Note: This assignment will felp you develop your individual assignment this week

Your compary recently reviewed the results of a penetration test on vour network'. Several vulnerabilities were identified; and the IT security managnment team has recommended mitigation, The manager has asked you to construct a plan of action and milestones $($POA&M$)$ given that the following vulnerabilities and mitigations were identified:

The penetation test showed that not all systems had malware protection software in place. The mitigation was to write a malware defense process to include all employees and retest the system after the process was implemented.

The penetration test indicated that the data server that houses employee payroll records had an admin password of "admin:" The mitigation was to perform extensive hardening of the data server.

The penetration test also identified many laptop computer that employes brought to work and connected tu the internal network, some of which were easily compromised. The mitigation was to write and bring your own device $($BYOD$)$ policy for all employees and train the emplovees on how to use their devices at work