Understanding and Mitigating Cybersecurity Risks in Big Data Storage Systems, Schemes and Mind Maps of Project Management

An in-depth analysis of cybersecurity risks in local and cloud-based big data storage systems. It covers historical risks, future risks, and recommendations for risk mitigation. The document also discusses the advantages and disadvantages of qualitative and quantitative research methods in understanding these risks.

Typology: Schemes and Mind Maps

2022/2023

Uploaded on 01/08/2024

dragon-tv-troll
dragon-tv-troll 🇻🇳

4

(1)

12 documents

1 / 41

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
1
ASSIGNMENT 2 FRONT SHEET
Qualification
Unit number and title
Unit 06: Planning a computing project
Submission date
Date Received 1st submission
Re-submission Date
17/12
Date Received 2nd submission
17/12
Student Name
Truong Van Diep
Student ID
BH00666
Class
SE06203
Assessor name
Nguyen Van Toan
Student declaration
I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that
making a false declaration is a form of malpractice.
Student’s signature
Diep
Grading grid
P5
P6
P7
P8
M3
M4
D2
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29

Partial preview of the text

Download Understanding and Mitigating Cybersecurity Risks in Big Data Storage Systems and more Schemes and Mind Maps Project Management in PDF only on Docsity!

ASSIGNMENT 2 FRONT SHEET

Qualification Unit number and title Unit 06: Planning a computing project Submission date Date Received 1st submission Re-submission Date 17 /1 2 Date Received 2nd submission 17/ Student Name Truong Van Diep Student ID BH Class SE06203 Assessor name Nguyen Van Toan Student declaration I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that making a false declaration is a form of malpractice. Student’s signature Diep Grading grid P5 P6 P7 P8 M3 M4 D

❒ Summative Feedback: ❒ Resubmission Feedback:

Grade: Assessor Signature: Date: IV Signature:

I. Introduction Cybersecurity risks involve threats to digital systems, data, and networks, encompassing various attacks like malware, phishing, and hacking. Big Data refers to large volumes of complex information, requiring specialized systems for storage, management, and analysis. Big Data storage systems handle vast amounts of data using technologies like Hadoop, NoSQL databases, and cloud-based solutions, ensuring scalability, reliability, and efficient processing. In the assignment1 delves into Project Management aspects (Plan, Charter, Objectives, Scope), detailing qualitative and quantitative research methods, defining cyber security risks, exploring Big Data concepts, and analyzing these risks in local/cloud-based systems. It discusses primary and secondary research, highlighting their advantages, disadvantages, and their application in understanding the evolution of cyber security risks over time and assessing challenges and opportunities. Operational areas and features of major cloud providers (Google - GCP, Amazon - AWS, Microsoft - Azure) regarding data protection from cyber security risks are explored. The role of stakeholders in cyber security risks within Big Data storage systems is discussed, emphasizing their impact on business success. Overall, the assignment1 seems to comprehensively investigate the various facets of cyber security risks in Big Data storage systems, from research methodologies to stakeholder involvement and the operational aspects of businesses dealing with data storage and security.

1. Project purpose: The project aims to comprehensively analyze the cybersecurity risks inherent in both local and cloud-based Big Data storage systems. It intends to provide a detailed understanding of these risks' evolution over time and anticipate potential future threats. Ultimately, the project seeks to enhance the security measures implemented within these systems, ensuring the safety and integrity of voluminous and critical data repositories. 2. Project Objectives: Identify Vulnerabilities: Analyze and identify vulnerabilities specific to local and cloud-based Big Data storage systems, considering factors like access controls, encryption, and data transfer protocols.

II. Devise comprehensive project plans for a chosen scenario, including a work and resource allocation breakdown using appropriate tools. (P5)

1. Overview: Objective: To analyze and understand the evolution of cybersecurity risks in local and cloud-based Big Data storage systems, assessing current and future risks. Duration: Estimated duration of the project. Key Stakeholders: Identify stakeholders including cybersecurity experts, data scientists, IT professionals, etc. Risk Management Approach: Define methodologies to assess, mitigate, and manage identified risks throughout the project. 2. Project communication plan Purpose Medium Frequency Audience Kickoff meeting Introduce the project objectives, scope, and Video Conference or In-Person Meeting Once at the beginning of the project or when Entire Project Team, Stakeholders, Project

key stakeholders. Set expectations, define roles, and establish initial milestones. significant milestones are achieved Sponsors Project team meetings Discuss ongoing tasks, progress, roadblocks, and align on future actions. Foster collaboration and ensure everyone is on the same page. Video Conference or In-Person Meeting / Project Management Software for Remote Teams Daly Project Team (Cybersecurity Experts, Data Analysts, IT Professionals) Check-ins – meeting recap Recap progress made since the last meeting, address any unresolved issues or concerns, and confirm action items. Brief Email or Slack Message Bi-weekly or after each project team meeting Project Team Members, Project Manager Project status meetings Present a comprehensive update on project progress, achievements, challenges, and upcoming milestones to stakeholders. Video Conference or In-Person Meeting Bi-weekly or Monthly Stakeholders, Project Sponsors, Project Team Leads UX Design Review Project Status Meeting Present comprehensive project update: progress, achievements, challenges, upcoming milestones Video Conference or In-Person Meeting Bi-weekly or Monthly Stakeholders, Project Sponsors, Project Team Leads

Create a list of tasks needed to achieve the project's goal. These can be major steps, specific products, or tangible outcomes. Step 3: Break down tasks into smaller work packages Divide each major task into smaller, more specific, and manageable work packages. This helps identify specific steps needed to complete each task. Step 4: Organize tasks hierarchically and link them Determine the level of detail for each task and decide the hierarchical structure of the WBS. Arrange tasks from high to low level to create a hierarchical tree structure. Step 5: Review and adjust the WBS Ensure that your WBS is complete and logical. Double-check to make sure all necessary tasks are included and nothing is missing. Step 6: Use appropriate tools Use tools like Excel spreadsheets, project management software like Microsoft Project, or free online tools like Trello to create and manage your WBS.

b. Results: Figure 1 : Grand chart c. Summary: Project Gantt shows an overview of project progress related to cybersecurity risks in big data storage. Important work milestones and timelines are clearly shown through work assignments and Gantt charts.

