Free Essay

Executive Proposal

In: Computers and Technology

Submitted By Magicman247
Words 1213
Pages 5
To: | The executive management team of Advanced Research (AR), Reston, VA | From: | Samuel Majekodunmi, IT Manager. | Date: | Aug. 30th 2015 | Subject: | The Reasons Advanced Research needs Kali Linux to Enhance and Test Security. | | Purpose | |

The purpose of this proposal is the present the executive team of Advance Research (AR) a solution to recent strings of security breaches. The goal of the proposal is to persuade the executive team of Advanced Research to invest personal for the sole purpose of constant testing of network security and vulnerability; therefore ensure AR’s safety of intellectual property. Table of Contents Executive Summary……………………………………………………………………….2 Introduction………………………………………………………………………………..2 Recommendations…………………………………………………………………………3 Budget……………………………………………………………………………………...4 References………………………………………………………………………………….4

Executive Summary

Advanced Research (AR) is on its way to becoming a major player in the medical research and development industry. However, suspicion that the corporate network infiltrated from unauthorized sources more than once, indicated the lack of solid security measures. The false allegations of unethical research and development practices are proof of such accesses. Despite the security troubles and false allegations, AR has experienced a 40% increase in business and as result of the increase AR has hires more stuff. The increase traffic is another indication that AR needs a sure and effective method to securing employee’s credential and devices. AR’s innovative research and development information is paramount to its continued success as a company. AR must enhance every security measure to meet the increase in business and procurement of new tools, personal and advance software for the sole purpose of testing the vulnerabilities in our network. The software should be able to test for the following attacks: * Denial of Service (DoS) * Cross Site Scripting (XSS) * Authentication Bypass * Directory Traversal * Session Management * SQL injection * Database Attacks * Password Attacks * Firewall/Router Attacks * Operating System Attacks
Introduction
Advanced Research has been the victim of cybercrime by hackers, whom have attempted to ruin the reputation of AR. The recent strings of breaches propagated against our network, is indication of our network vulnerabilities. In order for continual to succeed in the area of research, AR must continue testing for vulnerabilities that make access to intellectual properties possible. In other to test the vulnerabilities of the network, we must attempt to hack and penetrate our network. For security, professionals around the world will recommend Kali Linux because it comes with slew of robust tools to conduct a number of assessments and tests for the purpose to enhance security, reduce, and pinpointing vulnerabilities. Perhaps, the most important tool available is Metasploit Framework, which is an open-source development platform for creating security tools and exploits. The Metasploit framework “is the gold standard in the penetration testing tools industry. Metasploit earned a reputation as one of the most advanced frameworks on the market and the worlds most used software for this purpose. Metasploit is a collaboration of the open source community and Rapid 7; one outcome of this is the Metasploit Project, which is a security project focused on delivering information about security vulnerabilities and helps penetration testing and Intrusion detection.” (Walker, 2015) The framework allows users to configure exploit modules and test systems against attack. If the attack succeeds, a shell script opens, allowing the user to interact with the payload. The Metasploit framework written in the Ruby programming language and includes components written in C and assembler, which is ideal when applying script, develop to perform particular tasks.
Recommendations
In order to meet our security threats head on, recommendation is to use open source Software call Kali Linux. Kali Linux formally known as Backtracks 5 r3 comes with more updated tools that conduct a number of assessments and tests for the purpose to enhance security and finding vulnerabilities. Kali Linux is fully equipped with open source programs that are free to use. Exploitation are Advance Research number 1 problem, with the Exploitation tool at our disposal with can conduct Network, web, database, wireless, social, physical, open source exploitation to assess if our infrastructure or network is vulnerable and implement changes. One of the biggest attacks are on the network and under the Network Exploitation Tools is the Cisco Attacks which allows us to check for vulnerabilities on routers, Netgear-telnet-enable which target Netgear router set to listen on the network and Metasploit Framework to run while in the Backtrack module. We are able to conduct Vulnerability Assessment on networks, web applications, and databases. In addition to conducting all the previously mentioned assessment, the vulnerability assessment come with automated programs such as OpenVAS (The Open Vulnerability Assessment System) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The actual security scanner accompanied with a daily updated feed of Network Vulnerability Tests (NVTs) for services and open port that do not need to run. Exploitation Tools will allow for the conduct of exploitation test on service and ports. Therefore, identifying which service is vulnerable to attacks. Kali Linux will allow monitoring right and privileges a breeze and issues access controls to personnel with the appropriate authority. Reverse Engineering allows us to investigate were an attack was propagated so as to take the appropriate action against theft or intellectual properties. “Stress Testing tools are used to evaluate how much data a system can handle. Undesired outcomes could be obtained from overloading systems such as causing a device controlling network communication to open all communication channels or a system shutting down (also known as a Denial of Service attack).” (Lakhami, 2013) Network, VOIP, and WLAN are a few Stress Testing tools that allow an examination of the network both wired and wireless in an event where there is increased traffic. Under the stress test, we are able to stimulate a number of attacks that rick havoc on networks (i.e. ping flood, and denial of service attacks etc.). Anti-virus Forensics and Network Forensics are a few tool that are under the Forensics tool, which are there to find violators and hacker activity were virus are deployed to create backdoors in the system.

