JF
Uploaded byJeewanthi Fernando
73 views

Assignment 1

(1) The document discusses information asset risk scenarios involving a Manufacturing Execution System (MES). Threats include DDoS attacks, malware attacks, port scanning, and software/hardware faults. (2) For each scenario, the document considers actors, means, motives, potential outcomes/impacts, security requirement breaches, probability, consequences, severity scores, and proposed risk mitigation controls. (3) Risk mitigation controls proposed include installing intrusion detection systems, evaluating network traffic, maintaining backup systems, and cracking down on software issues at the source (e.g. viruses). The goal is to apply appropriate administrative, technical, and physical controls while accepting only residual risks.

Embed presentation

Download to read offline
Sri Lanka Institute of Information Technology Master of Science (Information Management) Degree Program Information Security Risk Management and Audit Assignment 1 W.M.J.H. Fernando MS18901290
Scenario 01 Allegro - Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A DDoS attack occurs targeting the manufacturing operation. The gateway crashes exposing the workstations to other forms of malicious attack. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using that network and botnet to do distribute DDoS attack (3) Motive What is the actor’s reason for doing it? The illegal access and change or crash the system (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score To the Manufacturing Execution System DDoS attack will highly affected and lead to more attacks to system. Reputation & Customer Confidence Low (1) 0.75 Financial Low (1) 0.75 To the Manufacturing Execution System DDoS attack will reason in most of days or hours. Productivity High (3) 2.25 Safety & Health High (3) 2.25 There are payments can be expected form clients. Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 6.75
(9) Risk Mitigation Based on the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network. • It is practically enough bandwidth form ISP to endure the attack.
Scenario 02 Allegro - Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A malicious software is attack process of workstation. There are functions are inaccessible to the designation users. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? This malicious software will connect with intranet or it installed to one of the workstation operations. (3) Motive What is the actor’s reason for doing it? The illegal access and change or crash the system or the workstation operating system. (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System. Data should be disclosure for outside companies. (6) Probability What is the likelihood that this threat scenario could occur? High 75% Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A malware can hypothetically have long lasting things until it can be recognized and appropriately removed. Reputation & Customer Confidence Low (1) 0.5 Financial Medium (2) 1 Malware aiming the severely disrupt the process of the Manufacturing Execution System Productivity High (3) 1.5 Safety & Health High (3) 1.5 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.5 User Defined Impact Area - - Relative Risk Score 5
(9) Risk Mitigation Based on the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network.
Scenario 03 Allegro - Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern Scanning of the workstations of the MES for open ports or ports used by SIEMENS WinCC for additional activity (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using the internet to do port scanning, an information gathering method (3) Motive What is the actor’s reason for doing it? The illegal access and identify the vulnerabilities (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score The port scanning used to detect vulnerability in OS and the service running on the OS of the MES Reputation & Customer Confidence Low (1) 0.75 Financial Low (1) 0.75 Such activities could be illegal remote access to infect with malware Productivity Low (1) 0.75 Safety & Health Low (1) 0.75 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 3.75
(9) Risk Mitigation Based on the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network. E.g.: Broad rang of connection needs on another port by a single IP
Scenario 04 Allegro - Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A hardware defect on the workstation of MES occurs (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using a virus or remote exploit, after a DDoS attack has occurred, an interested party could cause a hardware defect. (3) Motive What is the actor’s reason for doing it? Gain unauthorized access and damage one of the one of the workstations (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? The workstation of the MES must available to provide 24/7/365 activities (6) Probability What is the likelihood that this threat scenario could occur? ❑ High 75% ❑ Medium 50% Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A hardware fault can have high financial costs due to the cost of repair and inaccessibility of the infrastructure Reputation & Customer Confidence High (3) 0.75 Financial Medium (2) 0.5 A hardware fault could delay production for an indefinite amount of time depending on the fault. Productivity High (3) 0.75 Safety & Health High (3) 0.75 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.25 User Defined Impact Area - - Relative Risk Score 3
(9) Risk Mitigation Based on the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Technical: Workstation • Keep the backup system (BCP) up to date and arranged to go live within maximum one hour. • Crack to remove the problem at it source, perhaps virus.
Scenario 05 Allegro - Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A software fault on the Microsoft Windows OS or the Siemens WinCC software is exploited to crash or change the software. Workstations are not repaired to the newest updates. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Via a virus or remote access after a DDoS or port scanning attack has happened (3) Motive What is the actor’s reason for doing it? The illegal access to & do the modification or the crash the Siemens Simatic software or the operating system of the workstation. (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A software crash on the Simatic or OS it could lead to miss on readings about malfunctions of the infrastructure or cause them. It would hinder productivity possibly to a halt affecting distribution. Some financial loss is expected Reputation & Customer Confidence Low (1) 0.75 Financial Medium (2) 1.5 A software crash on the Simatic or OS it could lead to miss on readings about malfunctions of the infrastructure or cause them. It would hinder productivity possibly to a halt and put at risk the health & safety of the personnel Productivity High (3) 2.25 Safety & Health High (3) 2.25 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 7.5
(9) Risk Mitigation Based on the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Simatic Be in contact with Siemens to apply patches for known vulnerabilities MS windows OS Be in contact with Microsoft to apply patches for known vulnerabilities Developer System Carefully test these against the bring copy of the MES

