4
Terry Childs Case Review -
Firion Simtray Report -
Standards, Policies, and Guidelines Definition -
Profile Matrix -
Case issues and
Solution
s Template -
Cybersecurity Recommendations Presentation -
Step 1: Review the Terry Childs Case
Before getting started on the presentation, you will want to first learn about the Terry Childs case. Research the case and write a one-page summary of your findings. Your summary should answer the following questions:
· What led to Childs being charged with a crime?
· How did his employer respond to his actions? What did it do right and/or wrong?
· What could the company have done to better secure its assets?
Your summary should be thorough and include a references page. The information gathered will be used in your final presentation. You will use this summary as Appendix A to your presentation.
Submit the Terry Childs Case Review for feedback.
Step 2: Project Practice - SIMTRAY Firion: Day 1
Now that you have been introduced to an actual case of insider threats, you will practice handling insiders in a simulated environment. The world of cybersecurity is populated with diverse people with a diversity of perspectives. Every now and then, individuals may violate certain standards of behavior or ethics. It is in an organization's best interest to identify these people and address their core issues, either through motivation, incentives, or by developing a strong relationship with them. In the event that this course of action fails, organizations must be prepared to employ graduated adverse personnel actions.
You will learn how to resolve issues and provide a secure environment by exploring the SIMTRAY titled, "Firion: Find Your Way in Three Days." SIMTRAY is a simulation that presents you with scenarios that will provide insight into how information security management handles various issues. Some of the issues and topics addressed in this exercise include hacker profiles, insider threats, laws concerning privacy, anonymity - definition, and digital rights management.
The SIMTRAY will provide you with scores to give you a sense on how well you are grasping the concepts. The sections are timed for 30 minutes; however, you can run the SIMTRAY as many times as you need. Record your best score and at least one lesson learned from the exercise to include in your report at the end of the three-day simulation.
Step 3: Project Practice - SIMTRAY Firion: Day 2
In the previous step, you started to examine the SIMTRAY, "Firion: Find Your Way in Three Days." In this step, continue to focus on SIMTRAY, but document the specific issues that you would like to include in your presentation. You may encounter the following topics in this exercise: hacker profiles, insider threats, laws concerning privacy, anonymity - definition, and digital rights management.
The SIMTRAY will provide you with scores to give you a sense on how well you are grasping the concepts. The sections are timed for 30 minutes; however, yo ...
4Terry Childs Case Review - Firion Simtray Report - Standar.docx
1. 4
Terry Childs Case Review -
Firion Simtray Report -
Standards, Policies, and Guidelines Definition -
Profile Matrix -
Case issues and
Solution
s Template -
Cybersecurity Recommendations Presentation -
Step 1: Review the Terry Childs Case
Before getting started on the presentation, you will want to first
learn about the Terry Childs case. Research the case and write a
one-page summary of your findings. Your summary should
answer the following questions:
· What led to Childs being charged with a crime?
· How did his employer respond to his actions? What did it do
right and/or wrong?
· What could the company have done to better secure its assets?
Your summary should be thorough and include a references
page. The information gathered will be used in your final
presentation. You will use this summary as Appendix A to your
presentation.
2. Submit the Terry Childs Case Review for feedback.
Step 2: Project Practice - SIMTRAY Firion: Day 1
Now that you have been introduced to an actual case of insider
threats, you will practice handling insiders in a simulated
environment. The world of cybersecurity is populated with
diverse people with a diversity of perspectives. Every now and
then, individuals may violate certain standards of behavior or
ethics. It is in an organization's best interest to identify these
people and address their core issues, either through motivation,
incentives, or by developing a strong relationship with them. In
the event that this course of action fails, organizations must be
prepared to employ graduated adverse personnel actions.
You will learn how to resolve issues and provide a secure
environment by exploring the SIMTRAY titled, "Firion: Find
Your Way in Three Days." SIMTRAY is a simulation that
presents you with scenarios that will provide insight into how
information security management handles various issues. Some
of the issues and topics addressed in this exercise include
hacker profiles, insider threats, laws concerning privacy,
anonymity - definition, and digital rights management.
The SIMTRAY will provide you with scores to give you a sense
on how well you are grasping the concepts. The sections are
timed for 30 minutes; however, you can run the SIMTRAY as
many times as you need. Record your best score and at least one
3. lesson learned from the exercise to include in your report at the
end of the three-day simulation.
Step 3: Project Practice - SIMTRAY Firion: Day 2
In the previous step, you started to examine the SIMTRAY,
"Firion: Find Your Way in Three Days." In this step, continue
to focus on SIMTRAY, but document the specific issues that
you would like to include in your presentation. You may
encounter the following topics in this exercise: hacker profiles,
insider threats, laws concerning privacy, anonymity - definition,
and digital rights management.
The SIMTRAY will provide you with scores to give you a sense
on how well you are grasping the concepts. The sections are
timed for 30 minutes; however, you can run the SIMTRAY as
many times as you need. Record your best score and at least one
lesson learned from the exercise to include in your report at the
end of the three-day simulation.
Step 4: Project Practice - SIMTRAY Firion: Day 3
In this step, you should continue to explore the scenarios within
SIMTRAY, "Firion: Find Your Way in Three Days." If you have
not already, you will most likely encounter the following topics
in this exercise: hacker profiles, insider threats, laws
concerning privacy, anonymity - definition, and digital rights
management. Document specific issues that you experience in
4. the exercise that you would like to include in your presentation.
Think about how these issues might be addressed by guidelines
and policy.
The SIMTRAY will provide you with scores to give you a sense
on how well you are grasping the concepts. The sections are
timed for 30 minutes; however, you can run the SIMTRAY as
many times as you need. Compile your recorded scores, lessons
learned, and documented industry issues into a one-page report.