Budget

Kali Linux is a great tool and it is essential to implementing a well-rounded security program. Since Kali Linux is open-source, it cost nothing to install which will save AR a substantial amount of money. In addition, Kali Linux runs off the Debian platform, which means it is very solid once installed with low maintenance. AR will need to hire talented Kali Linux administrators to conduct daily and weekly security tasks and as a result will pay those administrators salary. The average for a Linux administrator is $79,000 to $100,000 per year, with minimal in compare contracting to a security firm, who annual fees range from $600,000 to $1,000,000 depending on the size of the client.

References
Lakhami, A. (2013, Nov 26). The Ultimate Installation Guide for Kali Linux. Retrieved from www.drchaos.com: http://www.drchaos.com/the-ultimate-installation-guide-for-kali-linux/
N/A. (2015, Aug 30). Metasploit Unleashed. Retrieved from https://www.offensive-security.com/: https://www.offensive-security.com/metasploit-unleashed/introduction/
Walker, J. (2015, May 15 ). blog.monitor.us. Retrieved from Top 7 penetration testing tools for the small business.: http://blog.monitor.us/2015/05/top-7-penetration-testing-tools-for-the-small-business/

Similar Documents

Premium Essay

Proposal

...| ProposalCompany fitness program and its benefits | | | Table of Contents Executive Summary 3 Introduction 4 Problem Statement 5 Objective of the Project 5 Project Requirements 6 Project Benefits 6 Past Studies 6 Conclusion and Recommendations 7 Executive Summary Company fitness programs have become the necessary for companies in order to be more productive and profitable. Many companies are now showing their concerns for employee’s health related issues and have developed on-site fitness center. I intend to establish on-site fitness centers for employees to become physically and mentally strong and hence their productivity will increase. Therefore, this proposal will highlight the key benefits of on-site fitness centers and will also identify the requirements, costs, and time for establishing on-site fitness centers. The main objective of on-site fitness centers is to reduce health care expenditures of the employer. Companies spend millions of dollars every year on employee’s health issues. Moreover, employee’s absenteeism and turnover rate have been a serious problem for productivity and profitability of companies. Estimates indicate employee’s health care cost and absenteeism rate will decline with the addition of on-site physical fitness facilities. Hence the end-result for the company would be higher productivity and profitability. Many studies have been conducted to determine the benefits of company fitness programs. According to......

Words: 1544 - Pages: 7

Premium Essay

Executive Summary

...Case #19 Target Corporation Synopsis and Objectives . Scovanner, Target Corporation’s CFO, is preparing his thoughts prior to the November 2006 meeting of the Capital Expenditure Committee (CEC) as he considers the pros and cons of a variety of capital-investment proposals. During that meeting he will join other Target senior executives, including the CEO, to consider the merits of 10 capital-project requests (CPR), five of which are expected to require extra attention from the committee members. Each CPR is presented to the committee with a “dashboard” that summarizes the critical inputs used to compute the net present value (NPV) and internal rate of return (IRR). The dashboards also contain data about the type of investment (new store or remodel), market size, location, customer-demographic information, as well as the sensitivity of NPV and IRR to changes in various inputs. In addition to the factors influencing the economics of the CPRs, Scovanner cites such issues as brand awareness and the corporate goal of 100 new stores per year as considerations for accepting or rejecting the projects. Thus, the CEC is tasked with balancing corporate strategy with investment opportunities and profitability. The objectives of the case are the following: • To understand the capital-budgeting-decision process for a large corporation. Each decision process should support the corporation’s business and financial objectives. The capital-investment decision is important......