More Related Content

PPT
IT Security management and risk assessment
byCAS
 
PPTX
Vulnerability Management: What You Need to Know to Prioritize Risk
byAlienVault
 
PPTX
Why Patch Management is Still the Best First Line of Defense
byLumension
 
PPT
It's Your Move: The Changing Game of Endpoint Security
byLumension
 
PDF
Vulnerability scanning report by Tareq Hanaysha
byHanaysha
 
PPT
Planning and Deploying an Effective Vulnerability Management Program
bySasha Nunke
 
PDF
Vulnerability Malware And Risk
byChandrashekhar B
 
PDF
Is Your Vulnerability Management Program Irrelevant?
bySkybox Security
 
IT Security management and risk assessment
byCAS
 
Vulnerability Management: What You Need to Know to Prioritize Risk
byAlienVault
 
Why Patch Management is Still the Best First Line of Defense
byLumension
 
It's Your Move: The Changing Game of Endpoint Security
byLumension
 
Vulnerability scanning report by Tareq Hanaysha
byHanaysha
 
Planning and Deploying an Effective Vulnerability Management Program
bySasha Nunke
 
Vulnerability Malware And Risk
byChandrashekhar B
 
Is Your Vulnerability Management Program Irrelevant?
bySkybox Security
 

What's hot

PDF
Patch and Vulnerability Management
byMarcelo Martins
 
PPT
Software security engineering
byaizazhussain234
 
PPTX
Effective Vulnerability Management
byVicky Ames
 
PDF
Implementing Vulnerability Management
byArgyle Executive Forum
 
PPTX
Top 10 tips for effective SOC/NOC collaboration or integration
bySridhar Karnam
 
PPTX
Exercise Your SOC: How to run an effective SOC response simulation (BSidesCha...
byBrian Andrzejewski
 
PPT
Ch13 Business Continuity Planning and Procedures
byInformation Technology
 
PDF
Vulnerability Management Program
byDennis Chaupis
 
PDF
Software Vulnerabilities Risk Remediation
byBruce Hafner
 
PDF
Sample penetration testing agreement for core infrastructure
byDavid Sweigert
 
PDF
Vulnerability , Malware and Risk
bySecPod Technologies
 
PPTX
Enterprise Class Vulnerability Management Like A Boss
byrbrockway
 
PDF
Cas 003-q&a-demo-exam area
bySamanthaGreen16
 
PDF
Is Your Vulnerability Management Program Keeping Pace With Risks?
bySkybox Security
 
PDF
The uncool-security-hygiene
byThiagu Haldurai
 
PPTX
Network Vulnerability Assessment: Key Decision Points
byPivotPointSecurity
 
PDF
Information security-toolkit-76396-8
bycolleenatrsc
 
PDF
Enterprise Vulnerability Management: Back to Basics
byDamon Small
 
PDF
Ce hv6 module 65 patch management
byVi Tính Hoàng Nam
 
PPT
Patch Management - 2013
byVicky Ames
 
Patch and Vulnerability Management
byMarcelo Martins
 
Software security engineering
byaizazhussain234
 
Effective Vulnerability Management
byVicky Ames
 
Implementing Vulnerability Management
byArgyle Executive Forum
 
Top 10 tips for effective SOC/NOC collaboration or integration
bySridhar Karnam
 
Exercise Your SOC: How to run an effective SOC response simulation (BSidesCha...
byBrian Andrzejewski
 
