Question
You are the chief information security officer (CISO) at a Department of Defense (DoD) contractor. There are many contracts the business is currently engaged in.
You are the chief information security officer (CISO) at a Department of Defense (DoD) contractor. There are many contracts the business is currently engaged in. One involves a new radar system with a significant amount of intellectual property (IP). You arrive at work Monday morning and your network team follows you into your office, explaining that it appears the enterprise may have been compromised. Explain what the IPS and IDS would indicate. Would the alarms necessarily have alerted the appropriate parties? What might the attackers have done to prevent from being detected by the IDS/IPS? What might be the implications of this action on the business from an information security (InfoSec) perspective.
a. IPS and IDS - explain what the IPS and IDS would indicate for the network compromise.
b. Alerts to appropriate parties- explain whether the alarms would have alerted the appropriate parties to the possible compromise.
c. Attackers escape detection - explain what the attackers might have done to prevent from being detected by the IDS/IPS.
Kindly focus on a. b. and c.
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
