Business Security Posture, computer science homework

Jan 19th, 2016
Computer Science
Price: $20 USD

Question description

Company XYZ, a mid-sized corporation, is in the middle of satisfying their regulatory compliance needs.  The manager of security at the company has been tasked by the CIO (Chief Information Officer) to report on the company’s current security posture. You are called upon as a 3rd party penetration tester, based on your industry reputation of being both careful and thorough to report on company XYZ’s security posture. The only information available about the company is the generalized information found on its company Website which includes a contact page, home page, customer login portal, copyright and acceptable use page, and disclaimers page.  

As an experienced penetration tester, you already have a collection of typical tools you use to conduct your tests (at minimum, all the tools available in CEH labs for this course.) The end goal here is to report on company XYZ’s current security posture through performing penetration tests.

Write a four to five (4-5) page paper in which you outline all steps you would take to provide company XYZ’s request. Include but do not limit yourself to the following:

  1. Determine the communications and questions that you need to ask the Manager of Security before beginning your work assignment.
  2. Determine the type of documents you would bring to your first meeting with the Manager of Security (i.e. documents to sign, to review, to consider).
  3. Explain chronologically when things happen.
  4. Predict what results are expected based on tools and techniques you use. For example, if a goal is to collect recon data, one might use the Nmap tool to perform a subnet scan. A similar scan can be conducted in your iLabs environment and the resulting data used as support in the form of screenshots when explaining your theories.  
  5. Evaluate the importance of the Nondisclosure Agreement (NDA) and other legal agreements to both parties. 
  6. Propose the main pre-penetration test steps that the penetration tester should perform before beginning the initial phases of the XYZ penetration test. Provide a rationale to support your proposal.
  7. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

  • Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format.

Tutor Answer

(Top Tutor) Daniel C.
School: UT Austin

Studypool has helped 1,244,100 students

Review from our student for this Answer

Jan 19th, 2016
Ask your homework questions. Receive quality answers!

Type your question here (or upload an image)

1824 tutors are online

Brown University

1271 Tutors

California Institute of Technology

2131 Tutors

Carnegie Mellon University

982 Tutors

Columbia University

1256 Tutors

Dartmouth University

2113 Tutors

Emory University

2279 Tutors

Harvard University

599 Tutors

Massachusetts Institute of Technology

2319 Tutors

New York University

1645 Tutors

Notre Dam University

1911 Tutors

Oklahoma University

2122 Tutors

Pennsylvania State University

932 Tutors

Princeton University

1211 Tutors

Stanford University

983 Tutors

University of California

1282 Tutors

Oxford University

123 Tutors

Yale University

2325 Tutors