A few of fields In cybersecurity that will be important in several years are Application Security, Network Security and Mobile Security. Both fields to me have a lot of growth opportunities and can be very dangerous if not used right. For instances application security plays a crucial part in our everyday life cycle which includes work, school, home use..etc. Certain application software can be very pricey, companies use it to evaluate security of the third-party software they may be using. Application penetration testing is a big help in order to exploit vulnerabilities in applications before hackers are able to discover them. Penetration testing are broken down into 5 stages which are analysis and WAF configuration, maintain access, planning and reconnaissance, scanning, and gaining access. Locking down the application is very important in so many ways. Mobile security is more important than ever before. More data is being stored on mobile devices so that gives the cybercriminal more opportunity to steal valuable information. More cybercriminals are focusing their efforts more on smartphones, tablets, and laptops. They can easily steal more money and data from users this way. IT security administrators noticed it’s getting harder over the years in securing sensitive data. While cybercriminals use it as another way to compromise businesses. That’s why in today’s society more organizations have personally banned the use of mobile devices or their property. People still view mobile devices as being more secure than PC’s. They think PC’s have a real operating system while mobile devices have some sort of firmware that’s unbreakable, along security apps which is not true. Network Security plays a important fact in cybersecurity, there is so many attacks daily on networks. Some common internet attacks are eavesdropping, Trojans, viruses, phishing denial of service, and IP spoofing. Over a period of time companies started to notice many data breaches over a network begins with negligent employees. These kinds of breaches happens all over the world, the cost of data breaches could range over $4 million per breach. With is huge price tag can do major damage to a business and customers will start to lost their trust in a organization like a bank. When it comes to cost data breaches can also come with legal fines. FCC found out carriers had breached personal data up to 305,000 users through their lax data security practices and exposed users. Penalties by the FCC has not been a regulatory body of concern with respect of data security and breaches. Some of the career opportunities and pathways to cybersecurity certifications are as follows: A Entry-level helpdesk which requires a Security + certification. A Cyber Security Forensics Specialist, certified Pen Tester w/Polygraph requires Certified Pen tester, programming experience with Java, C, C++, Perl, Python, Enscripts, Linux/Unix, Mobile OS, Android certifications. A Cyber Security Penetration Test Engineer requires OSCP, GIAC, GPEN, GWAPT, GSSP, ITIL, or CISSP certifications

This is the second of a series of five assignments focusing on software engineering ethics.

Read the attached Ethics-II.pdf Download Ethics-II.pdfwhich continues the discussion on what Ethics mean  in the context of software engineering.

Then proceed to answer the questions inside the reading:

• Questions 2.1 and 2.2
• Questions 3.1 and 3.2
• Question 4.1

Because for many ethics questions there is no absolutely right or wrong answers as such, your responses will be graded based on completeness and thoughtfulness as opposed to rote or perfunctory ones. There are three grade levels for this assignment based on your responses to all the questions: 20 (no reasoning in responses), 35 (minimal to little reasoning), and 50 (sufficient reasoning and consideration).

Write your answers in a Word file using Times New Roman font (no smaller than 10 pt but no bigger than 12 pt), single spacing, 1″ margins on all sides. At least 3 pages 

 Question 2.1: What sorts of things can excellent software engineers contribute to the good life? (Answer as fully/in as many ways as you are able) 

Question 2.2: What kinds of character traits, qualities, behaviors and/or habits do you think mark the kinds of people who tend to contribute most in these ways? (Answer as fully/in as many ways as you are able) 

 Question 3.1: Who are the various stakeholders in this scenario, and what do they each have at stake in your action? Reflect carefully and deeply, and answer as fully as possible.

Question 3.2: What do you think is your ethical obligation in this situation? What do you think an excellent software engineer would do in this situation? Are they the same thing, or different? Please explain your answer. 

 Question 4.1: Which of the contributions in your answer to 2.1 are related to vital public good(s)? What vital public goods might software engineers help to secure that you did not mention in your initial answer to 2.1? 

M4 Discussion 1

Read the attached article: “The Mythical Man-Month Download The Mythical Man-Month“, by Frederick Brooks, extracts from The Mythical Man Month book, 1975.

1. Tell us something about what you learn from this article. Your posting should contain at least 100 words;
2. Provide constructive comment on at least one other student’s posting. “Agree”, “good” etc. are not counted as constructive commenting.

M4 Discussion 2

Find at least two credible sources to study the recent VW Diesel Scandal and read what this topic is about and what the latest development is.

1. Discuss your understanding of this case from the software engineering ethics viewpoint. Consider including in your post on your thoughts related to questions such as

• What VW software engineers should have done to in order contribute to the good life for others in this case;
• Who are the public’ to who the VW software engneers is obligated;
• Why the software engineers is obligated to protect the public and
• how VW software engineers failed in this case.

Your posting should contain at least 100 words;

2. List the two sources used in your research at the end of your post;

3. Provide constructive comment on at least one other student’s posting. “Agree”, “good” etc. are not counted as constructive commenting.

1.What do you think is the best combination of the types of authentication? Is that type of authentication appropriate for all types of access.

2. Some have made the argument that using WEP presents more security issues than if all traffic were in the clear. What do you think?

3. Which is your “favorite” attack? Why? Which is the most dangerous? Which do you think is the hardest to protect against?

4. Have you ever used e-mail or instant messenger to share information that was sensitive in nature? Have you ever gotten spam? Have you ever responded to spam? Have you tried to remove your name from the list? Did it work? Do you have any idea how your e-mail address wound up on the spam list in the first place?

Use the Web to search the terms “CitiBank backup tapes lost.” You will find many results. Select one article and write a report and identify what the article considers a shortcoming in CitiBank’s planning. What part of the contingency planning process came up short (IR, DR, or BC)? How could the shortcoming have been prevented?

( one page )