Another approach to justifying the need to implement an awareness raising program is to calculate its cost-effectiveness. Let us give an example of such a calculation.
network of 30 computers: mail servers, databases, and a website. In such a small company, the system administrator functions are assigned to you, a procurement specialist. The business function of the organization is to provide access to materials from the database on a subscription basis. The company's clients began to complain that your site began to spain whatsapp data slower, users - about problems with the delivery of external mail, and the provider informed you that you have completely exhausted the bandwidth available to you. You had to involve a friend of yours in the information security specialist. When analyzing the logs, you discovered that your web server was hacked - it established connections to addresses in countries where you do not have clients, it was also possible to find out that the server was used for DDoS attacks and distribution of malicious content. Further investigation showed that hackers penetrated the network through a phishing letter to one of the users and all servers and some stations were compromised.
You need to cure the entire network. To do this, you will need to perform approximately the following operations:
Select, order, configure and install a good firewall - 10 working hours.
Install a new web server from scratch, deploy the latest backup on it and prepare it for publication - 20 working hours.
Scan all workstations with antivirus software and special tools to find and remove rootkits - 25 working hours.
- Board index
- All times are UTC
- Delete cookies
- Contact us