Question 4 : Do you have any advice for others to avoid being hacked? Answer : An important piece of advice is to always be vigilant and not place too much trust in unverified emails or information. Always maintain a strong password and change it regularly. Furthermore, ensure that you have high-quality security and antivirus software installed on all your devices. And if you notice any suspicious activity, report it to your service provider or security expert immediately. Research The goal of these questions is to gather information and experiences from the person being asked about being attacked by a hacker, specifically:

  • Question 1: When and how did you know that you were being attacked by a hacker? Objective: Understand the ability to recognize and be aware of network attack activities from hackers.
  • Question 2: Can you share with us about the specific attack you experienced, affecting not only your finances but also your trust in online security? Objective: Express the personal experience of the person being asked regarding the current situation of being attacked, losing money, and also losing trust in online security.
  • Question 3: What did you do to minimize the consequences after being attacked? Objective: Focus on the measures that the attacked person has taken after being attacked to minimize the consequences, such as changing passwords, notifying banks and authorities, installing security software, etc.
  • Question 4: Do you have any advice for others to avoid being attacked?

Objective: Share knowledge and personal experiences so that others can apply preventive measures to avoid being attacked, such as using strong passwords, not sharing important personal information, regularly updating security software, etc. Results Based on the given questions, the resulting information could include the following:

-. The response to the first question would provide the timeframe and method through which the person realized they were attacked by hackers. This will give insight into how the individual became aware of the security breach. -. The second question prompts the person to disclose details about a specific attack that not only resulted in financial loss but also impacted their trust in online security. This response will provide specific information about how the attack affected them personally. -. The third question would gather information about the actions taken by the individual to minimize the negative consequences of being hacked. This could include steps such as contacting authorities, changing passwords, disabling compromised accounts, or seeking professional help.

  • In response to the fourth question, the person who has experienced being hacked might offer advice to others on how to avoid similar situations. This could involve suggestions like using strong and unique passwords, enabling two-factor authentication, being cautious of phishing attempts, regularly updating software, and using reputable security software. Summary These questions provide a diverse perspective on online security issues, from identifying the timing of attacks to addressing the consequences and providing advice for other users. The data collected from these questions can provide valuable information. Furthermore, qualitative research methods investigating cybersecurity risks in big data storage systems provide a structured approach to integrating qualitative data, such as interview responses, with quantitative data. This integration enables a comprehensive view of cybersecurity risk, taking into account the human experience

By releasing NSA cyber weapons to the public, the Shadow Brokers have made it easy for hackers to perfect man-in-the- middle attacks, which can range from eavesdropping on digital communications to controlling electronic messages. MITM attacks can be as sophisticated as the NSA collecting web traffic by means of posing as Google, but the most common attack involves sniffing data travelling from personal computers to websites and internet apps. If you don’t have a quality home security system, it may be a good time to get one soon. This particular cyber risk is one of the main reasons more Canadians are taking advantage of some of the most reliable VPN services in Canada (French: Meilleur VPN 2022) Results:

  • Ransomware:
  • I. Introduction
      1. Project purpose:
      1. Project Objectives:
  • II. Devise comprehensive project plans for a chosen scenario, including a work and resource allocation breakdown using appropriate tools. (P5)
    1. Overview:
      1. Project communication plan
      1. WBS and Gantt chart:
      • a. Definition:...........................................................................................................................................................................................................
      • b. Results:
      • c. Summary:
  • III. Communicate appropriate project recommendations for technical and non-technical audiences. (P6).
      1. Analysis qualitative data
      1. Analysis quantitative data
      1. Project recommendation
      • a. For non-technical audience:.............................................................................................................................................................................
      • b. For technical audience:
  • IV. Arguments for the planning decisions made when developing the project plans (P7)
      1. Arguments for the project planning
  • V. Discuss accuracy and reliability of the different research methods applied (P8).
      1. Overview of qualitative and quantitative research
    • Analysis) 2. Advantages and disadvantages of the research method on assignment 1 (Observational Research, Quantitative Analysis, Qualitative
  • VI. M3 Produce comprehensive project plans that effectively consider aims, objectives and risks/benefits for an identified organization
  • rationales for planning decisions made VII. M4 Assess the extent to which the project recommendations meet the needs of the identified organisation, including fullysupported
  • IX. Conclusion
  • X. References
  • Figure 1: Grand chart Table of Figures
  • Figure
  • Figure
  • Figure
  • Figure
  • Figure
  • Figure
  • Figure
  • Figure 9: Project team
  • Figure
  • Figure
  • Figure
  • Figure

Spam: Findings from the 2021 Spamhaus report include the top 10 most problematic countries in the world. The order goes by the number of live spam issues at the time of the report: China (3,332) , US (3,130) ,Russia (786), Japan (389) The Republic of Korea (386) ,India (357), Turkey (342), Hong Kong (317), Vietnam (284), Dominican Republic (249). The biggest problem here is when a certain country doesn’t take action to deal with spamming issues. They are therefore undermining global attempts to put an end to spam. In these countries, anti-spam laws are non-existent or simply inadequate. Figure 6