-

 Week 2: Vulnerability Management Activities and Vulnerability Assessment Tools.

This week's reading material covered various topics like Service Level Agreements (SLA), vulnerability scanning tools, Common Vulnerability Scoring Systems (CVSS), and vulnerability feeds. In addition, there are various other topics discussed in the chapter reading that are just as important and play an essential role in the cybersecurity analyzing process as the four main discussion topics.

As a cybersecurity analyst, you should never always expect to be hundred percent on point all the time because there is no hundred percent right or wrong, especially in the computer networking infrastructure. However, this doesn't mean that as a cybersecurity analyst, you shouldn't give it all the effort you know you are capable of. We live in an information age that requires us to adapt to the content of transformation occurrences.

As I stated in my discussion post, we live in a comparative world, and private security companies, or any companies, must be upfront with their customers (clients) if they want to succeed in the information age. That is where the Service Level Agreement (SLA) plays a vital role between the companies and their customers. SLA transpired more often in IT than in other business industries. An SLA is a contract that can exist within a company (say, between a business unit and the IT staff) or between the organization and an outside provider (Chapman & Maymi, 2021).

Many scanning tools are available these days for protecting, preventing, and monitoring network activities. One primary purpose for scanning a network "is to get more details about the target network or device by poking around and taking note of the target's responses." The list of some scanning methods used in this process are:

  • Port Scanning – is a computer program designed specifically for probing a host (workstation, etc.) or, for that matter, a server to determine which networking ports are available (open).
  • Web App Vulnerability Scanning – unlike port scanning, this is an automated tool that can be used specifically for scanning web applications to check for vulnerabilities.

There are many other scanning tools available that are just as important as the two I have listed, and searching the web will provide you with a list of those other tools. The term "vulnerability feed" is something that you will want to take very securely as a cybersecurity analyst. There are different vulnerability feed cycles that vary depending on the network infrastructure functionality. The updated cycle or process can range from an hour to weeks depending on the situation, and "through they eventually tend to converge on the vast majority of known vulnerabilities." There will be a situation where you may have one feed cycle that shows a "threat significantly before another." The bottom line is that, with vulnerability feed, you have the options of hourly, daily, weekly, monthly, or even quarterly cycles. Moreover, it is a plus for having the capability of noticing and responding immediately to a vulnerability.

 

 

 

Reference:

Chapman, Brent; Maymi, Fernando. CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002) (p. 63, 81). McGraw Hill LLC. Kindle Edition. Retrieved: June 21, 2023.

Comments

Post a Comment

Popular posts from this blog

-
 Threats to Cloud Security.   Cloud computing is on the rise and becoming popular in the public and business enterprises sector. Many CSPs (Cloud Service Providers) like, Microsoft Azure, AWS (Amazon Web Service), and GCP (Google Cloud Platform) are offering their clients and users the opportunity to migrate the operations to the cloud by subscribing services () that fits their operation needs. There are many activities involved with migrating to the cloud that are important for the public and business enterprises to understand before making such leap (migrate). Speaking of migrating, the term security is one of the most critical aspects that concerns cybersecurity team members, and all proper measures must be taken seriously. The uprising of cyber threats to cloud computing increases by the day just as cloud computing becomes more and more popular. The following are lists of threats to cloud security: 1.       Data Breach - regardless o...
Week One: Safety and Professionalism

CompTIA Network+: Network Management & Infrastructure

-
 Week One: Entry Blog. Hello to all, my name is Edward Cooper, and I was born and raised in Monrovia, Liberia, Africa. I came to the United States, November of 1996, and I reside in the beautiful state of New Jersey. I love working with different types of technologies and I just got through building a brand-new Personal Computer last month as I was pursuing my certification in Comp & Network Security Fund (CompTIA Security+), and Comp & Hardware and Software Mgmt. (CompTIA A+). I am currently taking a class in both Computer Server Environments (CompTIA Server+), and Network Mgmt. & Infrastructure (CompTIA Network+). Other than Windows Server that I have had some experiences (installed and configured) working with, I have not had experience with other vendors’ server platforms.   Speaking of server, I have some experience when it come to computer networking and I was able to build a home network (LAN) with four computers, Windows server, routers hubs, and a sw...
Week One: Safety and Professionalism
-
 Week Six: Internet Protocol version Six (IPv6). This week six topic focused on the fundamental concepts of Internet Protocol version six (IPv6), describing IPv6 practices, and the implementation of Pv6 in a Transmission Control Protocol/ Interprotocol (TCP/IP) network design. The Internet Protocol version four (IPv4) was developed for the purpose of assigning Internet Protocol addresses. IPv4 was developed to handled IP addresses for the foreseeable future, unfortunately, it turned out that wasn’t the case as the traffic (more computers became available in homes and smaller businesses) on the air wave begin too much to handle.  The IPv6 was developed as the replacement for IPv4. IPv6 comes with tremendous benefits that IPv4 didn’t had, and one of those benefits that IPv6 come with has to do with its pool of unlimitedly IP address. IPv4 is stay in used at this current moment as IPv6 translation begin slowly into replacing IPv4. There is no comparison whatsoever between IPv4 an...
Week One: Safety and Professionalism