Cyber security scenario questions
Hello My cyber security mates/ colleagues!
please I need assistance with this scenario below:
This synopsis is intended to present a real world situation where you as a cyber security consultant are asked for your opinion and recommendation to steer a small business in a direction towards a more appropriate and sustainable cybersecurity posture.
(moderated) Inc is a manufacturing organization which designs a chip for use in a video processing and display appliance. They have two office locations, one in California and one in Beijing. The chip design, testing, administration and sales are functions performed in the United States, as well is coordination with a manufacturing prototyping partner. The office in Bejing overseas production manufacturing of the chip inventory through a partner near the office in Beijing. The company has 85 employees in the United States, 30 in China and 15 spread across the globe as regional sales staff.
(moderated) has received a call from Steve Smith , the COO, stating he got our name from (moderated), LLC, a current customer, and would like to discuss their current security posture and some weird recent activity on the network. During the initial engagement the following items were discussed and observed:
1. (moderated) inc feels that they have good security since their Sonicwall firewall is only a couple years old and the AV software is from Symantec, a well-known brand.
2. They started using Microsoft 365 last year and feel that move has made their security strategy more sophisticated and next gen capable of dealing with the current cyber threats they face.
3. They don’t exactly have a predefined budget for security, but the owner would approve expenses if he could justify them and it was warranted.
4. Recently they were presented with an opportunity to partner on a bid for an upcoming project, but the prime was mentioning security compliance and “NIST stuff” that they weren’t too sure about.
5. They currently feel they are compliant with partner requirements because they have filled out the questionnaires sent to them and stated they met many of the items.
6. Recently they had a few development servers crash out of the blue on the network, but the admins are troubleshooting the problems.
7. Last year, just after they setup Microsoft 365, the COO and a couple of the engineering accounts were locked out unexplainably
Moderator Note: Removed company names to avoid this being spam and leaking company data.