The security program has been a huge success. Several of the PCS government clients have expressed their appreciation and increased confidence in the company’s ability to protect their program data and assets. Your company is now in the continuous monitoring phase and your information security analysts are performing routine assessments on the servers and workstations.
- Describe the importance of assessments in system and application security.
- Describe some of the major challenges with this area of and address why the job is never done.
- Review the results of the vulnerability scan provided by one of your analysts for a client’s system. Explain ten of the failures found on the client system and how security the PCS security program prevents these problems on the corporate network.
- Conclude by discussing the relationship between assessments and the importance it has in continuous monitoring.
USE ONLY THE RESOURCES LISTED PLEASE:
Chapters 16, 17, & 18 of : http://www.nist.gov/customcf/get_pdf.cfm?pub_id=890080#page=193
Chapters 4 & 5 of: http://csrc.nist.gov/publications/nistpubs/800-92/SP800-92.pdf#page=39