Words: 571 - Pages: 3

Premium Essay

It Proposal

...elow is a typical business proposal template taken from one of the Proposal Packs available from my favorite proposal tools site, ProposalKit.com. These stand-alone Proposal Packs were created for just about any type of proposal you can imagine: business proposals, grant proposals, technical proposals, project proposals, sales proposals, and many more. They are stand-alone sets of proposal templates designed using industry standard guidelines. Each Proposal Pack includes a large collection of fully-formatted downloadable MS-Word templates with layout and graphics already done. You just fill in the blanks and easily create business proposals, from 3-pagers to full-blown 100-pagers. When I first discovered these ProposalKit.com. Proposal Packs, a part of me wanted to weep! Where were these high-quality, real-life proposal templates when I needed them over the years? Had I had access to these Proposal Packs years ago, and some of the related materials carried by ProposalKit.com, I certainly would have saved a lot of time, money, energy, and aggravation. (... and so would have many of my clients). Here are a few points that impressed me about this sample template: It is a professional looking document created for an actual real-life proposal situation. Proposal is fully formatted in final submission form with layout and graphics included. Includes a very good one-page Executive Summary that focuses on solutions and benefits for the Client. The body...

Words: 385 - Pages: 2

Premium Essay

Proposal

...Proposal to: Mayor and Chief Medical Officer Proposal Title: Nursing Care Center By: Nightingale Nurse Recruit, Nursing Director: Anesta Parris; Medical Information Technology Directors: Dawn Froemel & Ernestina Ayon; Laboratory Services Director: Andrea Dabney April 12, 2013 Introduction Please accept this proposal for the new Riverview Hospital Nursing Care Center. Key health care directors have contributed to this plan. Each director’s perspective is shared as related to his/her department. The following pages of this proposal contain their ideas and touch on the following considerations for the planning of this new facility: The specific department services provided How nursing care center services coordinate with the services the hospital provides How nursing care center departments interact and coordinate with each other to provide efficient and effective care Potential grants to assist with funding the nursing care center project How departments demonstrate consideration and application of the nursing care center code of ethics Executive Summary Nursing Director Executive Summary Nationwide, nursing staffs is changing in today world include not only long-term to care for their patients’. The population of people receiving treatments in the hospital is becoming highly trained and committed to health care staffs. The goal is to make a difference and to take action to improve the nursing staffs. Highly recommend to improve the nurses to limited...

Words: 3470 - Pages: 14

Premium Essay

Proposal

...Proposal Leah Cox October 28, 2013 Executive Summary In this proposal, I am going to produce a manual on How to Have a Successful First Trip at Disney World. Although, I have been to Disney World many times from my childhood to now, the park does have its problems. I am proposing to write a manual that will be approximately 12-15 pages of text and will include all the aspects on how to have a Successful First Trip to Disney World. I am qualified to write this manual because I have been going to Disney almost every year since I was born. I have estimated that I will spend a total of eleven hours writing and researching for my manual. I thank you for your consideration of this proposal and I know that my manual will be informative to many families. Introduction In this proposal, I am going to produce a manual on How to Have a Successful First Trip at Disney World. In this manual, you will be learning the steps needed to have a magical time at Disney. As well as be able to know what to do to prepare before you have arrived. You will have the knowledge to determine if your family would like to stay on or off the property, as well as the advantages of staying at a resort area at Disney. Information will also be included on the Park Hopper, and should you choose to purchase one, how to use it. Problem Definition I have been to Disney World many times throughout my lifetime. The park does many things that bother people. When I was younger, I remember when Disney......