Ch13 Business Continuity Planning and Procedures
byInformation Technology
 
Vulnerability Management Program
byDennis Chaupis
 
Software Vulnerabilities Risk Remediation
byBruce Hafner
 
Sample penetration testing agreement for core infrastructure
byDavid Sweigert
 
Vulnerability , Malware and Risk
bySecPod Technologies
 
Enterprise Class Vulnerability Management Like A Boss
byrbrockway
 
Cas 003-q&a-demo-exam area
bySamanthaGreen16
 
Is Your Vulnerability Management Program Keeping Pace With Risks?
bySkybox Security
 
The uncool-security-hygiene
byThiagu Haldurai
 
Network Vulnerability Assessment: Key Decision Points
byPivotPointSecurity
 
Information security-toolkit-76396-8
bycolleenatrsc
 
Enterprise Vulnerability Management: Back to Basics
byDamon Small
 
Ce hv6 module 65 patch management
byVi Tính Hoàng Nam
 
Patch Management - 2013
byVicky Ames
 

Similar to Assignment 1

PPTX
Week-3_Lecture-1.pptxccccccccccccccccccccc
byAmirMohamedNabilSale
 
PPT
Security Considerations in Process Control and SCADA Environments
byamiable_indian
 
PPTX
Information Security Risk Management and Compliance.pptx
byAbraraw Zerfu
 
PPTX
Industrial Cyber Security: What You Don't Know Might Hurt You (And Others...)
byTripwire
 
PDF
Week-3_Lecture-1.pdfaaaaaaaaaaaaaaaaaaaaaa
byAmirMohamedNabilSale
 
PPTX
MIS: Information Security Management
byJonathan Coleman
 
PDF
Defense In Depth Using NIST 800-30
byKevin M. Moker, CFE, CISSP, ISSMP, CISM
 
PPTX
unit 2informationsecuritynotesyyyyy.pptx
bySaranyaS85986
 
PPTX
Information security management (bel g. ragad)
byRois Solihin
 
PDF
Mission Impact Assessment for Industrial Control Systems
byMarina Krotofil
 
PDF
Information Security Planning and Risk Analysis
byabacusgtuc
 
DOCX
Risk Assessment documentation templates are located within this se.docx
bySUBHI7
 
PPT
Cs461 06.risk analysis (1)
byneeraj.sihag
 
PDF
Tips for IT Risk Management Prof. Hernan Huwyler Information Security Institute
byHernan Huwyler, MBA CPA
 
PPT
DeltaV Security - Don’t Let Your Business Be Caught Without It
byEmerson Exchange
 
PDF
How to analyze cyber threats
byAkankshaPathak27
 
DOCX
Threat Mitigation WorksheetForm # TM01Page ____ of _____.docx
byherthalearmont
 
DOCX
Business Process Identification WorksheetForm # BPID01Page.docx
byRAHUL126667
 
DOCX
4 Questions only Question 6. I have answered part of the.docx
bytamicawaysmith
 
PPTX
Embedded Systems, Asset or Security Threat? (6 May 2014, (ICS)2 Secure Rotter...
byJaap van Ekris
 
Week-3_Lecture-1.pptxccccccccccccccccccccc
byAmirMohamedNabilSale
 
Security Considerations in Process Control and SCADA Environments
byamiable_indian
 
Information Security Risk Management and Compliance.pptx
byAbraraw Zerfu
 
Industrial Cyber Security: What You Don't Know Might Hurt You (And Others...)
byTripwire
 
Week-3_Lecture-1.pdfaaaaaaaaaaaaaaaaaaaaaa
byAmirMohamedNabilSale
 
MIS: Information Security Management
byJonathan Coleman
 
Defense In Depth Using NIST 800-30
byKevin M. Moker, CFE, CISSP, ISSMP, CISM
 
unit 2informationsecuritynotesyyyyy.pptx
bySaranyaS85986
 
Information security management (bel g. ragad)
byRois Solihin
 
Mission Impact Assessment for Industrial Control Systems
byMarina Krotofil
 
Information Security Planning and Risk Analysis
byabacusgtuc
 
Risk Assessment documentation templates are located within this se.docx
bySUBHI7
 
Cs461 06.risk analysis (1)
byneeraj.sihag
 
Tips for IT Risk Management Prof. Hernan Huwyler Information Security Institute
byHernan Huwyler, MBA CPA
 
DeltaV Security - Don’t Let Your Business Be Caught Without It
byEmerson Exchange
 
