Network Security and Vulnerability Management, Lecture notes of Network security

The importance of network security and vulnerability management in organizations. It explains the impact of information and computer network security attacks and the objective of information and computer network security within an organization. It also defines threat, vulnerabilities, and risk. insights into modern vulnerability management and risk-based vulnerability management.

Typology: Lecture notes

2019/2020

Available from 03/31/2022

niquedslv
niquedslv 🇵🇭

2 documents

1 / 2

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
PLATFORM TECHNOLOGIES
NAME: DASILVA, AIRAH MONIQUE E.
COURSE: BSIT-III
1. Give atleast 8 network security platform (tools: hardware or software) with their uses and function.
2. What can be an impact of information and computer network security attack?
3. What is the objective of information and computer network security within an organization?
4. Explain: Threat, Vulnerabilities and Risk?
Answer:
1. Network security affects many organisations, whether they are large, small, or government
organisations. If network security is breached an intruder can do all sorts of harm. That is why people
need to be aware of and to be educated about network security and how to secure their computer and
network. Systems are required to be updated regularly as new security flaws are discovered. Without
being up to date, it makes it easy for a=hacker=to gain unauthorized access to the system.
2. An=information security=policy (ISP) is a set of rules, policies and procedures designed to ensure all
users and networks within an organization meet minimum IT security and data protection security
requirements.
ISPs should address all data, programs, systems, facilities, infrastructure, users, third-parties and
fourth-parties of an organization.
3. In a nutshell,=riskis the potential for loss, damage or destruction of assets or data caused by a cyber
threat.=Threatis a process that magnifies the likelihood of a negative event, such as the exploit of a
vulnerability. And a=vulnerabilityis a weakness in your infrastructure, networks or applications that
potentially exposes you to threats.==
So when a threat targets a vulnerability that exists in your IT infrastructure, network or
applications, it can result in risk to your assets, data or business.
That’s the high level. Now let’s dig a bit deeper.
4. Risk.An organization’s risk profile fluctuates depending on internal and external environmental
factors. It incorporates not just the potential or probability of a negative event, but the impact that event
may have on your infrastructure. And though risk can never be 100% eliminated—cybersecurity is a
persistently moving target, after all—it can be managed to a level that satisfies your organization’s
tolerance for risk. No matter how you deal with it, the end goal remains the same—to keep your overall
risk low, manageable and known.=
Helping businesses manage cybersecurity risk is the job of=vulnerability management (VM) solutions
.
Traditional VM tends to adopt the “everything is a risk” view, which leaves Security and IT teams
scrambling to somehow prioritize and remediate an=ever-increasing list of vulnerabilities
, many of which
don’t actually pose a real danger to the organization. This results in wasted time, money, and resources,
and very often=creates a rift
=between Security teams struggling to blindly prioritize what’s most
important and IT and DevOps teams who have to remediate without context or meaningful prioritization.
Ultimately, risk is not lowered and teams cannot provide comprehensive or accurate reports of their
efforts.=
5.
Modern vulnerability management
=flips the traditional model on its head. Instead of using arbitrary
prioritization methods, organizations define their acceptable level of risk and tailor their risk
prioritization accordingly based on real-time threat intelligence, advanced data science and machine
learning-powered prioritization. This matures standard, inefficient, and ineffective vulnerability
management into risk-based vulnerability management (RBVM). A risk based approach to vulnerability
management helps isolate the organization’s top risks, eliminating the need for guesswork and wasted
cycles spent chasing vulns that won’t move the needle on risk. Ultimately, a modern RBVM program
helps you make real, significant strides in lowering your risk profile.=
6. Threat.=Today’s cybersecurity landscape roils with an endless stream of potential threats—from
malware that plants dangerous executables in your software and ransomware that locks up your systems
to specially targeted hacker attacks. All of these threats look for a way in, a vulnerability in your
environment that they can exploit. Some threats, however, hold more potential for exploitation than
others. The more rich, fresh data you can access and analyze about these threats, the more strategic and
impactful decisions you can make regarding your vulnerability management and remediation.=
pf2

Partial preview of the text

Download Network Security and Vulnerability Management and more Lecture notes Network security in PDF only on Docsity!