Words: 850 - Pages: 4

Free Essay

Executive Compensation

...The objective of a properly designed executive compensation package is to attract, retain, and motivate CEOs and senior management. Despite substantial heterogeneity in pay practices across firms, most CEO compensation packages contain five basic components: salary, annual bonus, payouts from long‐term incentive plans, restricted option grants, and restricted stock grants. In addition, CEOs often receive contributions to defined‐benefit pension plans, various perquisites, and, in case of their departure, severance payments It has been seen that the increase in executive compensation has far outweighed the rise of regular employee compensation the objective of this paper is to investigate the pay-for-performance link in executive compensation. In the context of executive compensation, an analysis needs to be undertaken both from an economic as well as a regulatory policy perspective. To provide a holistic understanding both global as well as Indian Organisations are considered for the analysis. From the economic perspective we look into the following • Executive Compensation and Agency Problem • Executive Compensation and Risk Management • The sensitivity of CEO wealth to firm performance • The relation between CEO incentives and firm value • Explaining CEO compensation: Rent extraction or competitive pay? From the regulatory and legal perspective • Regulatory controls as under o SEC o SEBI • Tax Code Changes o Tax Law 162(m) signed in 1993 of the Federal...

Words: 1768 - Pages: 8

Premium Essay

Executive Compensation

...EXECUTIVE COMPENSATION 1. HOW IS IT DETERMINED? Executive compensation generally consists of a mix of four components: - Annual Base Salary - Annual Incentive or bonus plans tied to short-term performance measures. - Long Term Incentives consisting in a mix of restricted stocks, stocks options and other long-term performance plans tied to shareholder return or financial performance. - Benefits plans. As a rule of thumb, the base salary constitutes 30% of total compensation, the annual incentive another 20%, the benefits about 10% and long-term incentives or the wealth creation portion of the compensation about 40%. Indeed, before the financial crisis, there was a lot of board attention to improving the relationship between pay and performance. As boards sought to achieve pay for performance, one outcome of the trend was to place more emphasis on performance vested restricted stock for the top executives. Thus, an increased portion of executive compensation was primarily tied to what, in the long term, most institutional investors tend to focus on: long-term performance as measured by total shareholder return or performance metrics that drive shareholder return. 2. SHOULD EXECUTIVES RECIVE STOCKS OPTIONS? Supporters of stock options say they align the interests of CEOs to those of shareholders, since options are valuable only if the stock price remains above the option's strike price. Stock options are now counted as a corporate expense (non-cash), which impacts......

Words: 977 - Pages: 4

Premium Essay

Executive

...that found no dumping of steel tube for the oil and gas industry from South Korea, although preliminary duties were set on imports from countries including Turkey and Vietnam. 2. Philippines sets dumping duty against Turkish flour Source: www.tribune.net.ph Thursday, 24 April 2014 00:00 The Department of Agriculture (DA) has imposed dumping duty on Turkish wheat flour exports to the Philippines. The dumping duty, which will be in addition to the seven percent regular import duty on flour, is as high as 21.79 percent on hard flour for bread, 39.26 percent on biscuit flour and 35.21 percent on soft flour which is used for pastries and cookies.  DA issued the order on April 21. Lauding the DA action, Ric Pinca, executive director of the Philippine Association of Flour Millers (PAFMIL) said, “the decision made by the DA to impose dumping duty on Turkish flour is pro-Filipino, pro-fair trade and pro-Philippine labor which is in danger of losing their livelihood to Turkish laborers producing flour products  dumped in the Philippines.” Pinca said the Philippine wheat flour milling industry has been in the receiving end of unfair trade from Turkey with its cheap subsidized flour being dumped at much lower prices here.  With the government seeing the truth of dumping behind the veneer of very strong Turkish lobby, the Philippine industry can at last breath a little, to say the least. According to PAFMIL, the local flour milling industry still has to......

Words: 2576 - Pages: 11

Premium Essay

Proposal

...U.S.-Israel Science & Technology Foundation Tips on How to Write a Proposal In addition to the title page and budget forms, the USISTF only provides a general outline of the items to include in a proposal. Here are some tips to help you prepare a better proposal. Before you begin preparation of your proposal, carefully read the “Request for Proposals” (RFP) and “Frequently Asked Questions” (FAQs) to clearly understand the issues to be addressed and the information you are required to submit. All proposals must include certain basic information. These basics include: Why are you doing this project? What will you be doing? How will you be doing it? Who will be doing it? Where will it be done? How long will it take? How much will it cost? The following generic proposal template is provided for guidance only. The USISTF does not require a specific format. Follow this format in organizing your thoughts for preparing your proposal. Executive Summary: Some people consider this the most important part of the proposal because it is the reviewer’s first impression. Even though it appears first, write it last because it is a summary of the proposal. The executive summary is a concise description of the project covering objectives, need, methodology, and dissemination plans. It should identify the expected outcomes of the project. An executive summary should be less than 750 words and fit on one page. Need: Well-documented description of the problem to be addressed and why it is......

