From the course: Performing a Technical Security Audit and Assessment (2017)
Unlock the full course today
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
Solution: Recommend mitigation solutions
From the course: Performing a Technical Security Audit and Assessment (2017)
Solution: Recommend mitigation solutions
(upbeat music) - [Instructor] For this challenge, you were asked to write mitigation recommendations for the following security assessment findings: missing security patches, users have not received security awareness training, transmitting sensitive information without encryption, and no security officer. Here are the mitigation recommendations I would write for each of these findings based on the NIST control families webpage. I referred to in the previous challenge. Missing security patches. Mitigation recommendation. Institute a patch management program that deploys security patches and updates to all systems in a timely manner. Employ automated mechanisms like vulnerability scanning to determine if systems have the correct security patches and updates. For users have not received security awareness training, my mitigation recommendation would be, deliver appropriate security awareness training to all system users…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.