for Securing Wireless Local Area Networks (WLANs) Special Publication 800-153 to provide an executive summary to answer other security concerns related to BYOD and wireless. Within your cybersecurity incident report, provide answers to the threat of unauthorized equipment or rogue access points on the company wireless network and the methods to find other rogue access points. Describe how to detect rogue access points and how they can actually connect to the network. Describe how to identify authorized access points within your network.
  • 2. Within your plan, include how the Cyber Kill Chain framework and approach could be used to improve the incident response times for networks. Include this at the beginning of your CIR as the basis for all wireless- and BYOD-related problems within the network. Title the section "Wireless and BYOD Security Plan." Click the following link to learn more about security management: Security Management. In the next step, you will explore a scenario on suspicious behavior, and your report will provide another section of your CIR. Step 2: Track Suspicious Behavior You've completed your wireless and BYOD security plan. Now it's time to take a look at another workplace situation. You have been notified of an employee exhibiting suspicious behavior. You decide to track the employee's movements by using
  • 3. various tools and techniques. You know the location and time stamps associated with the employee's mobile device. How would you track the location of the company asset? Explain how identity theft could occur and how MAC spoofing could take place in the workplace. How would you protect against both identity theft and MAC spoofing? Address if it is feasible to determine if MAC spoofing and identity theft has taken place in the workplace. Include a whitelist of approved devices for this network. Examples may include authorized access points, firewalls, and other similar devices. Are there any legal issues, problems, or concerns with your actions? What should be conducted before starting this investigation? Were your actions authorized, was the notification valid, or are there any other concerns? Include your responses as part of the CIR with the title "Tracking Suspicious Behavior." In the next step, you will explore another workplace scenario, and your responses will help you formulate a continuous improvement plan, which will become another part of your CIR.
  • 4. Step 3: Develop a Continuous Improvement Plan Now that you've completed the section on tracking suspicious behavior for your CIR, you are confronted with another situation in the workplace. You receive a memo for continuous improvement in the wireless network of your company, and you are asked to provide a report on the wireless network used in your company. You have been monitoring the activities on the WPA2. Provide for your leadership a description of wired equivalent privacy and also Wi-Fi protected access networks, for education purposes. Include the pros and cons of each type of wireless network, as well as WPA2. Since WPA2 uses encryption to provide secure communications, define the scheme for using preshared keys for encryption. Is this FIPS 140-2 compliant, and if not, what is necessary to attain this? Include this for leadership. Include a list of other wireless protocols, such as Bluetooth, and provide a comparative analysis of four protocols including the pros, cons, and suitability for your company. Include your responses as part of the CIR with the title "Continuous Improvement Plan." In the next step, you will look at yet another workplace scenario, and you will use that incident to show management how remote configuration management works.
  • 5. Step 4: Develop Remote Configuration Management You've completed the continuous improvement plan portion of the CIR. Now, it's time to show how your company has implemented remote configuration management. Start your incident report with a description of remote configuration management and how it is used in maintaining the security posture of your company's network. Then, consider the following scenario: An undocumented device is found on the company network. You have determined that the owner of the device should be removed from the network. Implement this and explain how you would remove the employee's device. How would you show proof that the device was removed? Include your responses as part of the CIR with the title "Remote Configuration Management." In the next step, you will illustrate how you investigate possible employee misconduct.
  • 6. Step 5: Investigate Employee Misconduct In this portion of your CIR report, you will show how you would investigate possible employee misconduct. You have been given a report that an employee has recorded logins during unofficial duty hours. The employee has set up access through an ad-hoc wireless network. Provide a definition of ad hoc wireless networks and identify the threats and vulnerabilities to a company. How could this network contribute to the company infrastructure and how would you protect against those threats? Use notional information or actual case data and discuss. Address self-configuring dynamic networks on open access architecture and the threats and vulnerabilities associated with them, as well as the possible protections that should be implemented. From your position as an incident manager, how would you detect an employee connecting to a self-configuring network or an ad hoc network? Provide this information in the report. How would signal hiding be a countermeasure for wireless networks? What are the countermeasures for signal hiding? How is the service set identifier (SSID) used by cybersecurity professionals on wireless networks? Are these always broadcast, and if not, why not? How would you validate that the user is working outside of business hours? Include your responses as part of the CIR with the title "Employee Misconduct." In the next step, you will use lab tools to analyze wireless traffic.
  • 7. Step 6: Analyze Wireless Traffic You've completed several steps that you will use to present your CIR. In this step, as part of a virtual lab, you will analyze wireless traffic. You are given access to precaptured files of wireless traffic on the company network. This is another way to monitor employee behavior and detect any malicious behavior, intentional or even unintentional. Note: You will use the tools in Workspace for this step. If you need help outside the classroom, you can register for the CLAB 699 Cyber Computing Lab Assistance (go to the Discussions List for registration information). Lab assistants are available to help. Click here to access the instructions for Navigating the Workspace and the Lab Setup. Click here to access the Project 2 Workspace Exercise Instructions. Explore the tutorials and user guides to learn more about the tools you will use. Then, enter Workspace. Include your responses from the lab as part of the CIR with the title "Wireless Traffic Analysis."
  • 8. Step 7: Prepare the Cybersecurity Incident Report, Executive Briefing, and Executive Summary You've completed all of the individual steps for your cybersecurity incident report. It's time to combine the reports you completed in the previous steps into a single CIR. The assignments for this project are as follows: Executive briefing: This is a three- to five-slide visual presentation for business executives and board members. Executive summary: This is a one-page summary at the beginning of your CIR. Cybersecurity Incident Report (CIR): Your report should be a minimum 12-page double-spaced Word document with citations in APA format. The page count does not include figures, diagrams, tables or citations. Submit all three documents to the assignment folder. Deliverables: Cybersecurity Incident Report (CIR), Slides to Support Executive Briefing
  • 9. Learning Competencies: 5.1, 5.3, 5.5., 5.6, 5.7, 5.9
  • 10. Learning Competencies: 5.1, 5.3, 5.5., 5.6, 5.7, 5.9