Follow this link to get this tutorial:
Contact us at:
SEC 435 WEEK 6 ASSIGNMENT 2
Assignment 2: Security Risk Assessment
Due Week 6 and worth 90 points
In 2006, a small business was created in the financial sector. The main purpose of the business was to provide customers with a close to real-time analysis of their stock portfolios. After months of doing business, several IT Administrators began to notice subtle changes in the corporate network. Shortly after that, the CEO began calling high-level meetings, especially with marketing and finance, to determine why the company’s profits for the last five months (July to December) began to take a downward spiral. This was occurring when industry-wide profit margins were easily expected to be higher and on the rise. The CEO could not understand why his company’s profits were instead decreasing, and hoped to get some insight from the meeting he had called. At this point, the CEO focused on finding the part of his business process that was failing and correcting any issues. During his meeting with Finance and Marketing, the only information presented to the CEO was that all operations and processes remained unchanged for the past year and (from charts shown below) that the number of new customers registering through their customer portal had dropped drastically for the last five months.
Around the same time these meetings were occurring, one network administrator at the company noticed anomalous traffic on port 80 of the Web Server on the DMZ. The edge router’s logs showed that the traffic started six months ago and ended five months later. Additionally, he noticed five months ago that traffic from the Web servers to the internal application servers decreased each day, although the inbound requests on port 80 remained about the same. Finally, he noticed, that for the last four months, his Web server logs contained many http...