SlideShare a Scribd company logo

security_assessment_report_nidhi yadav.pptx

Download as PPTX, PDF
A
Akttripathi

CISCO

Education
1 of 17
SECURITY Presented By Nidhi Yadav CYBER India_Internship VIP 2023 -Industry Problem Statement KIET Groups of Institutions, Ghaziabad Nidhi Yadav 2100290110102 COMPUTER SCIENCE AND INFORMATION
Components and Structure of Campus 30 1 1 R o u t e r s S e r i a l D C E C a b l e Sw i t c h e s (Cisco 3 6 5 0 - 24 PS,2 9 6 0 - 2 4TT ) Pr i n t e r s PC ' s La p t o p - PT
Explanation: A brief explanation of how these components can contribute to the cybersecurity of your campus network: Routers: Routers are responsible for directing traffic between different networks. Implement strong access control lists (ACLs) and firewall rules on routers to control incoming and outgoing traffic, preventing unauthorized access and potential threats. Serial DCE Cable: Serial DCE cables are used to connect routers and switches. Ensure that physical access to these cables is restricted to authorized personnel only, as tampering with the physical connections can lead to network disruptions or unauthorized access. Switches (Cisco 3650-24PS, 2960-24TT): Switches are essential for local
communication. Enable port security on switches to prevent unauthorized devices from connecting to network ports and implement VLANs to segment traffic and enhance security. Servers :Servers house critical data and applications. Implement strong authentication mechanisms, apply regular security patches, and use intrusion detection/prevention systems to safeguard server assets from cyber threats. Printers: Printers can be an entry point for attackers to gain unauthorized access to your network. Ensure printers are on a separate network or segment them using VLANs to minimize the impact of potential breaches. Switches and Servers (as well as other network devices): Monitor network devices and servers for unusual activities using security information and event management (SIEM) solutions. This helps detect potential security breaches early and allows for timely action.
• 3650-24PS (PoE Switch): If the 3650-24PS supports Power over Ethernet (PoE), ensure proper security measures are in place to prevent unauthorized access to powered devices, such as IP phones or cameras, to avoid potential attacks. • PCs and Laptops (including PT Laptop): Secure endpoints with up-to-date anti-malware software, enforce strong password policies, and educate users about phishing and social engineering risks. Consider using endpoint detection and response (EDR) solutions for advanced threat detection. • Printers: Regularly update printer firmware to patch vulnerabilities and disable unnecessary services to reduce the attack surface. • PCs and Laptops: Enforce encryption on laptops to protect sensitive data in case of theft or loss.
• Laptop-PT: As a virtual environment, ensure the security of the Laptop-PT by running it on secure hosts with up-to-date virtualization software and monitoring its network activity. • Address for main campus to cloud is 10.10.10.4/30 and cloud to server is 20.0.0.0/30. • Address for main campus to other branch is 10.10.10.0/30. • VLAN Portslike VLAN 10 and 192.168.1.0/24, so on.....
“Remember, a comprehensive cybersecurity strategy involves a combination of network security, endpoint protection, access control, monitoring, and user education. Regular security assessments and audits can help identify vulnerabilities and ensure that your campus network remains resilient against potential cyber threats”.
MY CAMPUSNETWORK
SECURITY RISKS & SOLUTIONS Security Risks: 1. Insider Threats 2. Malware and Ransomware Attacks 3. Phishing and Social Engineering 4. DDoS Attacks 5. Unpatched Vulnerabilities 6. Unauthorized Access 7. Physical Security Threats 8. Data Breaches 9. IoT and BYOD Risks 10. Lack of Incident Response Plan
Solutions: 1. Implement access controls and least privilege principles. 2. Deploy and update anti-malware and anti-ransomware solutions. 3. Conduct regular security awareness training. 4. Use email security gateways and implement multi-factor authentication (MFA). 5. Deploy DDoS protection solutions and redundant network infrastructure. 6. Establish a robust patch management process. 7. Implement strong network segmentation and use firewalls. 8. Secure physical access points and use surveillance. 9. Encrypt sensitive data and enforce data loss prevention (DLP) policies. 10. Segment IoT devices and implement network access control (NAC). 11. Develop and test an incident response plan.
Unauthorized Access Unauthorized individuals gaining access to the campus network, compromising sensitiveinformation or causing disruption. Solution: Strong Access Controls and Authentication Measures Implement strong access controls, including multi-factor authentication, and enforce robust password policies. Regularly review and update access privileges and monitor network logs for suspicious activities.
Malware and Viruses Campus networks are vulnerable to malware and viruses that can spread rapidly and infect multiple devices, leading to data breaches or system failures. Solution: Robust Antivirus and Anti-Malware Protection Deploy up-to-date antivirus and anti-malware software across the network. Regularly update operating systems and applications with security patches. Educate users about safe browsing habits and caution against downloading suspicious attachments or visiting potentially harmful websites
Insider Threats Employees or students with malicious intent may abuse their privileges or access rights to compromise the network or steal sensitivedata. Solution: Addressing Insider Threats through Least Privilege and Security Awareness Implement least privilege principles, granting users only the necessary access required for their roles. Conduct regular security awareness training to educate employees and students about their responsibilities and the potential consequences of insider threats. Implement user activity monitoring and behavior analytics to detect anomalous behavior.
Data Breaches Inadequate security measures exposing sensitive data, such as personal information, academic records, or financial details, to unauthorized parties. Solution: Safeguarding Data through Encryption and Data Loss Prevention (DLP) Encrypt sensitive data at rest and in transit using strong encryption algorithms. Implement data loss prevention (DLP) solutions to monitor and prevent unauthorized data exfiltration. Regularly conduct security audits and vulnerability assessments to identify and remediate potential vulnerabilities.
Denial-of-Service (DoS) Attacks Attackers overwhelming the campus network's resources, rendering it unavailable to legitimate users. Solution: Mitigating Denial-of-Service (DoS) Attacks with Network Protection Measures Deploy robust network firewalls and intrusion prevention systems to detect and mitigate DoS attacks. Use traffic shaping and rate limiting techniques to manage and prioritize network traffic. Establish partnerships with Internet Service Providers (ISPs) to assist in mitigating large-scale DoS attacks.
Thank You!

