Cyber Security Report: Cybersecurity Threats, Policies, and Frameworks

This cybersecurity report begins with the setup of virtual machines, Kali Linux and Windows 10, and tests network connectivity and port scanning to understand network vulnerabilities. The report then analyzes various cybersecurity threats, including equipment theft, data espionage, phishing attacks, ransomware, insider threats, DDoS attacks, viruses, and SQL injection, detailing potential losses and countermeasures. Following the threat analysis, the report focuses on an information security policy framework, outlining its purpose, scope, and roles and responsibilities within an organization. The policy framework covers aspects such as computer system usage, email, internet browsing, shared resources, and distribution, training, and implementation of security measures. The report also addresses monitoring, feedback, and reporting mechanisms, including physical access controls, clean desk policies, equipment security, network and application access controls, protection against malicious codes, and system usage monitoring. Finally, the report briefly touches on business continuity planning to ensure adequate data security and business operations.