Perform basic data analysis for cyber security | My Assignment Tutor

Student Version Section A – Program/Course detailsQualification code:22334VICQualification title:Certificate IV in Cyber SecurityUnit code:VU21994Unit title:Perform basic data analysis for cyber securityDepartment name:CRN number:Enter CRN number Section B – Assessment task detailsAssessment number:1 of 1Semester/Year:1 & 2, 2021Due date:Duration of assessment:5 sessionsAssessment methodAssessment task results☒Ungraded result☐Other: Click here to enter text. Section C – Instructions to studentsTask instructions:This assessment is comprised of three parts:Part 1: Flow ChartsPart 2: Knowledge QuestionsPart 3: Splunk Comprehensive LabPart 1 Flow Charts:• Please refer the Supporting Documents for more information on this part of the assessment.In this part of the assessment you are required to answer a range of knowledge questions related to this subject. Some of these questions are more technical and ask you to discuss or explain particular technologies or terminologies while other questions are more holistic or bigger picture focused.You will also need to answer questions about your incident response process and how you have developed your flowchart. You must answer each question in your own words.Where you have used images or content from another creator you must make reference to this in the answer space provided.• You are required to attempt ALL questions and tasks individually• Your answers are to be written in your own words. Copy and paste from a research link will not be accepted.Part B Knowledge Questions:In this assessment you are required to answer a range of knowledge questions related to this subject. Some of these questions are more technical and ask learners to discuss or explain particular technologies or terminologies while other questions are more holistic or bigger picture focused.• You are required to attempt ALL questions and tasks individually• Your answers are to be written in your own words. Copy and paste from a research link will not be accepted.• You are required to list all references consulted in the reference box at the end of the assessment.Part 3: Splunk Comprehensive Lab• Please refer the Supporting Documents for more information on this part of the assessment.For this part of the assessment, you will use Splunk enterprise software to import and analyse “Big Data” for trends and discrepancies. The assessment must be completed individually. On the following pages there are questions for you to answer spilt into three sections. You must complete all sections of the document satisfactorily. Section D – Conditions for assessmentConditions: Student to complete and attach Assessment Submission Cover Sheet to the completed Assessment Task.Conditions:– This assessment is to be completed individually.– You must meet all criteria listed in the marking guide to be satisfactory in this task.– You may resubmit this task if not successful within the enrolment period as per Holmesglen conductingassessment procedure.– It is expected all documents will be completed and submitted electronically but if this is not possible, make alternative arrangements for submitting the documents with your assessor.– You will have the opportunity to resubmit if any part of the assessment is deemed unsatisfactory (one resubmit allowed per task).– You can appeal an assessment decision according to the Holmesglen Assessment Complaints and Appeals Procedure.– If you feel you require special allowance or adjustment to this task, please decide with your assessor within one week of commencing this assessment,– The learner may use the internet research answers for this assessment.Equipment/resources students must supply:Equipment/resources to be provided by the RTO:Laptop Computer or Desktop computer or TabletWriting MaterialsActive EmailExternal HDD storage / Flash Drive to save a backup copy of your workInternet AccessSplunk SoftwareDesktop ComputerInternet AccessAccess to BrightSpaceSplunk Software Section E – Marking Sheet – Student Answer SheetUnit code:VU21994Unit title:Perform basic data analysis for cyber security Error: Reference source not found Assessment Submission Cover Sheet (VET)s By submitting this assessment task and signing the below, I acknowledge and agree that: This completed assessment task is my own work. I understand the serious nature of plagiarism and I am aware of the penalties that exist for breaching this. I have kept a copy of this assessment task. The assessor may provide a copy of this assessment task to another member of the Institute for validation and/or benchmarking purposes.Student ID:Student name:Submission or observation date:Student signature For electronic submissions: By typing your name in the student signature field, you are accepting the above declaration. Section F – Feedback to StudentHas the student successfully completed this assessment task?YesNo☐☐Additional Assessor comments (as appropriate):Resubmission allowed:Yes ☐No ☐Resubmission due date:Assessor name:Assessor signature:Date assessed: Supporting documents Unit code:VU21994Unit title:Perform basic data analysis for cyber security Part 1: Flow Charts Background Information: You are a Level 1 Security Analyst at Techno Intelligence Threat Systems SOC and are tasked with developing processes for the following incidents that were received by the company ticketing system. The incidents are: Suspected DDoS AttackSuspected Phishing Attack Your Critical Incident Response Team (CIRT) have implemented the PICERL model to develop an incident response process for each of the incidents detected. The process/response that you develop for BOTH incidents MUST BE submitted as a flowchart. Each step of your response should be reflected in your flow chart, and should include a brief description outlining any symptoms, reasons to support the process of decision-making. As a guide you may follow the SANS Six (6) Steps of Incident Handling in your flowchart You will need to research both incidents to the point where you have a basic understanding of each event and can then formulate a process of mitigation. Your response must be in the form of a flow chart and answer the accompanied questions. Each step in your flowchart sequence MUST be represented with the correct symbol. Your flowchart should cover the following steps: • symptoms of the event/incident • identification • probable course of action • containment strategies • mitigation • any other information you deem to be necessary Answer the following questions about your incident response process and how you have developed your flowchart. You must answer each question in your own words. This is an individual assessment task. Where you have used images or content from another creator you must make reference to this in the answer space provided. Part 3: Splunk Comprehensive Lab For this assessment task, you will use Splunk enterprise software to import and analyse “Big Data” for trends and discrepancies. The assessment must be completed individually. On the following pages there are questions for you to answer spilt into three sections. You must complete all sections of the document satisfactorily. Section 1: Splunk Setup Section 2: Adding data to Splunk Section 3: Data Analysing Section 1: Splunk Setup In this section, you will be assessed on how you setup and configure your Splunk environment ready for data sources. You will be required to setup two user accounts of different access levels. • User 1 must be an administrator • User 2 must have a power user role Section 2: Adding data to Splunk In this section, you will be assessed on your knowledge of Big data types and how they can be imported and configured inside of Splunk. You will setup data for a range of sources including web access log, Linux web server and database records. Section 3: Data Analysing In this section, you will be assessed on your ability to refine searches, detect abnormalities and view trend data in the given data sources. For this assessment, you will be given three data source files to import and configure to answer the questions on the next pages. These files can be found on Brightspace under Week 4 Resources. If you are having trouble locating the files, please contact your instructor ASAP.

QUALITY: 100% ORIGINAL PAPER – NO PLAGIARISM – CUSTOM PAPER

Leave a Reply

Your email address will not be published. Required fields are marked *