Skip to content

Instantly share code, notes, and snippets.

@mshardey

mshardey/security-risk-assessment-report.md

Last active September 20, 2024 00:13
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save mshardey/b79695a77251a694cb20609673d45628 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save mshardey/b79695a77251a694cb20609673d45628 to your computer and use it in GitHub Desktop.
Download ZIP
Security Risk Assessment: Mitigating data breach risks with network hardening.
Raw
security-risk-assessment-report.md

Conducted a comprehensive security risk assessment following a data breach at a social media company. Identified critical vulnerabilities, recommended network hardening tools, and proposed tailored hardening methods to mitigate risks and prevent future breaches.

Security Risk Assessment Report

Part 1: Three hardening tools and methods to implement
Envisaging robust measures to fortify the organisation's security posture, three potent tools emerge as key elements to address identified vulnerabilities:
  1. Instating Multi-Factor Authentication (MFA)
  2. Formulating and rigorously enforcing robust password policies
  3. Conducting routine firewall maintenance
Multi-Factor Authentication (MFA) necessitates users to authenticate their credentials through multiple verification methods before gaining access to an application. Diverse MFA methods, ranging from fingerprint scans and ID cards to pin numbers and passwords, can be implemented to enhance the authentication process.

Refinement of password policies becomes imperative, incorporating rules governing password length, acceptable character sets, and disclaimers discouraging password sharing. Additionally, policies can encompass regulations on unsuccessful login attempts, triggering consequences such as network access denial after a specified number of failed tries.

The proactive upkeep of firewalls involves regular scrutiny and updates to security configurations, serving as a preemptive strategy to stay ahead of potential threats. This meticulous firewall maintenance ensures that the organisation's defense mechanisms remain resilient and adaptive in the face of evolving cybersecurity challenges.
Part 2: Recommendations
Implementing multi-factor authentication (MFA) serves as a formidable defense, significantly diminishing the likelihood of unauthorised network access via brute force or similar attacks. Beyond thwarting external threats, MFA enhances internal security by rendering it more challenging for individuals within the organisation to engage in password sharing practices. This becomes particularly crucial for personnel with elevated privileges, such as administrators, necessitating the consistent enforcement of MFA protocols.

The formulation and enforcement of a robust password policy add an additional layer of complexity for malicious actors attempting to breach the network. Regularly reinforcing the stipulated rules within the organisation contributes to heightened user security and makes unauthorised access a more formidable challenge.

Regular firewall maintenance stands as a proactive shield against potential security breaches. Updating firewall rules in response to security events, especially those indicative of suspicious network traffic, fortifies the defense against a spectrum of attacks, including DoS and DDoS threats. This strategic measure plays a pivotal role in maintaining the integrity and resilience of the organisation's cybersecurity infrastructure.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment