Instructions: You are presented with a list of some risks and threats associated with the domains...

Transcribed Image Text:

Instructions: You are presented with a list of some risks and threats associated with the domains of a typical IT infrastructure. Below the list, the solutions or preventive actions to manage those risks and threats are listed. Write the letter of the correct solution or preventative action in the blank to the right of each risk or threat. Risks or threats: 1. Violation of a security policy by a user 2. Disgruntled employee sabotage 3. Download of non-business videos using the Internet to an employer-owned computer 4. Malware infection of a user's laptop 5. Unauthorized physical access to the LAN 6. LAN server operating system vulnerabilities 7. Download of unknown file types from unknown sources by local users 8. Errors and weaknesses of network router, firewall, and network appliance configuration file 9. WAN eavesdropping 10. WAN denial of service (DoS) or distributed denial of service (DDoS) attacks 11. Confidential data compromised remotely 12. Mobile worker token stolen 13. Corrupt or lost data 14. Downtime of customer database A. Enable content filtering and antivirus scanning at the entry and exit points of the Internet. Enable workstation auto-scans and auto-quarantine for unknown file types. B. Apply file transfer monitoring, scanning, and alarming for unknown file types and sources. C. Place employee on probation, review acceptable use policy (AUP) and employee manual, and discuss status during performance reviews. D. Apply filters on exterior Internet Protocol (IP) stateful firewalls and IP router WAN interfaces. E. Implement daily data backups and off-site data storage for monthly data archiving. Define data recovery procedures based on defined Recovery Time Objectives (RTOS). F. Define vulnerability window policies, standards, procedures, and guidelines. Conduct LAN domain vulnerability assessments. G. Apply real-time lockout procedures. H. Define a strict zero-day vulnerability window definition. Update devices with security fixes and software patches right away. I. Track and monitor abnormal employee behavior, erratic job performance, and use of IT infrastructure during off-hours. Begin IT access control lockout procedures based on AUP monitoring and compliance. J. Develop a disaster recovery plan (DRP) specific to the recovery of mission-critical applications and data to maintain operations. K. Encrypt all confidential data in the database or hard drive. L. Use workstation antivirus and malicious code policies, standards, procedures, and guidelines. Enable an automated antivirus protection solution that scans and updates individual workstations with proper protection. M. Use encryption and virtual private network (VPN) tunneling for secure IP communications. N. Make sure wiring closets, data centers, and computer rooms are secure. Provide no access without proper credentials. Instructions: You are presented with a list of some risks and threats associated with the domains of a typical IT infrastructure. Below the list, the solutions or preventive actions to manage those risks and threats are listed. Write the letter of the correct solution or preventative action in the blank to the right of each risk or threat. Risks or threats: 1. Violation of a security policy by a user 2. Disgruntled employee sabotage 3. Download of non-business videos using the Internet to an employer-owned computer 4. Malware infection of a user's laptop 5. Unauthorized physical access to the LAN 6. LAN server operating system vulnerabilities 7. Download of unknown file types from unknown sources by local users 8. Errors and weaknesses of network router, firewall, and network appliance configuration file 9. WAN eavesdropping 10. WAN denial of service (DoS) or distributed denial of service (DDoS) attacks 11. Confidential data compromised remotely 12. Mobile worker token stolen 13. Corrupt or lost data 14. Downtime of customer database A. Enable content filtering and antivirus scanning at the entry and exit points of the Internet. Enable workstation auto-scans and auto-quarantine for unknown file types. B. Apply file transfer monitoring, scanning, and alarming for unknown file types and sources. C. Place employee on probation, review acceptable use policy (AUP) and employee manual, and discuss status during performance reviews. D. Apply filters on exterior Internet Protocol (IP) stateful firewalls and IP router WAN interfaces. E. Implement daily data backups and off-site data storage for monthly data archiving. Define data recovery procedures based on defined Recovery Time Objectives (RTOS). F. Define vulnerability window policies, standards, procedures, and guidelines. Conduct LAN domain vulnerability assessments. G. Apply real-time lockout procedures. H. Define a strict zero-day vulnerability window definition. Update devices with security fixes and software patches right away. I. Track and monitor abnormal employee behavior, erratic job performance, and use of IT infrastructure during off-hours. Begin IT access control lockout procedures based on AUP monitoring and compliance. J. Develop a disaster recovery plan (DRP) specific to the recovery of mission-critical applications and data to maintain operations. K. Encrypt all confidential data in the database or hard drive. L. Use workstation antivirus and malicious code policies, standards, procedures, and guidelines. Enable an automated antivirus protection solution that scans and updates individual workstations with proper protection. M. Use encryption and virtual private network (VPN) tunneling for secure IP communications. N. Make sure wiring closets, data centers, and computer rooms are secure. Provide no access without proper credentials.