presents action steps to avoid or control  different types of persistent internal and external attacks.

Scenario:

You are employed as a cybersecurity analyst at NCU-FSB, a financial  organization that has invested in establishing a security program but is  in the process of developing a risk management strategy. This means  that there is a critical need for implementing risk reduction strategies  to prevent intrusions or attacks, like monitoring and response  strategies, security awareness, training, and systems administration  tools. In the second month of working for the organization, a user  received a phishing email from a foreign country. After opening and  reading the email, the user’s computer was compromised. Using ARP  caching, the attacker was able to sniff password hashes and crack them,  which escalated to spear-phishing and whaling attacks (domino effect).  The attack or intrusions have been there for months, making it an  Advanced Persistent Threat (APT) related attack. ARP stands for address  resolution protocol, used to connect layer 2 of the OSI model, data link  layer with layer 3 of the OSI model, network.

Instructions:

For this assignment, you must create a technical paper with an  illustrated workflow diagram that examines the root cause of an incident  or source of attacks and presents action steps to avoid or control  different types of persistent internal and external attacks.

This workflow diagram will be included in your corporate risk  management plan. You can use software tools like MS-Visio, Edraw,  Lucidchart, LibreOffice, or any drawing tool to create your workflow  diagram or infographic.

1. Your illustrated workflow should include the following:
   • Steps to assess, respond and mitigate a threat
   • Assessment tools and measures
   • Checklist to certify perimeter protection
2. Your paper should include:
   • Nature of the agency or business
   • Framework to be followed
   • Rationale for the adoption of the selected framework
   • Relevant laws or standards
   • Steps for framework adoption
   • Changes needed to fit the operations or services
   • Best practices for security and risk mitigation
   • Software solution recommendations

Length: 3 page academic paper

Resources: Minimum of 3 scholarly resources not more than 5 years old

The completed assignment should demonstrate thoughtful consideration  of the ideas and concepts presented in the course and provide new  thoughts and insights relating directly to this topic. Your response  should reflect scholarly writing and current APA standards. Include a palgiarism report