WGU C845 VUN1 Task 1, 2 & 3 Information Systems Security
- C845 | 100% Guaranteed Pass || Complete A+ Guide
Table Of Contents:
\ \
WGU\C845\VUN1\Task\1:\Managing\Security\Operations\and\Access\C
ontrols ................................................................. Pg\02
WGU\C845\VUN1\Task\2:\Evaluating\Incident\Response\Operations\&\D
efending\Network\Security.............................. Pg\07
WGU\C845\VUN1\Task\3:\Evaluating\&\Defending\Data\Security\and\S
ystem\Operations ................................................Pg\13
, Click\Or\Search\This\Link\For\Full\Download:\https://www.stuvia.com/en-
us/doc/10190175/wgu-c845-vun1-task-1-2-en-3-information-systems-
\security-c845-100-guaranteed-pass-complete-a-guide
A.2. Recommended\Changes\to\Resolve\Misalignments
1. Recommendation\1:\Implement\Privilege\Tiering\for\Administrative\Roles
• Justification:\Following\the\CIS\Control\5\(Account\Management)\and\the\principle\of\
least\privilege,\administrative\accounts\should\be\segregated.\The\"Junior\system\admin
"\role\should\be\assigned\a\more\restricted\set\of\privileges,\such\as\"Server\Operator
"\or\"Help\Desk\Administrator,"\which\allows\for\daily\tasks\without\granting\domain-
wide\control\(NIST\SP\800-53,\AC-6).
2. Recommendation\2:\Conduct\a\Role-Permission\Review\and\Remediation
• Justification:\Align\with\ISO/IEC\27001:2022,\A.5.35\(Access\control)\by\performing\a
\formal\review\of\all\role\assignments.\Remove\access\to\systems\like\the\CRM\from\t
he\"Finance\analyst"\role\unless\a\compelling\business\justification\exists.\Access\shou
ld\be\based\on\documented\job\requirements.
3. Recommendation\3:\Automate\Access\Revocation\and\Enforce\Change\Management
• Justification:\Per\NIST\SP\800-53,\AC-
2\(Account\Management),\account\revocation\must\occur\immediately\upon\terminati
on.\This\should\be\an\automated\part\of\the\HR\offboarding\process.\Furthermore,\all
\changes,\including\firewall\modifications,\must\require\a\ticket\ID\for\approval\and\a
uditing\(CIS\Control\10\-\Malware\Defenses,\relying\on\change\management).
A.3. Revised\User\Role\Matrix
The\revised\matrix\reflects\a\stricter\RBAC\implementation.\Key\changes\are\bolded.
Role Assigned\User System\Access Privilege\Level\(Revised)
Finance\Manager A.\Jones Payroll\system,\budget\tra Full\access
cker
Finance\analyst L.\Cheng Payroll\system,\budget\tra Read\and\write\(CR
cker M\access\removed)
HR\coordinator M.\Singh HR\portal,\payroll\system Read\and\write
Security\Analyst K.\Patel SIEM,\network\logs,\fi Read\only
rewall\console
IT\administrator T.\Miller All\internal\systems Full\admin
Junior\system\admin J.\Lopez Domain\controller,\all\inte Server\Operator
rnal\systems (Domain\Admin\rem
oved)
Customer\support\rep R.\Davis CRM,\email\server Read\only
Customer\support\rep J.\Hall CRM,\email\server Read\only\(Payroll
system\access\removed)
External\auditor D.\Nguyen Budget\tracker Read\only