How to analyze cyber threats
byAkankshaPathak27
 
Threat Mitigation WorksheetForm # TM01Page ____ of _____.docx
byherthalearmont
 
Business Process Identification WorksheetForm # BPID01Page.docx
byRAHUL126667
 
4 Questions only Question 6. I have answered part of the.docx
bytamicawaysmith
 
Embedded Systems, Asset or Security Threat? (6 May 2014, (ICS)2 Secure Rotter...
byJaap van Ekris
 

More from Jeewanthi Fernando

PPTX
Tesco
byJeewanthi Fernando
 
PDF
Assingment 5 - ENSA
byJeewanthi Fernando
 
PDF
Assingment 4 - DDos
byJeewanthi Fernando
 
PDF
Assingment 2 - Law
byJeewanthi Fernando
 
PPTX
Assignment - Maliban
byJeewanthi Fernando
 
PPTX
Professional networking
byJeewanthi Fernando
 
PDF
Tesco doc
byJeewanthi Fernando
 
PDF
Class activity 3
byJeewanthi Fernando
 
PDF
Business Process Management Doc
byJeewanthi Fernando
 
PDF
Class activity 5
byJeewanthi Fernando
 
PDF
OB group assignment
byJeewanthi Fernando
 
PDF
Class activity 4
byJeewanthi Fernando
 
DOCX
Assingment 3 - Bug bounty
byJeewanthi Fernando
 
PPTX
Group assingment
byJeewanthi Fernando
 
PDF
Assignment 1
byJeewanthi Fernando
 
PPTX
Poster
byJeewanthi Fernando
 
PDF
Assingment 1 - Google haker
byJeewanthi Fernando
 
PPTX
BPM presentation
byJeewanthi Fernando
 
PPTX
Ob group presentation
byJeewanthi Fernando
 
PDF
ALSS Assingment 1
byJeewanthi Fernando
 
Tesco
byJeewanthi Fernando
 
Assingment 5 - ENSA
byJeewanthi Fernando
 
Assingment 4 - DDos
byJeewanthi Fernando
 
Assingment 2 - Law
byJeewanthi Fernando
 
Assignment - Maliban
byJeewanthi Fernando
 
Professional networking
byJeewanthi Fernando
 
Tesco doc
byJeewanthi Fernando
 
Class activity 3
byJeewanthi Fernando
 
Business Process Management Doc
byJeewanthi Fernando
 
Class activity 5
byJeewanthi Fernando
 
OB group assignment
byJeewanthi Fernando
 
Class activity 4
byJeewanthi Fernando
 
Assingment 3 - Bug bounty
byJeewanthi Fernando
 
Group assingment
byJeewanthi Fernando
 
Assignment 1
byJeewanthi Fernando
 
Poster
byJeewanthi Fernando
 
Assingment 1 - Google haker
byJeewanthi Fernando
 
BPM presentation
byJeewanthi Fernando
 
Ob group presentation
byJeewanthi Fernando
 
ALSS Assingment 1
byJeewanthi Fernando
 

Recently uploaded

PDF
19 January 2026 Andreas Schleicher Digital Education Outlook 2026.pdf
byEduSkills OECD
 
PDF
Caribbean Examinations Council Literacy and Numeracy Standards
byCaribbean Examinations Council
 
PPTX
How to Manage Scheduling Activities in Odoo 18 CRM
byCeline George
 
PPTX
Activity on Job position in Odoo 19 Recruitment
byCeline George
 
PDF
GIÁO ÁN KẾ HOẠCH BÀI DẠY NĂNG LỰC SỐ MÔN TIẾNG ANH LỚP 10 CẢ NĂM - GLOBAL SUC...
byNguyen Thanh Tu Collection
 
PPTX
bundle of care.pptx Priti Bala @ BRD med
bypritibala13
 
PPTX
special senses-eye, ear, nose, tongue.pptx
byAshish Umale
 
PDF
Types of Artificial Intelligence: Capabilities and Functionality Explained
byARTHIDEVARANIP
 
PPTX
STERILITY INDICATOR Pharmaceutical microbiology
byChetana Wagh
 
PPTX
How to Create Opening Balance in Odoo 18
byCeline George
 
PDF
Geography unit 7-Population-Distribution`.pdf
byzerihunbrook7
 
PPTX
Accounting Theory Group Presentation - Why Study Accounting Theory
byAbrahamAtuanor1
 
PDF
The Unique Wildlife of Ethiopia: From the Simien to the Bale Mountains
byfirtunagebremicheal
 
