Purpose: Assess and Document Tools to Restore and Recover System Integrity for Windows 10 Workstations.

Lab Activity

profile VerifiedEducator

(Not rated)

Chat

MAIN
SIMILAR QUESTIONS

Lab Activity #1: Investigate Restore & Recover Tools for System Integrity

Purpose: Assess and Document Tools to Restore and Recover System Integrity for Windows 10 Workstations.

1. Assess and document selected uses of the Windows 10Control Paneltoolduring the incident response process.

2. Assess and document selected uses of the Windows 10Windows Settings tool during the incident response process.

Overview:

Recent contracts with the Departments of Defense and Homeland Security have imposed additional security requirements upon Sifers-Grayson and its lab operations. The company is now required to comply with NIST Special Publication 800-171 Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations. The company must also comply with provisions of the Defense Federal Acquisition Regulations (DFARS) including section 252-204-7012 Safeguarding Covered Defense Information and Cyber Incident Reporting.These requirements are designed to ensure that sensitive technical information, provided by the federal government and stored on computer systems in the Sifers-Grayson R&D DevOps lab, is protected from unauthorized disclosure.

Prepare draft incident response guidance to be included in the Sifers-Grayson Incident Responder’s Handbook. Your draft guidance will explain the use of Windows 10 operating system features (utilities)and describe how each could be used as part of an incident response process. The guidance documents to be completed under this task are:

(a) Creating, Using, and Removing System Restore Points and System Image Backups

(b) Managing Installation, Removal, and Updating of Programs, Applications, and Operating System Features for Windows 10

Instructions

Part (a): Creating, Using, Removing System Restore Points for Windows 10

1. Identify appropriate sources of information andinstructions for using the Windows 10 Control Panel andSystem Restoretool. Using those sources, research the procedures required to perform the following tasks:

a. Create a system restore point for a Windows 10 system

b. Use a specific system restore point to roll-back changes made to a Windows 10 system

c. Deletesystem restore points from a Windows 10 system

2. Identify how the System Restore tool could be used during the incident response and recovery process (it may be useful in more than one phase). Typical uses include:

a. Prepare a known-good backup for operating system files and data structures (e.g. the system registry and the information stored within it)

b. Removeunauthorized configuration changes

c. Restore the system to full operating status after an attack or suspected attack

d. Remove failed software installations and/or unwanted changes to the operating system, applications software, and/or files.

3. Write a guidance document that identifies the tool, explains the capabilities it provides, and thenlists and briefly describes the recommended uses identified under item #2. Add a list of resources that can be consulted for additional information. Next, summarize the procedures required to perform the tasks listed under item #1 (do not provide step-by-step instructions). Close your guidance document with a Notes / Warnings / Restrictions section that answers the question “Is there anything else the incident responder needs to be aware of when using this tool?”

Part (b): Using Windows Features toManageInstallation, Removal, and Updating of Programs, Applications, and Operating System Features for Windows 10

1. Identify appropriate sources of information and instructions for usingPrograms and Features(accessed via Control Panel) and Update and Security (accessed via Windows Settings). Using those sources, research the procedures required to perform the following tasks:

a. Turn Windows 10 Features On or Off

b. Modify, Repair, or Uninstall a program or application from a Windows 10 system

c. Control Installation of Updates for Windows 10

d. Control Installation of Updates for Windows 10 Applications

2. Identify and research how the Programs and Features and Update and Security tools could be used during the incident response and recovery process. Typical uses include:

a. Turn off undesired Windows features, e.g. location services or remote access

b. Turn off features to implement a containment strategy

c. Remove unauthorized programs

d. Remove unwanted changes to operating system utilities or features, applications software, and/or patches / updates

e. Manually apply updates (“patches”) for installed programs

Finalize Your Deliverable

1. Using the grading rubric as a guide, refine your incident response guidance. Your final products should be suitable for inclusion in the Sifers-GraysonIncident Responder’s Handbook. Remember that you are preparing multiple guidance documents, which must be presented separately.

2. As appropriate, cite your sources using footnotes or another appropriate citation style.

3. Use the resources section to provide information about recommended readings and any sources that you cite. Use a standard bibliographic format (you may wish to use APA since this is required in other CSIA courses). Information about sources and recommended readings, including in-text citations, should be formatted consistently and professionally.

4. Each file should start with a title page which lists the following information:

· Lab Title and Number

· Date

· Your Name

5. The CSIA 310 Template for Lab Deliverable.docx file is set up to provide the required title page and twoincident response guidance templates. Use the first template for your “System Restore Points” guidance. Use the second template for your “Managing Programs and Features” guidance.

7 days ago

Report Issue

ANSWER ATTACHED

NOT RATED

Purchase the answer to view it

blurred-text

Lab_Activity_1_CSIA_310_v2_1.docx
SAMPLE_ANSWER.docx
CSIA_310-Lab_Activity-1.doc

Home
Homework Answers
Blog
Archive
Tags
Reviews
Contact

"96% of our customers have reported a 90% and above score. You might want to place an order with us."

Affordable prices

You might be focused on looking for a cheap essay writing service instead of searching for the perfect combination of quality and affordable rates. You need to be aware that a cheap essay does not mean a good essay, as qualified authors estimate their knowledge realistically. At the same time, it is all about balance. We are proud to offer rates among the best on the market and believe every student must have access to effective writing assistance for a cost that he or she finds affordable.

Caring support 24/7

If you need a cheap paper writing service, note that we combine affordable rates with excellent customer support. Our experienced support managers professionally resolve issues that might appear during your collaboration with our service. Apply to them with questions about orders, rates, payments, and more. Contact our managers via our website or email.

Non-plagiarized papers

“Please, write my paper, making it 100% unique.” We understand how vital it is for students to be sure their paper is original and written from scratch. To us, the reputation of a reliable service that offers non-plagiarized texts is vital. We stop collaborating with authors who get caught in plagiarism to avoid confusion. Besides, our customers’ satisfaction rate says it all.

Home

About Us

Professional Writing Services

Contact Custom Essay Writers

Order Custom Essay