Words: 744 - Pages: 3

Free Essay

Proposal

...Only You Wedding Planner Sdn Bhd Level 2 Wisma Sutera Jalan Bahagian 56000 Kuala Lumpur Tel No: 03 – 52201314 Fax No: 03 – 52001314 Onlyyou520@gmail.com 6 June 2014 Ms Fan Wei Qi Block E, #16-2066, Sunway Vivaldi Jalan 19/70a, Mont Kiara, Kuala Lumpur Dear Ms Fan PROPOSAL TO PLAN A WEDDING EVENT FOR MS FAN Introduction We are honour to present our proposal to help you in planning an unforgettable wedding event for your upcoming wedding. Our company, Only You is the most experience in planning artist wedding for more than 10 years such as Ms Fish Leong and Tony, Dato Lee Chong Wei and Datin Wong Mew Choo. Besides, we also have plan for different culture wedding dinner and event. We are one-stop center service provider from ROM to wedding dinner. Background and problem We understand that you are an artist who is famous in Malaysia and is planning to hold a wedding dinner in Kuala Lumpur. Your main concern is requiring high privacy for your wedding event to ensure it is going smooth and without any disruption. Purpose We are pleased to provide our quality service in aspect of event schedule, security issues, fashion designer and make-up consultancy as well as wedding shooting. We also will include budget of analysis for your wedding. We will ensure that your wedding event will be memorable and safety. Plan To help you to plan the wedding event, we propose the following plan: a) Schedule The......

Words: 720 - Pages: 3

Free Essay

Executive

...suppliers and EPCGlobal to generate advance ship notices for supplier shipments based on RFID reads. January 2006: Supposed deadline for the “next 200 suppliers” to begin sending some tagged product to some DCs, though relatively few do in any meaningful way. March 2006: Wal-Mart says it is working on two “proof of concept” pilots for using sensors along with RFID tags to track produce and environmental temperatures as the products move along the supply chain. April 2006: Wal-Mart says it will phase out the use of Gen 1 tags by in favor of Gen 2 by mid-year, saying it will no longer accept the use of Gen 1 tags on the cases and pallets it receives from its suppliers after June 30. April 2006: Linda Dillman leaves as CIO to take an executive role in Human Resources. Rollin Ford, previously head of supply chain and logistics, becomes CIO. Ford subsequently takes a much lower profile approach to RFID. September, 2006: Wal-Mart announces that by January 31, 2007, another 500 of Wal-Mart's 3,900 stores will have RFID readers installed. If it happened, that would bring the total of RFID-enabled Wal-Mart stores up to 1,000. February 2007: The Wall Street Journal runs an article entitled "Wal-Mart's Radio-Tracked Inventory Hits Static." The article says, "Wal-Mart Stores Inc.'s next leap forward in ultra-efficient distribution is showing signs of fizzling," given a lack of internal progress in rolling out the technology and a lack of value for suppliers. Rollin Ford writes......

Words: 8087 - Pages: 33

Free Essay

Ceh Executive Proposal

...Executive Proposal CMIT 321 Certified Ethical Hacking Kowaine Baker University of Maryland University College Executive Proposal The Solarwinds software was developed to assist in management and addressing of security exploits, real-time network health and change management among other areas of today’s ever changing Information Technology (IT) data environment. This software assists the security manager in safeguarding vital business data through the compilation of network device information and real-time awareness of network health, firewall configuration and patch management with deployment. The software is modular and can be configured to meet the needs of the organization in which it supports while minimizing service interruptions which lead to the loss of productivity. Solarwinds offers a multitude of modules that range from configuration management to help desk trend analysis and firewall management. This is a non-platform dependent software solution which can manage firewalls and devices for proper patch management. This solution can be configured by the most novice IT professional while not breaking the bank. Its scalability can support anywhere from 10 users to many hundred users. The Solarwinds software solution can be a great addition to any network security solution. The benefits you will be getting from this software cover a large spectrum of security hardening techniques from the firewall configuration and management to end user patch management.......

