Category: Computer Science

Overview
Sound guidance in selecting technologies that ensure compliance with or

Overview
Sound guidance in selecting technologies that ensure compliance with organizational security requirements is a key contribution that a cybersecurity practitioner provides to their organization. The ability to balance technical effectiveness against business considerations such as cost, implementation time, and the impacts on staffing, end-users, and infrastructure is a key skill.
For this project (due in Module Seven), you will be writing an evaluation of network protection technologies to your manager. This evaluation requires you to assess multiple technology options by weighing criteria associated with cost and effectiveness and then recommending a solution that satisfies the given requirements. In addition, your recommendation should be guided by a fundamental security design principle you select as a basis for your recommendation.
In this assignment, you will demonstrate your mastery of the following course competency:
Describe the fundamental principles and practices of intrusion detection and prevention
Scenario
Your instructor has provided you with the specific scenario for this project as part of the Project Three Milestone. The scenario provided you with the beginning of a security plan that documents areas of relevance to your evaluation that you need for decision making in your project
Additionally, a fellow analyst has completed an evaluation of network protection technologies, specifically intrusion detection systems (IDSs) and intrusion prevention systems (IPSs), to help you with your decision-making process. Your manager has reviewed the evaluation, based on effectiveness and cost, and has verified its accuracy.
Based on your analysis of the technology evaluation and the details provided in the scenario, recommend a network protection system for implementation.
Prompt
You must address the critical elements listed below.
Explain how you are employing one of the Fundamental Security Design Principles to inform your recommendation.
Justify a recommended network protection approach. Describe how you balanced effectiveness, cost, and technical capabilities to select the network protection technology
Recommend resources (e.g., organizational assets, workforce allocation, policies/procedures, hardware) that are necessary for implementing or monitoring your chosen network protection approach. These resources should optimize the technology or maximize organizational resources. Explain your recommendation using an adversarial mindset or systems thinking approach.
What to Submit
Your evaluation of network protection technologies should be 2 to 3 pages in length (plus a cover page and references) and must be written in APA format. Use double spacing, 12-point Times New Roman font, and one-inch margins. Use a filename that includes the course code, the assignment title, and your name—for example, CYB_100_Project_One_Neo_Anderson.docx
Project Three Rubric
CriteriaExemplary (100%)Proficient (85%)Needs Improvement (55%)Not Evident (0%)Value
Employing a Fundamental Security Design PrincipleMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerExplains how one of the Fundamental Security Design Principles is employed to inform the recommendationAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant31
Recommended Network Protection ApproachMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerJustifies a recommended network protection approach that includes a description of how effectiveness, cost, and technical capabilities were balancedAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant31
Resource RecommendationsMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerRecommends resources that are necessary for implementing or monitoring the chosen network protection approach to optimize the technology or maximize organizational resources, including how using an adversarial mindset or systems thinking approach influenced the recommendationAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant31
Articulation of ResponseSubmission is free of errors related to citations, grammar, spelling, and organization and is presented in a professional and easy-to-read formatSubmission has no major errors related to citations, grammar, spelling, or organizationSubmission has some errors related to citations, grammar, spelling, or organization that negatively impact readability and articulation of main ideasSubmission has critical errors related to citations, grammar, spelling, or organization that prevent understanding of ideas7
Total:100%

Using an adversarial mindset, research potential exploits, vulnerabilities, or e

Using an adversarial mindset, research potential exploits, vulnerabilities, or evasion techniques that a threat actor could employ to bypass an intrusion detection system (IDS) or an intrusion prevention system (IPS). For example, some expert hackers create network chatter as an evasion technique to hide their actual exploit. The chatter may send analysts down the wrong path: While they are evaluating the output of their IDS or IPS, the real attack happens elsewhere.
For your initial post, imagine you are an analyst working for an organization that uses only an IDS or an IPS for internal network protection. Describe how one exploit, vulnerability, or evasion technique you researched affects the organization’s security posture. Is your organization vulnerable to that exploit regardless of whether it employs IDS or IPS? Or can the attack be blocked by the use of one or the other? Explain.

Identify all possible strings of length five within the language defined by the

Identify all possible strings of length five within the language defined by the regular expression
L((a+bb)∗)L((a+bb)∗).Design a non-deterministic finite automaton (NFA) that recognizes strings belonging to L(aa∗(ab+b))L(aa∗(ab+b)).
Construct an NFA for L(aba∗(b+ba))L(aba∗(b+ba)), and for L={w∈{a,b}∗:w contains exactly one pair of consecutive b′s}L={w∈{a,b}∗:w contains exactly one pair of consecutive b′s}.
Develop a regular expression representing strings of the form anbmanbmwhere n≥3n≥3and mmis odd, and another for anbmanbmwhere nnis odd and m≥3m≥3.

