Tasking One — approximately 600 – 1000 words (2 – 4 pages) excluding diagrams, illustrations or other addendum.
Response for tasking one ….
2. Tasking Two — approximately 600 – 800 words (2 – 3 pages) excluding diagrams, illustrations or other addendum.
Response for tasking two …
3. Tasking Three — approximately 600 – 800 words (2 – 3 pages) excluding diagrams, illustrations or other addendum.
Response for tasking three ….
4. Tasking Four — approximately 600 – 800 words (2 – 3 pages) excluding diagrams, illustrations or other addendum.
Response for tasking four …
________________________________________________________________
You are the lead forensics investigator for XYZ, Inc. — an industry leading cyber forensic company. You have just been notified that a top 5 health care company (HCC Partners in Life) has hired your company to investigate a potential breach of their medical records system.
The HCC Security Operations Center (SOC) identified some “inconsistencies” in the intrusion detection system (IDS) logs that caused the reliability to be questioned. HCC uses Snort IDS’ running on Linux systems. In addition, the lead HCC database administrator received a strange e-mail from Human Resources (HR), which contained a benefits attachment. When she opened the attachment, the document was blank. She noticed that her system has been acting “strangely” after opening the attachment. She operates a Microsoft Windows XP workstation.
Your team has been tasked with analyzing the HCC network, database server, and any workstations you suspect to determine if there was a breach and any potential patient data leakage. The database server is a Microsoft Windows 2003 Server running Microsoft SQL Server 2008.
If there is any evidence of a breach, HHC has a history of taking these types of incidents to court for prosecution to the full extent of the law.
Note: You are representing the forensic team in this case scenario. The final exam is individual work with no collaboration permitted.
________________________________________________________________
· Describe your plan for processing the potential crime/incident scene. (30 points). Some of the items you will want to cover include (not all inclusive):
· Discuss how your team will approach and process the database administrator’s computer — considering the potential malware on her system. (15 points).
· Discuss how you prepare your team to be expert witnesses or support any expert testimony court requirements. (15 points).
Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.
You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.
Read moreEach paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.
Read moreThanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.
Read moreYour email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.
Read moreBy sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.
Read more
Recent Comments