Reference no: EM13770422
Company XYZ, a mid-sized corporation, is in the middle of satisfying their regulatory compliance needs. The manager of security at the company has been tasked by the CIO (Chief Information Officer) to report on the company's current security posture. You are called upon as a 3rd party penetration tester, based on your industry reputation of being both careful and thorough to report on company XYZ's security posture. The only information available about the company is the generalized information found on its company Website which includes a contact page, home page, customer login portal, copyright and acceptable use page, and disclaimers page.
As an experienced penetration tester, you already have a collection of typical tools you use to conduct your tests (at minimum, all the tools available in CEH labs for this course.) The end goal here is to report on company XYZ's current security posture through performing penetration tests.
Write a four to five (4-5) page paper in which you outline all steps you would take to provide company XYZ's request. Include but do not limit yourself to the following:
Determine the communications and questions that you need to ask the Manager of Security before beginning your work assignment.
Determine the type of documents you would bring to your first meeting with the Manager of Security (i.e. documents to sign, to review, to consider).
Explain chronologically when things happen.
Predict what results are expected based on tools and techniques you use. For example, if a goal is to collect recon data, one might use the Nmap tool to perform a subnet scan. A similar scan can be conducted in your iLabs environment and the resulting data used as support in the form of screenshots when explaining your theories.
Evaluate the importance of the Nondisclosure Agreement (NDA) and other legal agreements to both parties.
Propose the main pre-penetration test steps that the penetration tester should perform before beginning the initial phases of the XYZ penetration test. Provide a rationale to support your proposal.
Use at least three (3) quality resources in this assignment.
About the business law
: Tom hired a demolition company, to level an old building on a busy downtown lot. The demo company was given full rein to decide on the amount of explosives needed and the placement of the charges. Security for the site on the day of the explosion was..
|
What new measures and tools has the federal reserve
: What new measures and tools has the Federal Reserve employed in the past 2 years that have not been employed in the past 2 decades?
|
Concepts of territoriality-privacy and personal space
: Prepare a 1,400- to 1,650-word paper in which you analyze the effect of population density and noise on individuals. As a part of your analysis be sure to address the following items:
|
Securities from any of the financial markets
: Choose three (3) types of securities from any of the financial markets. Pick securities you would enjoy researching for this assignment.
|
Evaluate the importance of the nondisclosure agreement
: Propose the main pre-penetration test steps that the penetration tester should perform before beginning the initial phases of the XYZ penetration test. Provide a rationale to support your proposal.
|
Differences between certain categories of crimes
: You have been asked to explain the differences between certain categories of crimes. For each of the following categories of crime, provide a general definition of the category of crime and give at least two detailed examples of specific crimes th..
|
Demonstrate ability to apply microeconomic concepts
: Professional writing skills and discipline conventions. This criterion assesses your ability to convey information and express ideas in a clear, concise way.
|
Compare and contrast the three room arrangements
: Compare and contrast the three room arrangements. Critique the room arrangement of your choice (infant, toddler, or preschool). Which aspects do you feel are missing?
|
International risks and benefits
: What international risks do you think most threatens an American company's business units overseas? What benefits of being overseas would offset these particular risks?
|