Recommended

The Crucial Role of IT Network Support Services.docx
The Crucial Role of IT Network Support Services.docxThe Crucial Role of IT Network Support Services.docx
The Crucial Role of IT Network Support Services.docx
TheWalkerGroup1
 
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdfTop 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Bytecode Security
 
CYBERSECURITY.pptx
CYBERSECURITY.pptxCYBERSECURITY.pptx
CYBERSECURITY.pptx
ItzRoswell1
 
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sally's Special Services
 
Secure Financial Intelligence System
Secure Financial Intelligence SystemSecure Financial Intelligence System
Secure Financial Intelligence System
Joseph Yosi Margalit
 
IRJET - IDS for Wifi Security
IRJET - IDS for Wifi SecurityIRJET - IDS for Wifi Security
IRJET - IDS for Wifi Security
IRJET Journal
 
8 Top Cybersecurity Tools.pptx
8 Top Cybersecurity Tools.pptx8 Top Cybersecurity Tools.pptx
8 Top Cybersecurity Tools.pptx
Metaorange
 
8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf
Metaorange
 

Recommended

The Crucial Role of IT Network Support Services.docx
The Crucial Role of IT Network Support Services.docxThe Crucial Role of IT Network Support Services.docx
The Crucial Role of IT Network Support Services.docx
TheWalkerGroup1
 
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdfTop 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Top 10 Types of Cyber Attacks and How to Prevent cyber attacks.pdf
Bytecode Security
 
CYBERSECURITY.pptx
CYBERSECURITY.pptxCYBERSECURITY.pptx
CYBERSECURITY.pptx
ItzRoswell1
 
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sallysspecialservices networksecurityproposal2-100305141834-phpapp02
Sally's Special Services
 
Secure Financial Intelligence System
Secure Financial Intelligence SystemSecure Financial Intelligence System
Secure Financial Intelligence System
Joseph Yosi Margalit
 
IRJET - IDS for Wifi Security
IRJET - IDS for Wifi SecurityIRJET - IDS for Wifi Security
IRJET - IDS for Wifi Security
IRJET Journal
 
8 Top Cybersecurity Tools.pptx
8 Top Cybersecurity Tools.pptx8 Top Cybersecurity Tools.pptx
8 Top Cybersecurity Tools.pptx
Metaorange
 
8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf8 Top Cybersecurity Tools.pdf
8 Top Cybersecurity Tools.pdf
Metaorange
 
PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
PACE-IT, Security+1.1: Introduction to Network Devices (part 2)PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
Pace IT at Edmonds Community College
 
Needs of Network security.pptx. Cryptography
Needs of Network security.pptx. CryptographyNeeds of Network security.pptx. Cryptography
Needs of Network security.pptx. Cryptography
prosunghosh7
 
Investigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a SecureInvestigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a Secure
Firas Alsayied
 