PPTX
How to Manage Product Types in Odoo 18 Sales
byCeline George
 
PPTX
The Creation Pattern Physical Health.pptx
byTammy Hulse
 
PPTX
Burnout_among_medical teachers_&_mentoring .pptx
byAhmadUzairQureshi
 
PPTX
Nanomaterials and its types - Dr.M.Jothimuniyandi
byJothimuniyandi
 
PPTX
YSPH VMOC Special Report - Measles - The Americas 1-18-2026
byYale School of Public Health - The Virtual Medical Operations Center (VMOC)
 
PPTX
Exploring car engine oil and lubricants purpose and functions
bymjb77ny
 
PPTX
NMR Spectroscopy: Principles and Applications
byVanitha Rajakumar
 
19 January 2026 Andreas Schleicher Digital Education Outlook 2026.pdf
byEduSkills OECD
 
Caribbean Examinations Council Literacy and Numeracy Standards
byCaribbean Examinations Council
 
How to Manage Scheduling Activities in Odoo 18 CRM
byCeline George
 
Activity on Job position in Odoo 19 Recruitment
byCeline George
 
GIÁO ÁN KẾ HOẠCH BÀI DẠY NĂNG LỰC SỐ MÔN TIẾNG ANH LỚP 10 CẢ NĂM - GLOBAL SUC...
byNguyen Thanh Tu Collection
 
bundle of care.pptx Priti Bala @ BRD med
bypritibala13
 
special senses-eye, ear, nose, tongue.pptx
byAshish Umale
 
Types of Artificial Intelligence: Capabilities and Functionality Explained
byARTHIDEVARANIP
 
STERILITY INDICATOR Pharmaceutical microbiology
byChetana Wagh
 
How to Create Opening Balance in Odoo 18
byCeline George
 
Geography unit 7-Population-Distribution`.pdf
byzerihunbrook7
 
Accounting Theory Group Presentation - Why Study Accounting Theory
byAbrahamAtuanor1
 
The Unique Wildlife of Ethiopia: From the Simien to the Bale Mountains
byfirtunagebremicheal
 
How to Manage Product Types in Odoo 18 Sales
byCeline George
 
The Creation Pattern Physical Health.pptx
byTammy Hulse
 
Burnout_among_medical teachers_&_mentoring .pptx
byAhmadUzairQureshi
 
Nanomaterials and its types - Dr.M.Jothimuniyandi
byJothimuniyandi
 
YSPH VMOC Special Report - Measles - The Americas 1-18-2026
byYale School of Public Health - The Virtual Medical Operations Center (VMOC)
 
