Application Security Research Project

Application Security Research Project

Description/Paper Instructions

Application Security Research Project

Write 200 to 300 words describing file-less malware and what unique considerations it brings to application security.

Project: Securing a Microsoft Windows Environment

Project Part 3: Malware Protection Procedure Guide

Scenario

Always Fresh allows external users, such as vendors and business partners, to access the Always Fresh Windows environment. You have noticed a marked increase in malware activity in the test environment that seems to originate from external users. After researching the likely source of new malware, you conclude that allowing external users to connect to your environment using compromised computers exposes Always Fresh to malware vulnerabilities.

After consulting with your manager, you are asked to create a policy that will ensure all external computers that connect to Always Fresh environment are malware free. You create the following policy:

To protect the Always Fresh computing environment from the introduction of malware of any type from external sources, all external computers and devices must demonstrate that they are malware free prior to establishing a connection to any Always Fresh resource.

Consider the following questions:

1. What does malware free mean?
2. How can a user demonstrate that their computer or device is malware free?
3. What are the steps necessary to establish a malware-free computer or device?
4. How should Always Fresh verify that a client computer or device is compliant?

Tasks

Create a malware protection procedure guide that includes steps for installing and running anti-malware software. Fill in the following details to develop your procedure guide:

1. Provide a list of approved anti-malware software solutions include at least three leading antivirus and two anti-spyware products. You may include Microsoft products and third-party products. Instruct users to select one antivirus and one anti-spyware product and install them on their computer.
2. Describe the process of:
3. Ensuring anti-malware software and data is up to date. Mandate daily updates.
4. Running regular malware scans. Mandate that automatic scans occur whenever the computer is idle. If that setting is unavailable, mandate daily fast scans and biweekly complete scans.
5. Provide steps to follow any time malware is detected.
6. Immediate reaction, what to do with current work, leave the computer on or turn it off
7. Who to contact
8. What information to collect

The procedure guide may be used by company security professionals in the future. Hence, all steps listed should be clear and self-explanatory.

Required Resources

· Internet access

· Course textbook

Submission Requirements

· Format: Microsoft Word (or compatible)

· Font: Times New Roman, size 12, double-space

· Citation Style: APA

· Length: 2 to 4 pages

Self-Assessment Checklist

· I created a procedure guide that provides clear instructions that anyone with a basic technical knowledge base can follow.

· I created a well-developed and formatted procedure guide with proper grammar, spelling, and punctuation.

· I followed the submission guidelines.

TEXTBOOK:

Title: Security Strategies in Windows Platforms and Applications

Authors: Michael G. Solomon

Publisher: Jones & Bartlett Learning

Publication Date: 2019-10-15