Project 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This cheProject 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This che
davieec5f
 
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
IRJET Journal
 
SMB Network Security Checklist
SMB Network Security Checklist SMB Network Security Checklist
SMB Network Security Checklist
Mobeen Khan
 
Linux Security best Practices with Fedora
Linux Security best Practices with FedoraLinux Security best Practices with Fedora
Linux Security best Practices with Fedora
Uditha Bandara Wijerathna
 
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
Shakeel Ali
 
Didiet Cybersecurity Consultant Portfolio - English
Didiet Cybersecurity Consultant Portfolio - EnglishDidiet Cybersecurity Consultant Portfolio - English
Didiet Cybersecurity Consultant Portfolio - English
Didiet Kusumadihardja
 
Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032
PECB
 
INT 1010 06-6.pdf
INT 1010 06-6.pdfINT 1010 06-6.pdf
INT 1010 06-6.pdf
Luis R Castellanos
 
Cyber risks in supply chains
Cyber risks in supply chains Cyber risks in supply chains
Cyber risks in supply chains
Aparajita Banerjee
 
network_security.docx_2.pdf
network_security.docx_2.pdfnetwork_security.docx_2.pdf
network_security.docx_2.pdf
ahmed53254
 
Marlabs cyber threat management
Marlabs cyber threat managementMarlabs cyber threat management
Marlabs cyber threat management
Rajendra Menon
 
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
IJCNCJournal
 
Security assignment (copy)
Security assignment (copy)Security assignment (copy)
Security assignment (copy)
Amare Kassa
 
CSE_Instructor_Materials_Chapter7.pptx
CSE_Instructor_Materials_Chapter7.pptxCSE_Instructor_Materials_Chapter7.pptx
CSE_Instructor_Materials_Chapter7.pptx
Mohammad512578
 
Cyber Security
Cyber SecurityCyber Security
Cyber Security
IRJET Journal
 
Network security
Network securityNetwork security
Network security
Pooja Dewangan
 
Study of campus network security
Study of campus network securityStudy of campus network security
Study of campus network security
Trishla Thakur
 
SHREYA_CISCO.pptx
SHREYA_CISCO.pptxSHREYA_CISCO.pptx
SHREYA_CISCO.pptx
Akttripathi
 
CISCO ASSIGNMENT.pptx
CISCO ASSIGNMENT.pptxCISCO ASSIGNMENT.pptx
CISCO ASSIGNMENT.pptx
Akttripathi
 

More Related Content

Similar to security_assessment_report_nidhi yadav.pptx

Needs of Network security.pptx. Cryptography
Needs of Network security.pptx. CryptographyNeeds of Network security.pptx. Cryptography
Needs of Network security.pptx. Cryptography
prosunghosh7
 
Investigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a SecureInvestigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a Secure
Firas Alsayied
 
Project 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This cheProject 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This che
davieec5f
 
Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032
PECB
 
Cyber risks in supply chains
Cyber risks in supply chains Cyber risks in supply chains
Cyber risks in supply chains
Aparajita Banerjee
 
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
IJCNCJournal
 

Similar to security_assessment_report_nidhi yadav.pptx (20)

PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
PACE-IT, Security+1.1: Introduction to Network Devices (part 2)PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
PACE-IT, Security+1.1: Introduction to Network Devices (part 2)
 
Needs of Network security.pptx. Cryptography
Needs of Network security.pptx. CryptographyNeeds of Network security.pptx. Cryptography
Needs of Network security.pptx. Cryptography
 
Investigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a SecureInvestigation, Design and Implementation of a Secure
Investigation, Design and Implementation of a Secure
 
Project 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This cheProject 1CST630 Project ChecklistStudent Name DateNote This che
Project 1CST630 Project ChecklistStudent Name DateNote This che
 
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
 
SMB Network Security Checklist
SMB Network Security Checklist SMB Network Security Checklist
SMB Network Security Checklist
 
Linux Security best Practices with Fedora
Linux Security best Practices with FedoraLinux Security best Practices with Fedora
Linux Security best Practices with Fedora
 
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
Critical Infrastructure Assessment Techniques to Prevent Threats and Vulnerab...
 
