Assignment: Security Vulnerability Report
A security vulnerability report identifies the areas of the organization that are at risk of losing data, experiencing outages, etc. Typically, organizations categorize the information in the report to focus on specific areas and highlight the levels of risk for each area. Organizations typically use the information in the vulnerability report for budgeting and resource management.
Write a 3 to 4-page security vulnerability report using the organization you chose. To help you with the assignment, an internal review of your organization was previously conducted, and the organization was found to have following vulnerabilities:
• A formal Password Policy has not been developed that meets your organization's regulatory requirements.
• The organization only uses single factor authentication using weak passwords.
• Vulnerability Severity: High
• Impact: Threats could easily guess weak passwords allowing unauthorized access.
• Software configuration management does not exist on your organization's production servers.
• There are different configurations on each server and no operating system patching schedule.
• Vulnerability Severity: Moderate
• Impact: With ad hoc configuration management, the organization could inadvertently or unintentionally make changes to the servers that could cause a self-imposed denial of service.
• An Incident Response Plan has not been developed.
• There is not a formal process for responding to a security incident.
• Vulnerability Severity: High
• Impact: In the event of a security incident, an ad hoc process could allow the security incident to get worse and spread throughout the network; the actual attack may not be recognized or handled in a timely manner giving the attacker more time to expand the attack.
• Consider people, processes, and technology that can be exploited by the source of a threat.
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also includes a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.