Heat maps
WGU DJN1 — DJN1 TASK 1: INCIDENT RESPONSE;(WGU
PERFOMANCE ASSESSMENT 2024 COMPLETE
SECURITY OPERATIONS — D483 PRFA — DJN1
TASK OVERVIEWSUBMISSIONSEVALUATION REPORT
COMPETENCIES
4112.1.6 : Reporting Incident Response
The learner recommends solutions to respond to a detected cybersecurity incident.
INTRODUCTION
Throughout your career in security operations, you will be asked to investigate incidents and
recommend responses to those incidents. You will need to analyze logs when investigating affected hardware, diagnose an attack and its impact, and recommend next steps in an incident response report.
In this task, you are given the attached “Background Information” reference document containing a security operations scenario and associated helpdesk ticket artifacts. You will access a virtual lab environment to investigate and interact with the affected hardware discussed in the “Background Information” document. Next, you will create an incident response report using the attached “Incident Reporting Template” document to identify the steps taken in detecting, investigating, and remediating the issues within the virtual lab and to recommend next steps.
Your submission will include both your completed incident response report and a screenshot evidence document generated by the virtual lab environment. Additional details for interacting with the virtual lab environment, including the use of its available tools and the screenshot evidence document, can be found in the attached “Virtual Lab Supplementary Instructions” document.
SCENARIO
Refer to the scenario and artifacts in the attached “Background Information” document.
REQUIREMENTS
Your submission must be your original work. No more than a combined total of 30% of the submission and no more than a 10% match to any one individual source can be directly quoted or closely paraphrased from sources, even if cited correctly. The similarity report that is provided when you submit your task can be used as a guide.
WGU DJN1 — DJN1 TASK 1: INCIDENT RESPONSE;(WGU
PERFOMANCE ASSESSMENT 2024 COMPLETE
SECURITY OPERATIONS — D483 PRFA — DJN1
TASK OVERVIEWSUBMISSIONSEVALUATION REPORT
COMPETENCIES
4112.1.6 : Reporting Incident Response
The learner recommends solutions to respond to a detected cybersecurity incident.
INTRODUCTION
Throughout your career in security operations, you will be asked to investigate incidents and
recommend responses to those incidents. You will need to analyze logs when investigating affected hardware, diagnose an attack and its impact, and recommend next steps in an incident response report.
In this task, you are given the attached “Background Information” reference document containing a security operations scenario and associated helpdesk ticket artifacts. You will access a virtual lab environment to investigate and interact with the affected hardware discussed in the “Background Information” document. Next, you will create an incident response report using the attached “Incident Reporting Template” document to identify the steps taken in detecting, investigating, and remediating the issues within the virtual lab and to recommend next steps.
Your submission will include both your completed incident response report and a screenshot evidence document generated by the virtual lab environment. Additional details for interacting with the virtual lab environment, including the use of its available tools and the screenshot evidence document, can be found in the attached “Virtual Lab Supplementary Instructions” document.
SCENARIO
Refer to the scenario and artifacts in the attached “Background Information” document.
REQUIREMENTS
Your submission must be your original work. No more than a combined total of 30% of the submission and no more than a 10% match to any one individual source can be directly quoted or closely paraphrased from sources, even if cited correctly. The similarity report that is provided when you submit your task can be used as a guide.