You will use this report as Appendix B to your presentation.
Submit your Firion Simtray Report for feedback.
Step 5: Psychological Factors
In the previous three steps, you completed simulation activities
handling insiders. In the next few steps, you'll examine
intrusion motives / hacker psychology. In order to fully
understand the Terry Childs case, it is important to understand
that one's internal motivations play a significant role in their
actions.
Your next assignment will require you to create a Psychological
Factor Matrix that summarizes types of hackers and actors, their
motivations, and what sort of standards, policies, and guidelines
would be most suitable to mitigate their impact. In order to
prepare for this assignment, you will need to dig deeper into the
psychological factors that affect hackers. Review the hacker
psychology and sociological aspects resource on the hackers and
5. actors topic page and document the following:
· What psychological factors motivate hackers and actors (e.g.,
addiction, crime, greed, status)?
· Give examples where these motivations were a factor in a
cyberattack.
· What can organizations do to be more proactive in identifying
and addressing these threats?
While you do not need to submit your findings, they will be
essential to the completion of your Profile Matrix in a later
step.
Step 6: Hacking as an Addiction
After considering psychological factors of hackers and actors in
the last step, you will expand your exploration into the concept
of hacking as an addiction.
In examining the psychological factors of hackers, some mental
health and criminal justice professionals contend that hacking is
an "addiction" and causes obsessive, risk-taking behavior in a
manner similar to illegal narcotics—hackers hack to "get high"
from the thrill of breaking into a system and getting away with
it. Examine and document your thoughts on the following
questions:
· Should policy makers look toward treatment, rather than
incarceration, as to the disposition of hackers? Why or why not?
Think about this question in relation to the Childs case and how
6. it will affect your recommendations.
Post your thoughts to the discussion board for feedback
Step 7: Ethical vs. Unethical Hackers
As the cybersecurity field expands, the larger community
discourse leads to changes in terminology. While some of our
course materials may differentiate between the terms "hackers"
and "crackers" as threat actors, we will use the terms "ethical
hackers" and "nonethical hackers" to make the same
differentiation. Learn about the different types of hackers, or
non-state actors, and document the following:
· How do the profiles for ethical and unethical hackers differ?
· Should these psychological attributes make a difference as to
the amount of, or nature of the punishment meted out to those
who are caught? Why or why not?
· Describe how certain factors can also motivate ethical
hackers, or those who defend against cyberattacks? (e.g.,
revenge, patriotism, fear of government abuse, pride, respect for
the law, ownership, anger, retaliation).
While you do not need to submit your findings, they will be
essential to the completion of your matrix in a later step.
Step 8: Hacker Profiling
In the previous step, you learned about the psychological
factors that motivate hackers. In this step, you will go a bit
7. further by learning how to profile hackers -- a skill that is
essential to the success of cybersecurity professionals. Read
about hacker profiling hackers and document the following:
· How do profiles of ethical and unethical hackers differ?
· While psychological profiling of criminals is not a new field,
should we attempt to profile cybercriminals?
· What sort of things do we already know about the
personalities of cybercriminals?
· Do we have enough evidence to indicate there is a distinct
psychological pattern that would help in the apprehension of
cybercriminals?
In the next step, you will use all the information you've learned
about hackers to create a matrix.
Step 9: Define Standards, Policies, and Guidelines
Before you can complete the Profile Matrix and develop
solutions for your company, you will need to take a closer look
at how standards, policies, and guidelines affect a company's
security posture. You probably already have questions about
what policies were in place prior to the Childs incident. In this
step, you dig deeper and learn more about the difference
between standards, policies, and guidelines by creating a two-
to three-page comparison report. Your report should answer the
following questions:
· What is the difference between standards, policies, and
8. guidelines?
· How do they relate to one another?
· How well do they work in securing networks and data within
the organization?
This report is particularly important because it will affect the
recommendations you make to your boss regarding the case.
You will use this report as Appendix C to your presentation.
Submit your Standards, Policies, and Guidelines Definition for
feedback.
Step 10: Profile Matrix
Now that you have familiarized yourself with the concepts of
hackers and standards, policies, and guidelines, it is important
to understand how to match the two in an organization.
For this assignment, prepare a Profile Matrix that lists the
different types of hackers in the first column, and for each, list
the psychological profile, main motivations, threats to the
organization, benefits to the organization, and whether or not a
standard, guideline, or policy best applies to them. Be sure to
identify an example of a standard, guideline, or policy that may
apply. You should identify a minimum of six hacker-type
examples. This will assist you in both helping upper
management identify insider threats and to prevent future
breaches.
Finally, at this point in your assignment, you should have
9. encountered concerns about using profiles to "watch" employees
and the benefits and dangers of doing so. Include a short
paragraph about your findings to the matrix.
Submit your Profile Matrix for feedback.
Step 11: Insider Threat eLearning Module - Insider Fraud at
Daytona Investment Bank
Now that you've completed your profile matrix, the next step
will be for you to investigate an insider threat scenario.
This exercise discusses a fictitious scenario about Insider Fraud
at Daytona Investment Bank. In the scenario an internal
investigation revealed that Shane Kerry, an arbitrage trader
specializing in Asian stock markets, used his knowledge of the
bank's internal information security controls to disguise
fraudulent transactions. These transactions resulted in a loss of
$2 billion.
After completing the exercise, answer the following question:
· Could specific standards, policies, and guidelines or other
countermeasures have prevented these fraudulent transactions?
Please explain.
Post your answer to the discussion board for feedback
Step 12: Case Issues and