The initial post needs to include at least one outside resource/relevant researc

The initial post needs to include at least one outside resource/relevant research (per the Initial Post criteria on the Grading Rubric) to support important points (noting you need an in-text citation and a corresponding end reference in APA 7th edition format). Don’t forget, if you need help with APA 7th edition, see the APA 7th Edition Formatting Resources module…or ask me for assistance…
Once you have selected a case study, you need to construct one (1) initial post. The initial post must be a minimum of 300 words. So, ideally, you would have a well-balanced post with each answer being approximately 150 words (i.e., 150 words for Question #1 and 150 words for Question #2 for a total minimum word count of 300 words).
Group Case Study #2 (Chapter 4)
Entrepreneur Employing Mobile Enterprise Apps
Australian-based entrepreneur Nathan Tuckwell runs three, coffee based companies including
The Bean Doctor, which sells and services coffee machines; Mighty Fine Coffee, which makes
and sells fresh roasted coffee including automatic re-order subscriiptions shipped directly to
customers in both Australia and New Zealand; and Waffle Co., a café, dessert parlor that serves
breakfast and lunch along with fresh roasted coffee.
The three businesses are quite busy and generate lots of sales and expense transactions. Nathan
needed some way to capture, record, and use all this data in his day to day decision making.
Through research and by speaking with other small business owners, Nathan learned about
Square, QuickBooks Online, and Synch with Square, all mobile apps for small businesses. He
decided to try these apps to manage Waffle Co.
Square and QuickBooks Online are cloud based applications which means that to use the
application you go to the Internet and access a secure website hosted by a third party. Thus, the
small business can avoid large, up-front investments for computer hardware on which to run the
software. Users pay a small monthly access fee to cover the cost of using the software and on-
going support and upgrades.
Square is a point of sale solution that captures cash, credit card, and gift card payments; applies
discounts and issue refunds; keeps track of sales and inventory, and provides sales reports by
customer, item, or time of day. These reports enable users to know what items are selling well
and what items are not doing so well. It also helps business owners to get to know customers
better by knowing how much they spend, their favorite items, and how frequently they visit the
cafe. Because Square records sales by item, it is possible to obtain reports on current inventory
and update inventory quantities in bulk—which is helpful when adding new inventory.
QuickBooks Online is an accounting software package designed to track income and expenses
for small businesses. With this data, you are able to manage expenses and track cash flow. The
first thing you see when you sign in is QuickBooks Online home page called a dashboard that
shows an overview of account balances, income and expense totals and charts, and tasks that
need to be done.
Sync with Square Imports Square sales transactions into QuickBooks. At the end of each day,
every sale recorded in Square is automatically imported into QuickBooks as an invoice and
payment. Once the transactions are imported, it is possible to view the sales, refunds, taxes, tips,
and discounts that were processed with Square. Details of the invoice—such as the item and the
quantity sold, applied discounts, shipping costs, and taxes paid—are also recorded. Fees, such as
bank deposit fees and transaction fees charged by Square, are also imported to accurately reflect
each account.
*********************The rest of this page is left intentionally blank********************
Nathan quickly figured out how to link these three programs so that the café transactions were
automatically loaded from Square into his QuickBooks account using the Sync with Square app.
Now manual data entry is almost entirely eliminated and reconciling Nathan’s books is easy with
deposits, payments, refunds, and fees automatically matched against his bank statement. Based
on the success of using this software for Waffle Co., Nathan has implemented it for Mighty Fine
Coffee and The Bean Doctor. He can log onto the QuickBooks Online dashboard to see all the
information he needs to run his business and make data driven business decisions that have
helped him generate more profits and reduce loss. Accurate, timely data is important for any
business but especially crucial for a company that sells perishable items.
Group Case Study #2 Questions – Answer Both
1. Xero and Zoho Books are two other small business accounting applications that can
support the import of transactions directly from Square. Do research online to evaluate
these in terms of cost, ease of use, functionality, and support compared to QuickBooks
online. Which option do you believe is the best for a small business? Why?
2. What advantages are associated with using cloud-based apps? What potential issues
could arise of which the user must be wary?
*********************The rest of this page is left intentionally blank********************

