Assignment 3: Threat, Vulnerability, and Exploits Assessment Practices
There are multiple ways to bring threats and vulnerabilities to light. Common practices and lessons learned can help us explore for known or common threats, but how does an organization with a unique or highly unusual setup discover its vulnerabilities? Many organizations turn to ethical hackers.
Write a four to five (4-5) page paper in which you:
- Describe common tools and techniques for identifying and analyzing threats and vulnerabilities.
- Critique the practice of offering rewards for discovering vulnerabilities.
- Explain the risks of challenging individuals to exploit vulnerabilities in your systems.
- Give your opinion on the formation of ethical hackers.
- Use at least two (2) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
- Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
- Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
- Describe techniques for identifying relevant threats, vulnerabilities, and exploits.
- Use technology and information resources to research issues in IT risk management.
- Write clearly and concisely about topics related to IT risk management using proper writing mechanics and technical style conventions.
Points: 120 | Assignment 3: Threat, Vulnerability, and Exploits Assessment Practices | |||
Criteria | Unacceptable
Below 70% F |
Fair
70-79% C |
Proficient
80-89% B |
Exemplary
90-100% A |
1. Describe common tools and techniques for identifying and analyzing threats and vulnerabilities.
Weight: 20% |
Did not submit or incompletely described common tools and techniques for identifying and analyzing threats and vulnerabilities. | Partially described common tools and techniques for identifying and analyzing threats and vulnerabilities. | Satisfactorily described common tools and techniques for identifying and analyzing threats and vulnerabilities. | Thoroughly described common tools and techniques for identifying and analyzing threats and vulnerabilities. |
2. Critiqued the practice of offering rewards for discovering vulnerabilities.
Weight: 25% |
Did not submit or incompletelycritiqued the practice of offering rewards for discovering vulnerabilities. | Partially critiqued the practice of offering rewards for discovering vulnerabilities. | Satisfactorily critiqued the practice of offering rewards for discovering vulnerabilities. | Thoroughly critiqued the practice of offering rewards for discovering vulnerabilities. |
3. Explain the risks of challenging individuals to exploit vulnerabilities in your systems.
Weight: 20% |
Did not submit or incompletelyexplained the risks of challenging individuals to exploit vulnerabilities in your systems. | Partially explained the risks of challenging individuals to exploit vulnerabilities in your systems. | Satisfactorily explained the risks of challenging individuals to exploit vulnerabilities in your systems. | Thoroughly explained the risks of challenging individuals to exploit vulnerabilities in your systems. |
4. Give your opinion on the formation of ethical hackers.
Weight: 20% |
Did not submit or incompletely gave your opinion on the formation of ethical hackers. | Partially gave your opinion on the formation of ethical hackers. | Satisfactorily gave your opinion on the formation of ethical hackers. | Thoroughly gave your opinion on the formation of ethical hackers. |
5. 2 references
Weight: 5% |
No references provided. | Does not meet the required number of references; some or all references poor quality choices. | Meets number of required references; all references high quality choices. | Exceeds number of required references; all references high quality choices. |
6. Clarity, writing mechanics, and formatting requirements
Weight: 10% |
More than 6 errors present | 5-6 errors present | 3-4 errors present | 0-2 errors present |