cyber security

  Order Description   4 weeks of online forum work answering questions on cyber security Week 9 - Threat Detection and Response This week, we will look at ways the public and private sector can detect and ultimately prevent threats, as well as some of the more advanced methods hackers are employing to breach systems. This week we are looking at threat intelligence and incident response. Skim through the 2016 NTT Group’s Global Threat Intelligence Report, it is an excellent report on the current state on cybersecurity in the world and introduction to the Cyber Kill Chain. Check out the Norse Attack Map, the paper on cyber threat intelligence by EY and finally read the Guide to developing a data breach response plan. The question for this week is: Read this article on a recent data breach at Sydney University. You are the security office at another university and have been told to up to come up an incident response focused strategy to counter scenarios such as this. Using what you have learnt so far, and following the Office of the Australian Information Commissioner Guide to developing a data breach response plan, come up with a brief summary of your strategy. Week 10 - Social Media/Cyber-Vigilantism Social media connects the modern world but presents new underlying dangers of which we as a society need to be aware. The other thing we’re looking at this week is the growing phenomenon of cyber-vigilantism, is it ever justifiable to hack back? This week we are looking at Cyber-Vigilantism. Read through the paper on Understanding Cyber-Vigilantism: A Conceptual Framework, then about the Perth hacker and ex-military hacker which represent the two sides of issue. Finally, read about the legal consequences of online shaming with the article on facebook defamation. This weeks discussion is: • Are cyber-vigilantes helpful or harmful when it comes to combating online threats? • Consider the case of this dad, but also this case here. If the online environment can be leveraged to protect children from predators, does this justify the use of online shaming and other tactics? • Should social media networks be held responsible for monitoring and disseminating material from cyber-vigilantes groups? If so, how much should they be held responsible?   Week 11 - Policing Cyberspace In following last weeks threat detection module, this week we examine the difficulties government entities (namely the police) have in fighting cybercrime. Given the vast amount of legal and technical issues involved, law enforcement groups are at a severe disadvantage when attempting to tackle the problem. Furthermore, we will delve into Australia's current effort to combat cybercrime and consider it's effectiveness so far. Interestingly, we have seen the arrest and capture of prominent hacker Hamza Bendelladj who is one the main parties behind SpyEye, a notorious banking Trojan. His story is highlights how law enforcement is able to overcome the difficulties traditionally associated with catching cybercrime to bring cybercriminals to justice. Read about the various aspects of his case below and answer the following questions. • While international efforts to obtain prominent cyber criminals may be successful, what do you think would be the capacity of local law enforcement to prevent cybercrime? • Do you think the capture and sentencing of Hamza Bendelladj demonstrates that cybercriminals are no longer untouchable by law enforcement, or was he a lucky break? • What mechanism can the international community use to improve law enforcement outcomes with cyber criminals? • How much responsibility and emphasis should be on private enterprise, and people, to protect their own organisations and themselves? Week 12 - Surveillance and National Security   Governments increasingly cite national security as a reason for heightened scrutiny of digital communications. This week we will look at some of the concepts, policies and implications of increased cyber surveillance. This week we are looking into the secretive Five Eyes intelligence alliance between the United States National Security Agency (NSA), the United Kingdom’s Government Communications Headquarters (GCHQ), Canada’s Communications Security Establishment Canada (CSEC), the Australian Signals Directorate (ASD), and New Zealand’s Government Communications Security Bureau (GCSB). We're also looking at a more local issue regarding the police use of surveillance drones. This week's questions are: • Should governments keep sensitive personal information that concerns their citizens from foreign governments? • One of the revelations of the PRISM program is the mass collection by the NSA of foreign data, this probably also includes data owned by Australian citizens. Is this covert mass collection of data a cause for concern, or something that should be accepted as a new norm? • Outline some of the privacy concerns of the NSW Police using drones. What can be done to alleviate these issues?