CIS 502 Experience Tradition/newtonhelp.com

1
CIS 502 Experience Tradition/newtonhelp.com
2
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 All Assignments (2 Set)
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 2 Assignment 1 Web Server
  Application Attacks (2 Papers)
• CIS 502 WEEK 6 Assignment 2 Critical
  Infrastructure Protection (2 Papers)
• CIS 502 Week 9 Assignment 3 Cybersecurity (2
  Papers)
• CIS 502 Week 10 Technical Paper Risk Assessment
  (2 Papers)
• CIS 502 Week 3 Case Study 1 Advanced Persistent
  Threats Against RSA Tokens (2 Papers)
• CIS 502 Week 4 Case Study 2 Social Engineering
  Attacks and Counterintelligence (2 Papers)

3
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Final Exam Guide
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Final Exam Guide
• 1 Two parties are exchanging
  messages using public key cryptography. Which of
  the following statements describes the proper
  procedure for transmitting an encrypted message?
• 2 Public key cryptography is
  another name for
• 3 A running-key
  cipher can be used when
• 4 Two parties, Party A and
  Party B, regularly exchange messages using public
  key cryptography. One party, Party A, believes
  that its private encryption key has been
  compromised. What action should Party B take?

4
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Midterm Set 1
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Midterm set 1
• 1 A security manager is
  developing a data classification policy. What
  elements need to be in the policy?
• 2 An organization employs
  hundreds of office workers that use computers to
  perform their tasks. What is the best plan for
  informing employees about security issues?
• 3 The statement, Information
  systems should be configured to require strong
  passwords, is an example of a/an
• 4 The statement, Promote
  professionalism among information system security
  practitioners through the provisioning of
  professional certification and training. is an
  example of a/an
• 5 Exposure factor is defined
  as

5
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Midterm Set 2
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Midterm set 2
• 1 An organization recently
  underwent an audit of its financial applications.
  The audit report stated that there were several
  segregation of duties issues that were related to
  IT support of the application. What does this
  mean?
• 2 A security manager is
  developing a data classification policy. What
  elements need to be in the policy?
• 3 An organization employs hundreds
  of office workers that use computers to perform
  their tasks. What is the best plan for informing
  employees about security issues?

6
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 1 Discussion Information Security
  and Risk Management
• For more course tutorials visit
• www.newtonhelp.com
• CIS 502 Week 1 Discussion
• Information Security and Risk Management
  Please respond to the following
• From a management perspective, analyze the
  overall industry requirements and major
  organizational challenges of forming a sound
  information security program, and ascertain the
  fundamental manner in which regulations and
  compliancy may factor into the challenges in
  question.

7
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 2 Assignment 1 Web Server
  Application Attacks (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• Assignment 1 Web Server Application Attacks
• Due Week 2 and worth 110 points
• It is common knowledge that Web server
  application attacks have become common in todays
  digital information sharing age. Understanding
  the implications and vulnerabilities of such
  attacks, as well as the manner in which we may
  safeguard against them is paramount, because our
  demands on e-Commerce and the Internet have
  increased exponentially. In this assignment, you
  will examine the response of both the U.S.
  government and non-government entities to such
  attacks.

8
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 2 DiscussionRole-Based Access
  Controls
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 2 Discussion
• Role-Based Access Controls Please respond to
  the following
• Consider at least one (1) alternative to
  role-based access controls, and indicate where
  you believe this alternative method would help
  the security of the organization prosper. Perform
  research as needed and justify your answer.
• From the e-Activity, consider role-based access
  control (RBAC) methods in terms of file-level and
  database permissions, and formulate what you
  believe are the main advantages to using these
  methods in order to achieve ample security.

9
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 3 Case Study 1 Advanced Persistent
  Threats Against RSA Tokens (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 Week 3 Case Study 1 Strayer New
• Case Study 1 Advanced Persistent Threats Against
  RSA Tokens
• Due Week 3 and worth 100 points
• Authentication breach by impersonation or
  password crack has been popular for attackers to
  breach our assets. The latest RSA APT attack to
  breach one of the most secure RSA tokens alerted
  the industry and reminded all of us that there is
  no security that can last forever. We must remain
  vigilant and stay ahead of the game. Read the
  following documents

10
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 3 DiscussionThe Security Problem in
  Software Development Life Cycle (SDLC)
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 3 Discussion
• The Security Problem in Software Development
  Life Cycle (SDLC) Please respond to the
  following
• From the e-Activity, contemplate the main reasons
  why you believe the Francophoned attacks were
  successful, and explore the key factors that made
  the social engineering aspect of the attacks so
  complex and so difficult to identify as
  malicious.
• From the e-Activity, based on the complexity of
  the Francophoned attacks, give your opinion of
  overall strategies that you believe security
  professionals could use in order keep up with the
  sophisticated nature of the attacks that result
  from the progression and sophistication of
  technologies.