Exploring car engine oil and lubricants purpose and functions
bymjb77ny
 
NMR Spectroscopy: Principles and Applications
byVanitha Rajakumar
 

Assignment 1

  • 1.
    Sri Lanka Instituteof Information Technology Master of Science (Information Management) Degree Program Information Security Risk Management and Audit Assignment 1 W.M.J.H. Fernando MS18901290
  • 2.
    Scenario 01 Allegro -Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A DDoS attack occurs targeting the manufacturing operation. The gateway crashes exposing the workstations to other forms of malicious attack. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using that network and botnet to do distribute DDoS attack (3) Motive What is the actor’s reason for doing it? The illegal access and change or crash the system (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score To the Manufacturing Execution System DDoS attack will highly affected and lead to more attacks to system. Reputation & Customer Confidence Low (1) 0.75 Financial Low (1) 0.75 To the Manufacturing Execution System DDoS attack will reason in most of days or hours. Productivity High (3) 2.25 Safety & Health High (3) 2.25 There are payments can be expected form clients. Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 6.75
  • 3.
    (9) Risk Mitigation Basedon the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network. • It is practically enough bandwidth form ISP to endure the attack.
  • 4.
    Scenario 02 Allegro -Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A malicious software is attack process of workstation. There are functions are inaccessible to the designation users. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? This malicious software will connect with intranet or it installed to one of the workstation operations. (3) Motive What is the actor’s reason for doing it? The illegal access and change or crash the system or the workstation operating system. (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System. Data should be disclosure for outside companies. (6) Probability What is the likelihood that this threat scenario could occur? High 75% Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A malware can hypothetically have long lasting things until it can be recognized and appropriately removed. Reputation & Customer Confidence Low (1) 0.5 Financial Medium (2) 1 Malware aiming the severely disrupt the process of the Manufacturing Execution System Productivity High (3) 1.5 Safety & Health High (3) 1.5 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.5 User Defined Impact Area - - Relative Risk Score 5
  • 5.
    (9) Risk Mitigation Basedon the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network.
  • 6.
    Scenario 03 Allegro -Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern Scanning of the workstations of the MES for open ports or ports used by SIEMENS WinCC for additional activity (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using the internet to do port scanning, an information gathering method (3) Motive What is the actor’s reason for doing it? The illegal access and identify the vulnerabilities (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score The port scanning used to detect vulnerability in OS and the service running on the OS of the MES Reputation & Customer Confidence Low (1) 0.75 Financial Low (1) 0.75 Such activities could be illegal remote access to infect with malware Productivity Low (1) 0.75 Safety & Health Low (1) 0.75 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 3.75
  • 7.
    (9) Risk Mitigation Basedon the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Network: Gateway • Install the IDS to there are network • Evaluate network traffic and distrustful IP communication through there are network. E.g.: Broad rang of connection needs on another port by a single IP
  • 8.
    Scenario 04 Allegro -Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A hardware defect on the workstation of MES occurs (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Using a virus or remote exploit, after a DDoS attack has occurred, an interested party could cause a hardware defect. (3) Motive What is the actor’s reason for doing it? Gain unauthorized access and damage one of the one of the workstations (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? The workstation of the MES must available to provide 24/7/365 activities (6) Probability What is the likelihood that this threat scenario could occur? ❑ High 75% ❑ Medium 50% Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A hardware fault can have high financial costs due to the cost of repair and inaccessibility of the infrastructure Reputation & Customer Confidence High (3) 0.75 Financial Medium (2) 0.5 A hardware fault could delay production for an indefinite amount of time depending on the fault. Productivity High (3) 0.75 Safety & Health High (3) 0.75 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.25 User Defined Impact Area - - Relative Risk Score 3
  • 9.
    (9) Risk Mitigation Basedon the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Technical: Workstation • Keep the backup system (BCP) up to date and arranged to go live within maximum one hour. • Crack to remove the problem at it source, perhaps virus.
  • 10.
    Scenario 05 Allegro -Worksheet 10 INFORMATION ASSET RISK WORKSHEET InformationAssetRisk Threat Information Asset Manufacturing Execution System (MES) Area of Concern A software fault on the Microsoft Windows OS or the Siemens WinCC software is exploited to crash or change the software. Workstations are not repaired to the newest updates. (1) Actor Who would exploit the area of concern or threat? The employee with access to that network or hacker (2) Means How would the actor do it? What would they do? Via a virus or remote access after a DDoS or port scanning attack has happened (3) Motive What is the actor’s reason for doing it? The illegal access to & do the modification or the crash the Siemens Simatic software or the operating system of the workstation. (4) Outcome What would be the resulting effect on the information asset? ❑ Disclosure ❑ Modification Destruction Interruption (5) Security Requirements How would the information asset’s security requirements be breached? Only the approved employees can control and change the System (6) Probability What is the likelihood that this threat scenario could occur? High 75% ❑ Medium 50% ❑ Low 25% (7) Consequences What are the consequences to the organization or the information asset owner as a result of the outcome and breach of security requirements? (8) Severity How severe are these consequences to the organization or asset owner by impact area? Impact Area Value Score A software crash on the Simatic or OS it could lead to miss on readings about malfunctions of the infrastructure or cause them. It would hinder productivity possibly to a halt affecting distribution. Some financial loss is expected Reputation & Customer Confidence Low (1) 0.75 Financial Medium (2) 1.5 A software crash on the Simatic or OS it could lead to miss on readings about malfunctions of the infrastructure or cause them. It would hinder productivity possibly to a halt and put at risk the health & safety of the personnel Productivity High (3) 2.25 Safety & Health High (3) 2.25 Some fines can be expected from business and commercial customers Fines & Legal Penalties Low (1) 0.75 User Defined Impact Area - - Relative Risk Score 7.5
  • 11.
    (9) Risk Mitigation Basedon the total score for this risk, what action will you take? ❑ Accept ❑ Defer Mitigate ❑ Transfer For the risks that you decide to mitigate, perform the following: On what container would you apply controls? What administrative, technical, and physical controls would you apply on this container? What residual risk would still be accepted by the organization? Simatic Be in contact with Siemens to apply patches for known vulnerabilities MS windows OS Be in contact with Microsoft to apply patches for known vulnerabilities Developer System Carefully test these against the bring copy of the MES