Didiet Cybersecurity Consultant Portfolio - English
Didiet Cybersecurity Consultant Portfolio - EnglishDidiet Cybersecurity Consultant Portfolio - English
Didiet Cybersecurity Consultant Portfolio - English
 
Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032Improve Cybersecurity posture by using ISO/IEC 27032
Improve Cybersecurity posture by using ISO/IEC 27032
 
INT 1010 06-6.pdf
INT 1010 06-6.pdfINT 1010 06-6.pdf
INT 1010 06-6.pdf
 
Cyber risks in supply chains
Cyber risks in supply chains Cyber risks in supply chains
Cyber risks in supply chains
 
network_security.docx_2.pdf
network_security.docx_2.pdfnetwork_security.docx_2.pdf
network_security.docx_2.pdf
 
Marlabs cyber threat management
Marlabs cyber threat managementMarlabs cyber threat management
Marlabs cyber threat management
 
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
DEPLOYMENT OF INTRUSION PREVENTION SYSTEM ON MULTI-CORE PROCESSOR BASED SECUR...
 
Security assignment (copy)
Security assignment (copy)Security assignment (copy)
Security assignment (copy)
 
CSE_Instructor_Materials_Chapter7.pptx
CSE_Instructor_Materials_Chapter7.pptxCSE_Instructor_Materials_Chapter7.pptx
CSE_Instructor_Materials_Chapter7.pptx
 
Cyber Security
Cyber SecurityCyber Security
Cyber Security
 
Network security
Network securityNetwork security
Network security
 
Study of campus network security
Study of campus network securityStudy of campus network security
Study of campus network security
 

More from Akttripathi

Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
Akttripathi
 

More from Akttripathi (7)

SHREYA_CISCO.pptx
SHREYA_CISCO.pptxSHREYA_CISCO.pptx
SHREYA_CISCO.pptx
 
CISCO ASSIGNMENT.pptx
CISCO ASSIGNMENT.pptxCISCO ASSIGNMENT.pptx
CISCO ASSIGNMENT.pptx
 
4.1 What Are Routine Assessments.pptx.pptx
4.1 What Are Routine Assessments.pptx.pptx4.1 What Are Routine Assessments.pptx.pptx
4.1 What Are Routine Assessments.pptx.pptx
 
Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
Algebra 2 Fundamentals of Mathematics for JEE MAINS and Advanced ( PDFDrive )...
 
3 Security Engineering Domain.pptx
3 Security Engineering Domain.pptx3 Security Engineering Domain.pptx
3 Security Engineering Domain.pptx
 
mdm-intro-chapter1.ppt
mdm-intro-chapter1.pptmdm-intro-chapter1.ppt
mdm-intro-chapter1.ppt
 
Class 3 3
Class 3 3Class 3 3
Class 3 3
 

Recently uploaded

1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
QucHHunhnh
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
negromaestrong
 
Gardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch LetterGardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch Letter
MateoGardella
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
heathfieldcps1
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
Chris Hunter
 

Recently uploaded (20)

Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docx
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
 
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdf
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin ClassesMixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SD
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
Gardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch LetterGardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch Letter
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writing
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 
Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
 