11
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 4 Case Study 2 Social Engineering
  Attacks and Counterintelligence (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 Week 4 Case Study 2 Strayer New
• Case Study 2 Social Engineering Attacks and
  Counterintelligence
• Due Week 4 and worth 100 points
• Social engineering attacks and counterintelligence
  have major impacts to our national security. In
  July 2010, the Afghan War Diary was released in
  WikiLeaks. In October 2010, WikiLeaks also
  released the largest military leak in history
  the Iraq War Logs revealing the war occupation in
  Iraq. This type of information is considered as
  classified data by the Department of Defense.
• Read the article titled, WikiLeaks Releases
  400,000 Classified US Military Files, located at

12
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 4 Discussion Business Continuity
  Planning and Disaster Recovery Planning
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 4 Discussion
• Business Continuity Planning and Disaster
  Recovery Planning Please respond to the
  following
• Imagine that you are trying to receive funding
  for select planning projects. Compare and
  contrast the attributes of business continuity
  and disaster recovery plans, and suggest the
  primary ways in which you would explain these
  differences to your employers Board of
  Directors. Hwacer.com
• From the e-Activity, analyze each companys
  plans, and provide three (3) examples of the key
  ways in which the business continuity and
  disaster recovery plans of the two (2)
  organizations are alike and three (3) examples of
  the ways in which they are different.

13
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 5 Discussion Cryptography
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 5 Discussion
• Cryptography Please respond to the following
• Analyze the overall attributes of symmetric and
  asymmetric cryptography technologies. Discuss the
  advantages and disadvantages of each, and
  speculate upon the main reasons why organizations
  utilize both technologies today. Give an example
  of where you would consider using each of these
  forms of encryption within an organization to
  support your response.
• From the e-Activity, give your opinion of whether
  cryptography should be a part of every email
  security strategy or if there are specific
  characteristics of organizations where such
  measures are not needed.

14
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 WEEK 6 Assignment 2 Critical
  Infrastructure Protection (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 WEEK 6 ASSIGNMENT 2
• Assignment 2 Critical Infrastructure Protection
• Due Week 6 and worth 110 points
• According to the text, Critical Infrastructure
  Protection (CIP) is an important cybersecurity
  initiative that requires careful planning and
  coordination in protecting our infrastructure.
• You may use the following resources in order to
  complete the assignment,

15
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 6 Discussion Incident Response and
  Compliances
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 6 Discussion
• Incident Response and Compliances Please
  respond to the following
• From the first e-Activity, determine whether or
  not you believe that legislation and regulations
  have had the intended impact on the legal and
  ethical issues inherent in information security.
• From the second e-Activity, discuss the specifics
  of the incident you researched, and analyze the
  mitigation and recovery tactics that those
  impacted utilized. Determine whether or not you
  would have considered a different course of
  action than the one taken related to the incident
  that you researched. Justify your answer.

16
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 7 Case Study 3 Mobile Devices
  Security (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 Week 7 Case Study 3 Strayer New
• Case Study 3 Mobile Devices Security
• Due Week 7 and worth 100 points
• The use of mobile devices is prevalent and
  growing rapidly as users heavily depend on them.
  Unfortunately, attackers follow the money and
  user population. In addition, mobile devices do
  not receive patches for their vulnerabilities.
  The Zeus-in-the-Mobile (ZitMo) attack against
  Android users is an example defeating the
  emerging technology to steal users credentials
  and ultimately money. Mobile devices can also
  spread malware.

17
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 7 DiscussionSecurity Policies and
  Procedures and Big Data
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 7 Discussion
• Security Policies and Procedures and Big Data
  Please respond to the following
• From the first e-Activity, analyze the chosen
  organizations security policies and procedures,
  and provide an opinion of whether or not its
  policies and procedures are strong from an
  information security standpoint. Justify your
  opinion utilizing specific examples from your
  research.
• From the second e-Activity, determine what you
  believe to be the top two (2) security concerns
  related to big data, and give your opinion of
  what you believe are appropriate solutions to
  those problems, if solutions do exist. Justify
  your response.