Words: 1221 - Pages: 5

Premium Essay

Metasploit Vulnerability Scanner Executive Proposal

...Metasploit Vulnerability Scanner Executive Proposal Paul Dubuque Table of Contents Page 3 Executive Summary Page 5 Background Information Page 6 Recommended Product Page 7 Product Capabilities Page 10 Cost and Training Page 11 References Page 13 Product Reviews Executive Summary To: Advanced Research Corporation Mr. J. Smith, CEO; Ms. S. Long, V.P. Mr. W Donaldson, CCO; Mr. A. Gramer, CCO & Mr. B. Schuler, CFO CC. Ms. K. Young, MR. G. Holdsoth From: P. Dubuque, IT Manager Advance Research Corporation (ARC) has grown rapidly during the last five years and has been very successful in developing new and innovative devices and medicines for the health care industry. ARC has expanded to two locations, New York, NY and Reston, VA which has led to an expanded computer network in support of business communications and research. ARC has been the victim of cyber-attacks on its network and web site, as well as false alegations of unethical practices. ARC’s network is growing, with over two thousand devices currently and reaching from VA to NY. ARC needs to ensure better security of communications, intellectual property (IP) and public image, all of which affect ARC’s reputation with the public and investors. ARC has previously limited information technology (IT) expenditures to desktop computers and network infrastructure hardware such as routers, firewalls and servers. It is imperative that ARC considers information security (IS) and begins to invest in......

Words: 2593 - Pages: 11

Premium Essay

Executive Summary Proposal Sample

...Executive Summary “Taste the Fun of Dining” The Meal Deal is a world class catering company that serves both business and private clients in the Philippine market. Established in 2007, the company has operated a catering kitchen and specialized in full-service catering and event planning for upscale events in the country. It is located in the booming, and rapidly expanding Mansions, Makati City. The Meal Deal offers a wide variety and affordable food options for customers without sacrificing the taste, aroma and food presentation of every meal. The menu will be inspired from different region's specialties and appeal to a diverse clientele. It has built up their meals and services beyond each and every customer’s needs. They aim to satisfy not only your immediate requirements but also your subconscious desires to every food. The company’s service is known to be relaxed, very friendly and efficient. Our management team is comprised of individuals whose backgrounds consist of 50 years experience in food, restaurant and hotel, bartending, catering, management, finance, and marketing. The company has years of experience in the catering business and knows what an important client wants and needs. We will have a large specialized menu for customers to select from, and we will offer full catering service providing everything from table settings to the dessert. We anticipate our total sales allocation to be 85% restaurant sales and 15% catering sales.......

Words: 253 - Pages: 2

Premium Essay

Advanced Research Executive Proposal

...Advanced research | Tenable Nessus Security Center | Executive Proposal | | James Ellis | 2/21/2015 | [ The following proposal will outline an effective solution for Advanced Research to incorporate in their security audits and assessments. ] | Executive Summary Security testing software is a very important entity for many organizations as it provides security to a company’s network by identifying and testing vulnerabilities before potential hackers can exploit them. Advanced Research has been the victim of cybercriminal efforts to take intellectual assets and sell it to their competitors. It is assumed that our network of corporate documents has been infiltrated by illegal sources more than once. The amount of malware being released to the Internet and infiltrating corporate networks is escalating at an alarming, exponential pace that is doubling every year, (Kaspersky, 2014). Even more disconcerting is that in spite of software vendors efforts to provide patches for vulnerabilities in an expeditious manner as they are discovered, the number of vulnerabilities discovered on existing systems has also increased exponentially, (Kaspersky, 2014). In addition, over 41% of all computers connected to a network were attacked at least once, and this number does not account for the number of attacks to Android mobile devices for which over 98% of all malware is designed to attack, (Kaspersky, 2014). The following is a plan for implementation and purchase of the......

Words: 1577 - Pages: 7