security_assessment_report_nidhi yadav.pptx

  • 1. SECURITY Presented By Nidhi Yadav CYBER India_Internship VIP 2023 -Industry Problem Statement KIET Groups of Institutions, Ghaziabad Nidhi Yadav 2100290110102 COMPUTER SCIENCE AND INFORMATION
  • 2. Components and Structure of Campus 30 1 1 R o u t e r s S e r i a l D C E C a b l e Sw i t c h e s (Cisco 3 6 5 0 - 24 PS,2 9 6 0 - 2 4TT ) Pr i n t e r s PC ' s La p t o p - PT
  • 3.
  • 4. Explanation: A brief explanation of how these components can contribute to the cybersecurity of your campus network: Routers: Routers are responsible for directing traffic between different networks. Implement strong access control lists (ACLs) and firewall rules on routers to control incoming and outgoing traffic, preventing unauthorized access and potential threats. Serial DCE Cable: Serial DCE cables are used to connect routers and switches. Ensure that physical access to these cables is restricted to authorized personnel only, as tampering with the physical connections can lead to network disruptions or unauthorized access. Switches (Cisco 3650-24PS, 2960-24TT): Switches are essential for local
  • 5. communication. Enable port security on switches to prevent unauthorized devices from connecting to network ports and implement VLANs to segment traffic and enhance security. Servers :Servers house critical data and applications. Implement strong authentication mechanisms, apply regular security patches, and use intrusion detection/prevention systems to safeguard server assets from cyber threats. Printers: Printers can be an entry point for attackers to gain unauthorized access to your network. Ensure printers are on a separate network or segment them using VLANs to minimize the impact of potential breaches. Switches and Servers (as well as other network devices): Monitor network devices and servers for unusual activities using security information and event management (SIEM) solutions. This helps detect potential security breaches early and allows for timely action.
  • 6. • 3650-24PS (PoE Switch): If the 3650-24PS supports Power over Ethernet (PoE), ensure proper security measures are in place to prevent unauthorized access to powered devices, such as IP phones or cameras, to avoid potential attacks. • PCs and Laptops (including PT Laptop): Secure endpoints with up-to-date anti-malware software, enforce strong password policies, and educate users about phishing and social engineering risks. Consider using endpoint detection and response (EDR) solutions for advanced threat detection. • Printers: Regularly update printer firmware to patch vulnerabilities and disable unnecessary services to reduce the attack surface. • PCs and Laptops: Enforce encryption on laptops to protect sensitive data in case of theft or loss.
  • 7. • Laptop-PT: As a virtual environment, ensure the security of the Laptop-PT by running it on secure hosts with up-to-date virtualization software and monitoring its network activity. • Address for main campus to cloud is 10.10.10.4/30 and cloud to server is 20.0.0.0/30. • Address for main campus to other branch is 10.10.10.0/30. • VLAN Portslike VLAN 10 and 192.168.1.0/24, so on.....
  • 8. “Remember, a comprehensive cybersecurity strategy involves a combination of network security, endpoint protection, access control, monitoring, and user education. Regular security assessments and audits can help identify vulnerabilities and ensure that your campus network remains resilient against potential cyber threats”.
  • 10. SECURITY RISKS & SOLUTIONS Security Risks: 1. Insider Threats 2. Malware and Ransomware Attacks 3. Phishing and Social Engineering 4. DDoS Attacks 5. Unpatched Vulnerabilities 6. Unauthorized Access 7. Physical Security Threats 8. Data Breaches 9. IoT and BYOD Risks 10. Lack of Incident Response Plan
  • 11. Solutions: 1. Implement access controls and least privilege principles. 2. Deploy and update anti-malware and anti-ransomware solutions. 3. Conduct regular security awareness training. 4. Use email security gateways and implement multi-factor authentication (MFA). 5. Deploy DDoS protection solutions and redundant network infrastructure. 6. Establish a robust patch management process. 7. Implement strong network segmentation and use firewalls. 8. Secure physical access points and use surveillance. 9. Encrypt sensitive data and enforce data loss prevention (DLP) policies. 10. Segment IoT devices and implement network access control (NAC). 11. Develop and test an incident response plan.
  • 12. Unauthorized Access Unauthorized individuals gaining access to the campus network, compromising sensitiveinformation or causing disruption. Solution: Strong Access Controls and Authentication Measures Implement strong access controls, including multi-factor authentication, and enforce robust password policies. Regularly review and update access privileges and monitor network logs for suspicious activities.
  • 13. Malware and Viruses Campus networks are vulnerable to malware and viruses that can spread rapidly and infect multiple devices, leading to data breaches or system failures. Solution: Robust Antivirus and Anti-Malware Protection Deploy up-to-date antivirus and anti-malware software across the network. Regularly update operating systems and applications with security patches. Educate users about safe browsing habits and caution against downloading suspicious attachments or visiting potentially harmful websites
  • 14. Insider Threats Employees or students with malicious intent may abuse their privileges or access rights to compromise the network or steal sensitivedata. Solution: Addressing Insider Threats through Least Privilege and Security Awareness Implement least privilege principles, granting users only the necessary access required for their roles. Conduct regular security awareness training to educate employees and students about their responsibilities and the potential consequences of insider threats. Implement user activity monitoring and behavior analytics to detect anomalous behavior.
  • 15. Data Breaches Inadequate security measures exposing sensitive data, such as personal information, academic records, or financial details, to unauthorized parties. Solution: Safeguarding Data through Encryption and Data Loss Prevention (DLP) Encrypt sensitive data at rest and in transit using strong encryption algorithms. Implement data loss prevention (DLP) solutions to monitor and prevent unauthorized data exfiltration. Regularly conduct security audits and vulnerability assessments to identify and remediate potential vulnerabilities.
  • 16. Denial-of-Service (DoS) Attacks Attackers overwhelming the campus network's resources, rendering it unavailable to legitimate users. Solution: Mitigating Denial-of-Service (DoS) Attacks with Network Protection Measures Deploy robust network firewalls and intrusion prevention systems to detect and mitigate DoS attacks. Use traffic shaping and rate limiting techniques to manage and prioritize network traffic. Establish partnerships with Internet Service Providers (ISPs) to assist in mitigating large-scale DoS attacks.