18
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 WEEK 8 CASE STUDY Mobile Device Security
  and Other Threats (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 WEEK 8 CASE STUDY
• Case Study Mobile Device Security and Other
  Threats
• Due Week 8 and worth 110 points
• Read the article titled, Mobile Devices Will Be
  Biggest Business Security Threat in 2014,
  located at http//www.businessnewsdaily.com/5670-m
  obile-devices-will-be-biggest-business-security-th
  reat-in-2014.html, and reference FIPS 140-2
  Security Policy, located at http//csrc.nist.gov/g
  roups/STM/cmvp/documents/140-1/140sp/140sp1648.pdf
  . In addition, read the Sophos report titled,
  Security Threat Report 2014, located at
  http//www.sophos.com/en-us/medialibrary/PDFs/othe
  r/sophos-security-threat-report-2014.pdf.

19
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 8 Discussion Logical and Physical
  Security
• For more course tutorials visit
• www.newtonhelp.com
• CIS 502 Week 8 Discussion
• Logical and Physical Security Please respond
  to the following
• From the e-Activity, evaluate the effectiveness
  of the physical and environmental security
  measures that the organization you researched
  used in regard to protecting its assets. Indicate
  improvements to the organizations security
  measures where applicable. Justify your response.
• Consider a scenario where a financial company,
  whose management harbors concerns about its
  immature security posture, has quickly expanded
  its operations into multiple locations throughout
  the U.S. Indicate where you believe the company
  should begin in its securing process with the
  top-three (3) logical security measures and
  top-three (3) physical security measures that
  most concern to you. Justify the main reasons why
  you believe that the six (6) measures indicated
  are so critical.

20
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 9 Assignment 3 Cybersecurity (2
  Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 Week 9 Assignment 3 Strayer New
• Assignment 3 Cybersecurity
• Due Week 9 and worth 50 points
• Cybersecurity is such an important topic today
  and understanding its implications is paramount
  in the security profession. Compliance,
  certification, accreditation, and assessment are
  critical in understanding the legal and ethical
  procedures to follow as a security professional.
  In support of cybersecurity initiatives, the
  National Initiative for Cyber Security Education
  (NICE) has published several initiatives in
  regard to protecting national security. The
  following document titled, National Initiative
  for Cybersecurity Education, located at
  http//csrc.nist.gov/nice/framework/documents/NICE
  -Cybersecurity-Workforce- Framework-Summary-Bookle
  t.pdf, will be used to help you complete the
  assignment.

21
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 9 Discussion Security Models and
  Cloud Operations
• For more course tutorials visit
• www.newtonhelp.com
• CIS 502 Week 9 Discussion
• Security Models and Cloud Operations Please
  respond to the following
• From the first e-Activity, analyze the industry
  researched for each security model would be most
  applicable, and explain why you believe that to
  be the case. Identify the security models from
  your findings.
• From the second e-Activity, ascertain the primary
  way in which the organization that you researched
  was able to leverage a cloud solution while
  overcoming its security concerns. Discuss whether
  or not you believe that the security concerns
  surrounding cloud operations are warranted.
  Justify your answers with real-world examples
  from applicable situations, where appropriate.

22
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 10 DiscussionEmerging Technologies
  and Mobile Devices
• For more course tutorials visit
• www.newtonhelp.com
•  
• CIS 502 Week 10 Discussion
• Emerging Technologies and Mobile Devices
  Please respond to the following
• From the e-Activity, choose the one (1) emerging
  technology you believe will have the biggest
  impact on telecommunications and network security
  within the next two (2) years, and explain the
  main reasons why you believe this will be the
  case. Justify your answer.
• As people and organizations alike are relying
  more on mobile devices for company
  communications, give your opinion of what you
  believe are the top-three (3) concerns with
  mobile devices and security,

23
CIS 502 Experience Tradition/newtonhelp.com

• CIS 502 Week 10 Technical Paper Risk Assessment
  (2 Papers)
• For more course tutorials visit
• www.newtonhelp.com
•  
• This Tutorial contains 2 Papers
• CIS 502 Week 10 Technical Paper
• Technical Paper Risk Assessment
• Global Finance, Inc.
• Internet OC193 10Gbps
• Remote Dial UpUsers
• OC193 10Gbps
• DMZ
• Border (Core) Routers
• Distribution Routers
• VPN Gateway
• 10Gbps
• RAS

24
CIS 502 Experience Tradition/newtonhelp.com