Project management 1 - Monitoring, Auditing and Incident

Project management 1

Monitoring, Auditing and Incident Response

It’s time to tie all our areas together. For this assignment, you will look at taking your information from performing risk assessment, standards and best practices of ICS systems.  Considerations on the application of the information involves the creation of policies, monitoring, auditing and incident response.

For this assignment, give short answers using complete sentences in your own words (not an APA research paper) to the following questions.  (150 words minimum per numbered question)  Make sure you cite any reference, including the textbook, which you use in your answers.  You may use any format you want for citing your references. You should not use any quotes but should paraphrase as appropriate.  The answers should demonstrate that you understand the material. 

Use Times New Roman 12, double space, with one inch margins.  Provide a cover sheet.

1. What is the difference between risk assessment and auditing?

2. Select two components you should monitor in the ICS environment. What would you be monitoring, and what attacks could the monitoring indicate?  Give an example of a tool you can use to assist in monitoring the systems.

3. Discuss the three steps outlined in your reading about conducting a security audit of your ICS system. NIST SP 800-53 Audit and Accountability (AU) is a good resource.

4. Give examples of two or three ICS tools available for auditing your ICS system. How could you use each tool in order to secure your system?

5. What are the goals and needs for disaster recovery and incident response plans?