Perform basic data analysis for cyber security NBS-7041X Change Management Project CASE STUDY C – UNDERSTANDING CHILDREN HSNS376…

FIND A SOLUTION AT Academic Writers Bay

Student Version
Section A – Program/Course details
Qualification code:
22334VIC
Qualification title:
Certificate IV in Cyber Security
Unit code:
VU21994
Unit title:
Perform basic data analysis for cyber security
Department name:

CRN number:
Enter CRN number
Section B – Assessment task details
Assessment number:
1 of 1
Semester/Year:
1 & 2, 2021
Due date:

Duration of assessment:
5 sessions
Assessment method

Assessment task results
☒Ungraded result
☐Other: Click here to enter text.
Section C – Instructions to students
Task instructions:
This assessment is comprised of three parts:
Part 1: Flow Charts
Part 2: Knowledge Questions
Part 3: Splunk Comprehensive LabPart 1 Flow Charts:
• Please refer the Supporting Documents for more information on this part of the assessment.
In this part of the assessment you are required to answer a range of knowledge questions related to this subject. Some of these questions are more technical and ask you to discuss or explain particular technologies or terminologies while other questions are more holistic or bigger picture focused.You will also need to answer questions about your incident response process and how you have developed your flowchart. You must answer each question in your own words.Where you have used images or content from another creator you must make reference to this in the answer space provided.
• You are required to attempt ALL questions and tasks individually
• Your answers are to be written in your own words. Copy and paste from a research link will not be accepted.Part B Knowledge Questions:
In this assessment you are required to answer a range of knowledge questions related to this subject. Some of these questions are more technical and ask learners to discuss or explain particular technologies or terminologies while other questions are more holistic or bigger picture focused.
• You are required to attempt ALL questions and tasks individually
• Your answers are to be written in your own words. Copy and paste from a research link will not be accepted.
• You are required to list all references consulted in the reference box at the end of the assessment.Part 3: Splunk Comprehensive Lab
• Please refer the Supporting Documents for more information on this part of the assessment.
For this part of the assessment, you will use Splunk enterprise software to import and analyse “Big Data” for trends and discrepancies. The assessment must be completed individually. On the following pages there are questions for you to answer spilt into three sections. You must complete all sections of the document satisfactorily.
Section D – Conditions for assessment
Conditions: Student to complete and attach Assessment Submission Cover Sheet to the completed Assessment Task.
Conditions:
– This assessment is to be completed individually.
– You must meet all criteria listed in the marking guide to be satisfactory in this task.
– You may resubmit this task if not successful within the enrolment period as per Holmesglen conducting
assessment procedure.
– It is expected all documents will be completed and submitted electronically but if this is not possible, make alternative arrangements for submitting the documents with your assessor.
– You will have the opportunity to resubmit if any part of the assessment is deemed unsatisfactory (one resubmit allowed per task).
– You can appeal an assessment decision according to the Holmesglen Assessment Complaints and Appeals Procedure.
– If you feel you require special allowance or adjustment to this task, please decide with your assessor within one week of commencing this assessment,
– The learner may use the internet research answers for this assessment.
Equipment/resources students must supply:
Equipment/resources to be provided by the RTO:
Laptop Computer or Desktop computer or Tablet
Writing Materials
Active Email
External HDD storage / Flash Drive to save a backup copy of your work
Internet Access
Splunk Software
Desktop Computer
Internet Access
Access to BrightSpace
Splunk Software
Section E – Marking Sheet – Student Answer Sheet
Unit code:
VU21994
Unit title:
Perform basic data analysis for cyber security

READ ALSO...   position in academic research and writing

Error: Reference source not found Assessment Submission Cover Sheet (VET)s
By submitting this assessment task and signing the below, I acknowledge and agree that: This completed assessment task is my own work. I understand the serious nature of plagiarism and I am aware of the penalties that exist for breaching this. I have kept a copy of this assessment task. The assessor may provide a copy of this assessment task to another member of the Institute for validation and/or benchmarking purposes.
Student ID:

READ ALSO...   ACCT1000 Mid Semester Test and Online Workbook

Student name:

Submission or observation date:

Student signature For electronic submissions: By typing your name in the student signature field, you are accepting the above declaration.

Section F – Feedback to Student
Has the student successfully completed this assessment task?
Yes
No


Additional Assessor comments (as appropriate):

Resubmission allowed:
Yes ☐
No ☐
Resubmission due date:

Assessor name:

Assessor signature:

Date assessed:

Supporting documents
Unit code:
VU21994
Unit title:
Perform basic data analysis for cyber security
Part 1: Flow Charts
Background Information:
You are a Level 1 Security Analyst at Techno Intelligence Threat Systems SOC and are tasked with developing processes for the following incidents that were received by the company ticketing system. The incidents are:
Suspected DDoS Attack
Suspected Phishing Attack
Your Critical Incident Response Team (CIRT) have implemented the PICERL model to develop an incident response process for each of the incidents detected.
The process/response that you develop for BOTH incidents MUST BE submitted as a flowchart. Each step of your response should be reflected in your flow chart, and should include a brief description outlining any symptoms, reasons to support the process of decision-making.
As a guide you may follow the SANS Six (6) Steps of Incident Handling in your flowchart You will need to research both incidents to the point where you have a basic understanding of each event and can then formulate a process of mitigation.
Your response must be in the form of a flow chart and answer the accompanied questions. Each step in your flowchart sequence MUST be represented with the correct symbol.
Your flowchart should cover the following steps:
• symptoms of the event/incident
• identification
• probable course of action
• containment strategies
• mitigation
• any other information you deem to be necessary
Answer the following questions about your incident response process and how you have developed your flowchart. You must answer each question in your own words. This is an individual assessment task.
Where you have used images or content from another creator you must make reference to this in the answer space provided.
Part 3: Splunk Comprehensive Lab
For this assessment task, you will use Splunk enterprise software to import and analyse “Big Data” for trends and discrepancies. The assessment must be completed individually. On the following pages there are questions for you to answer spilt into three sections. You must complete all sections of the document satisfactorily.
Section 1: Splunk Setup
Section 2: Adding data to Splunk
Section 3: Data Analysing
Section 1: Splunk Setup
In this section, you will be assessed on how you setup and configure your Splunk environment ready for data sources. You will be required to setup two user accounts of different access levels.
• User 1 must be an administrator
• User 2 must have a power user role
Section 2: Adding data to Splunk
In this section, you will be assessed on your knowledge of Big data types and how they can be imported and configured inside of Splunk. You will setup data for a range of sources including web access log, Linux web server and database records.
Section 3: Data Analysing
In this section, you will be assessed on your ability to refine searches, detect abnormalities and view trend data in the given data sources.
For this assessment, you will be given three data source files to import and configure to answer the questions on the next pages. These files can be found on Brightspace under Week 4 Resources. If you are having trouble locating the files, please contact your instructor ASAP.

READ ALSO...   Institutional review board
Order from Academic Writers Bay
Best Custom Essay Writing Services

QUALITY: 100% ORIGINAL PAPERNO PLAGIARISM – CUSTOM PAPER