For your reference, please read attached chapters 1 and 2 of “Remote Sensing Bas

For your reference, please read attached chapters 1 and 2 of “Remote Sensing Basics” by Khorram.
For the discussion questions, please comment on the following YouTube video and the attached science article per the Syllabus.
Landsat and the GEE:
#t=133
“High-Resolution Global Maps of 21st-Century Forest Cover Change”, Science.
here are some potential questions related to the content of the video:
How does Landsat satellite imagery contribute to monitoring and understanding changes in Earth’s surface over time?
What are some specific applications of Landsat data within the Google Earth Engine (GEE) platform?
In what ways does the integration of Landsat imagery with GEE enhance the analysis of environmental changes and their impacts?
Can you identify any challenges or limitations associated with using Landsat data and GEE for remote sensing and geospatial analysis?
How might the accessibility of Landsat data through platforms like GEE facilitate research and decision-making in various fields such as environmental science, agriculture, and urban planning?
Here are some potential discussion questions related to the content of the article:
What are the key findings of the study regarding global forest cover change in the 21st century?
How were high-resolution mapping techniques used to create global maps of forest cover change, and what were the methodological challenges involved?
What are the implications of the observed forest cover changes for biodiversity, climate change, and ecosystem services?
How does the research contribute to our understanding of human impacts on forest ecosystems and the effectiveness of conservation efforts?
What are some potential applications of the high-resolution global maps of forest cover change in environmental management and policy-making?

Now that we have explored privacy laws, let’s explore what happens when these la

Now that we have explored privacy laws, let’s explore what happens when these laws are violated.
Imagine you’re a member of the security team for a small business. You are discussing how to manage evidence collection in order to make recommendations to senior management. For your initial post, select one of the types of legal disputes (civil, criminal, or private) and recommend a law, policy, procedure, standard, or guideline to ensure the evidence is collected and maintained in accordance with the privacy laws discussed in this course.

1. Start your project by using MS Access.
2. You can choose any organiza:on or c

1. Start your project by using MS Access.
2. You can choose any organiza:on or company ( library, school, university,
museum, etc.)
3. In MS Access, add at least two tables.
4. Add at least 10 records in each table and 5 fields at least.
5. You should make at least one from (Query, Form, Report).
6. Be sure you make the rela:onships between tables as needed.
7. The project is an individual work, so do not share your project with
others.
8. You can use videos in Lecture 2-3 as references.

Your are tasked with analyzing and documenting requirements for constructing a c

Your are tasked with analyzing and documenting requirements for constructing a computer forensics lab which specializes in cybersecurity of the critical infrastructure industry.
1. Discuss the physical, technical, and legal requirements related to the lab.
2. What are some of the hardware and software tools you would recommend for the lab?

Legal and Ethical Recommendations Brief
Overview
Data security and data privacy

Legal and Ethical Recommendations Brief
Overview
Data security and data privacy protection are key aspects of the cybersecurity domain. To address the concerns of data security and privacy, a practitioner must account for a number of competing drivers, including regulatory compliance, operational impact, cost, as well as customer and employee satisfaction. As a practitioner, you will be called upon to identify requirements and make recommendations for technology-, policy-, and workforce-related approaches to ensure that appropriate measures are in place to adequately secure data and protect individual privacy in a constantly changing threat environment. In this project, you will recommend an approach to address the legal and ethical aspects of a security-relevant business decision.
In this assignment, you will demonstrate your mastery of the following course competency:
Make recommendations regarding legal and ethical issues in cybersecurity appropriate for the organizational environment
Scenario
Your instructor will provide you with the specific scenario for this project in an announcement. This scenario places you back in the role of an executive-level security consultant for the organization. The scenario will provide you additional details surrounding the organization’s decisions on the proposal you addressed in Project One. To complete this task, you will prepare a legal and ethical recommendation brief for the internal stakeholder board in order to identify an approach to meeting the privacy protection, data security, and ethical needs of the scenario.
Prompt
Write a brief memorandum to the internal leadership board outlining your recommendations for meeting the needs of the scenario. You must address the critical elements listed below. The codes shown in brackets indicate the course competency to which each critical element is aligned.
Recommend an approach to protecting data privacy. Support your recommendation with evidence from applicable laws or the corporate mission and values.
Recommend an approach to ensuring data security. Support your recommendation with evidence from applicable laws or the corporate mission and values.
Describe how ethical considerations about data use influenced your recommendations for security-enhancing safeguards.
Project Three scenario:
Helios Health Insurance has provided a service level agreement (SLA) that defines the relationship between Fit-vantage and Helios. The student is tasked with recommending implementation of the controls detailed in the SLA. (*THE SCENARIO IS ATTACHED BELOW*)
What to Submit
Your submission should be 1 to 3 pages in length and should use double spacing, 12-point Times New Roman font, and one-inch margins. Sources should be cited according to APA style. Use a file name that includes the course code, the assignment title, and your name—for example, CYB_100_Project_One_Neo_Anderson.docx.
Project Two Rubric
CriteriaExemplary (100%)Proficient (85%)Needs Improvement (55%)Not Evident (0%)Value
Data PrivacyMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerRecommends an approach to protecting data privacy, including support from applicable laws or the corporate mission and valuesAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant30
Data SecurityMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerRecommends an approach to ensuring data security, including support from applicable laws or the corporate mission and valuesAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant30
Ethical ConsiderationsMeets “Proficient” criteria and addresses critical element in an exceptionally clear, insightful, sophisticated, or creative mannerDescribes how ethical considerations about data use influenced the recommendations for security-enhancing safeguardsAddresses “Proficient” criteria, but there are gaps in clarity, logic, or detailDoes not address critical element, or response is irrelevant30
Articulation of ResponseSubmission is free of errors related to grammar, spelling, and organization and is presented in a professional and easy-to-read formatSubmission has no major errors related to grammar, spelling, or organizationSubmission has some errors related to grammar, spelling, or organization that negatively impact readability and articulation of main ideasSubmission has critical errors related to grammar, spelling, or organization that prevent understanding of ideas10
Total: 100%