PLATFORM TECHNOLOGIES NAME: DASILVA, AIRAH MONIQUE E. COURSE: BSIT-III

  1. Give atleast 8 network security platform (tools: hardware or software) with their uses and function.
  2. What can be an impact of information and computer network security attack?
  3. What is the objective of information and computer network security within an organization?
  4. Explain: Threat, Vulnerabilities and Risk? Answer:
  5. Network security affects many organisations, whether they are large, small, or government organisations. If network security is breached an intruder can do all sorts of harm. That is why people need to be aware of and to be educated about network security and how to secure their computer and network. Systems are required to be updated regularly as new security flaws are discovered. Without being up to date, it makes it easy for a hacker to gain unauthorized access to the system.
  6. An information security policy (ISP) is a set of rules, policies and procedures designed to ensure all users and networks within an organization meet minimum IT security and data protection security requirements. ISPs should address all data, programs, systems, facilities, infrastructure, users, third-parties and fourth-parties of an organization.
  7. In a nutshell, risk is the potential for loss, damage or destruction of assets or data caused by a cyber threat. Threat is a process that magnifies the likelihood of a negative event, such as the exploit of a vulnerability. And a vulnerability is a weakness in your infrastructure, networks or applications that potentially exposes you to threats. So when a threat targets a vulnerability that exists in your IT infrastructure, network or applications, it can result in risk to your assets, data or business. That’s the high level. Now let’s dig a bit deeper.
  8. Risk. An organization’s risk profile fluctuates depending on internal and external environmental factors. It incorporates not just the potential or probability of a negative event, but the impact that event may have on your infrastructure. And though risk can never be 100% eliminated—cybersecurity is a persistently moving target, after all—it can be managed to a level that satisfies your organization’s tolerance for risk. No matter how you deal with it, the end goal remains the same—to keep your overall risk low, manageable and known. Helping businesses manage cybersecurity risk is the job of vulnerability management (VM) solutions. Traditional VM tends to adopt the “everything is a risk” view, which leaves Security and IT teams scrambling to somehow prioritize and remediate an ever-increasing list of vulnerabilities, many of which don’t actually pose a real danger to the organization. This results in wasted time, money, and resources, and very often creates a rift between Security teams struggling to blindly prioritize what’s most important and IT and DevOps teams who have to remediate without context or meaningful prioritization. Ultimately, risk is not lowered and teams cannot provide comprehensive or accurate reports of their efforts.
  9. Modern vulnerability management flips the traditional model on its head. Instead of using arbitrary prioritization methods, organizations define their acceptable level of risk and tailor their risk prioritization accordingly based on real-time threat intelligence, advanced data science and machine learning-powered prioritization. This matures standard, inefficient, and ineffective vulnerability management into risk-based vulnerability management (RBVM). A risk based approach to vulnerability management helps isolate the organization’s top risks, eliminating the need for guesswork and wasted cycles spent chasing vulns that won’t move the needle on risk. Ultimately, a modern RBVM program helps you make real, significant strides in lowering your risk profile.
  10. Threat. Today’s cybersecurity landscape roils with an endless stream of potential threats—from malware that plants dangerous executables in your software and ransomware that locks up your systems to specially targeted hacker attacks. All of these threats look for a way in, a vulnerability in your environment that they can exploit. Some threats, however, hold more potential for exploitation than others. The more rich, fresh data you can access and analyze about these threats, the more strategic and impactful decisions you can make regarding your vulnerability management and remediation.
  1. Real-time threat intelligence can enhance your current efforts to identify the vulnerabilities attackers are discussing, experimenting with or using. These bad actors write exploits that are designed to take advantage of known vulnerabilities, and threat intelligence helps you determine how an exploit is actually behaving in the wild and if there are known fixes. Details like Common Vulnerability Scoring System (CVSS) data, remediation, vulnerability velocity and volume, exploit data, fixes and patch information can all serve to improve your Security and IT response times, more accurately target your remediation efforts on high-risk vulnerabilities, and provide timely and comprehensive updates to leadership. The most advanced solutions even offer predictive modeling, helping you anticipate and annihilate future threats.
  2. Vulnerability. Vulnerabilities are weak spots within your environment and your assets—weaknesses that open you up to potential threats and increased risk. And unfortunately, an organization can have thousands, often millions of vulnerabilities. Remediating all of them is not feasible, especially when most organizations only have the capacity to patch one out of every ten vulnerabilities. While that may sound like a losing battle, the good news is that only 2%-5% of vulnerabilities are likely to be exploited. And among those, an even smaller percentage are likely to pose an actual risk to your business, because, for instance, many of those vulnerabilities may not be actively exploited within your industry. So much for that old “everything is a risk” approach. This is where risk-based vulnerability prioritization plays a crucial role. By giving Security and IT teams the tools and insight to hone their remediation efforts on the vulnerabilities that are most likely to be exploited (and that pose the biggest risk to your business), you will not only save time, money and cycles, but you’ll improve collaboration and help lower the organization’s overall cyber risk. Aligning teams around risk means you’ll no longer be wasting resources patching vulnerabilities that don’t pose a real threat to the organization, and instead can dedicate time to more strategic activities. (Some RBVM solutions even allow you to set meaningful remediation SLAs based on the potential risk posed by a vulnerability weighed against your organization’s risk tolerance levels.).