Prompt: Now that you have completed your lab, there are several contexts in which you can apply this information. For the purposes of this assignment, imagine this experience informing actions in a workplace environment. Your manager has asked you to create a routine audit procedure for identifying and removing unauthorized accounts from a systems privileged user group. This is for a departmental playbook she is assembling for user account maintenance personnel. Include an annotation for the table that explains the relationship between the attack actions and defensive countermeasures as a whole so that a novice would understand.
Specifically, the following critical elements must be addressed:
- Table: Some of the procedural information has been provided for you within the table below. Complete the blank cells in the table to identify the system detection points, ensuring that:
- Each attack action is an effective choice for addressing the attack step to which it is mapped (in the first column)
- Each defensive countermeasure details an effective detection point and indicator of attack for the defensive step to which it is mapped (in the last column)
- The annotation explains the relationship between the attack actions and corresponding defensive countermeasures (This should be at least two to three sentences in length.)