This project is the creation of an incident analysis brief for your manager. Reg

This project is the creation of an incident analysis brief for your manager. Regardless of the level of protection and prevention an organization has in place, cybersecurity incidents occur. It is the response to the incident that may make or break an organization. As you progress through your degree, you will build your skills to prepare for all stages of incident response: preparation, detection and analysis, containment, eradication and recovery, and post-incident activity.
A critical aspect of incident response is the ability to use information gained from an incident to improve the organization’s security posture. The insight gained helps security professionals develop solutions that reduce the likelihood of similar incidents in the future while balancing the potential negative impacts those solutions will have on the people, processes, and technologies they ultimately affect. In this project, you will examine an incident that has occurred and use the Fundamental Security Design Principles to develop recommendations that will protect the organization in the future.
In this assignment, you will demonstrate your mastery of the following course competency:
Describe fundamental principles of cybersecurity
Scenario
In a course announcement, your instructor will provide you with a scenario on which your work will be based. You will situate yourself as the security analyst in one of the provided scenarios, creating an incident analysis brief that explains to the security/IT director how the Fundamental Security Design Principles can be applied to strengthen the organization’s security posture following the incident described in the case. You do not require specific technical information from the system beyond those supplied for you within the scenario. Rather, you should address each critical element in the Project Two prompt, speaking broadly to what your analysis and recommendations would be, based on your research from the course materials collected in previous modules.
Prompt
Using evidence from the scenario, prepare an incident analysis brief for your manager. In your brief, you should limit your analysis by selecting one security objective and two Fundamental Security Design Principles from the lists below.
Security Objective (Choose One):
Confidentiality
Integrity
Availability
Fundamental Security Design Principles (Choose Two):
Separation (of domains/duties)
Isolation
Encapsulation
Modularity
Simplicity of design (economy of mechanism)
Minimization of implementation (least common mechanism)
Open design
Complete mediation
Layering (defense in depth)
Least privilege
Fail-safe defaults/fail secure
Least astonishment (psychological acceptability)
Minimization of trust surface (reluctance to trust)
Usability
Trust relationships
Specifically, you must address the critical elements listed below.
Scenario Analysis: Using your work in the case study analyses (Modules Two through Four) and other course resources as reference, select the security objective you think is most relevant to the organization in the case.
Describe why the loss of your selected security objective (confidentiality, integrity, or availability) reflects the greatest overall negative impact on the organization. Use evidence from the scenario and your coursework to support your selection.
Summarize the negative impacts on people, processes, and technologies associated with the loss of your selected security objective.
Recommendations: Select two Fundamental Security Design Principles as criteria, and recommend solutions to remedy the loss of the selected security objective based on your assessment of the incident.
Explain how your solution implements the selected Fundamental Security Design Principles. Provide evidence from the scenario and your coursework to support your selections.
Describe how your solution balances impacts on people, processes, and technologies.
Explain which aspect of your solution you would recommend to your manager as the most important to the organization. Support your response with evidence from the coursework or scenario