Security controls analysis is necessary to evaluate the effectiveness of security controls, identify vulnerabilities, comply with regulations, manage risks, enhance incident response preparedness, and support continuous improvement in an organization’s security program. It plays a crucial role in maintaining a robust and resilient security posture. Students will gain an understanding of various security frameworks using an industry-standard vulnerability scanner.

The scan will be conducted on all three Windows Servers within the Azure lab.

Part 1

1. Download and install Nessus Professional vulnerability scanner (7-day trial version) on the Windows DC Server.
2. Conduct a vulnerability scan on all three servers and make sure to include screenshots of the completed scans.
3. Write a 500 to 750-word technical report, summarize the findings, including the number of vulnerabilities discovered; and discuss implementing security measures based on the scan to protect information systems.

Part 2

1. Perform a Windows update on all three servers. Ensure you have completely updated each server with all applicable patches, service packs, and security updates.
2. Conduct a second vulnerability scan on all three servers.
3. Compare the results of your first scan with the second scan after updates. What was the percentage of improvements? Add to the report the utilization of defensive measures and information collected from both scans to identify, analyze, and report events that might occur within the network to protect information, information systems, and networks. Include screenshots of the processes completed in Part 2.

While APA style is not required for the body of this assignment, solid academic writing is expected, and documentation of sources should be presented using APA formatting guidelines, which can be found in the APA Style Guide, located in the Student Success Center.

This assignment uses a rubric. Please review the rubric prior to beginning the assignment to become familiar with the expectations for successful completion.

You are required to submit this assignment to LopesWrite. A link to the LopesWrite technical support articles is located in Class Resources if you need assistance.

Benchmark Information

This benchmark assignment assesses the following programmatic competencies:

BS Information Technology and BS Information Technology – Cybersecurity

3.2: Implement security measures to protect information systems.

B.S. Cybersecurity

3.4: Utilize defensive measures and information collected from a variety of sources to identify, analyze, and report events that might occur within the network to protect information, information systems, and networks.

Answer Preview-Benchmark-Security Controls Analysis-ITT 430