CYB 606 Netsec Monitoring and IR Discussion

User Generated

nabfndre

Computer Science

CYB 606

CYB

Description

FIRST:

Select ONE of the Options below as your primary topic. To help keep track of replies vs. original postings, your Subject line should start with: Lastname – Option [A, B, or C].

Option A

When detecting intruders how important is it to monitor outbound traffic? Justify your answer.

Option B

If you had to choose (and you can only choose one) between a network-based IDS or a host-based IDS, which would you choose and why? Explain your answer. You can assume this is for a regional company with 1500 employees located in three offices in southern California, and that endpoint anti-malware software is being used. (NOTE - the instructor realizes that a combination of both types may be optimal, but management set the constraints and you are only allowed one or the other.)

Option C

In your own words, explain what is meant by "Intelligence-Driven Incident Response" and its relationship to Network Security Monitoring.

User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

Attached. Please let me know if you have any questions or need revisions.

Running head: MIDTERM EXAM

1

Midterm Exam
Name
Institution

MIDTERM EXAM

2
Midterm Exam

Question 1
Language barrier: Unlike in Europe, most Asian nations do not use English, which made
it increasingly cumbersome for Disney's staff. Although the company resolved the...

Related Tags