Developing A Windows Auditing Plan And Backup Strategies

Question

Developing a Windows Auditing Plan and Backup Strategies Developing a Windows Auditing Plan and Backup Strategies Assignment 1 Scenario 1: You are developing a Windows auditing plan and need to determine which log files to capture and review. You are considering log files that record access to sensitive resources. You know that auditing too many events for too many objects can cause computers to run more slowly and consume more disk space to store the audit log file entries. Answer the following question(s): (2 References) If computer performance and disk space were not a concern, what is another reason for not tracking audit information for all events? Scenario 2: Assume you are a security professional. You are determining which of the following backup strategies will provide the best protection against data loss, whether from disk failure or natural disaster: Daily full server backups with hourly incremental backups Redundant array of independent disks (RAID) with periodic full backups Replicated databases and folders on high-availability alternate servers Which backup strategy would you adopt? Why? Assignment 1 Submission Requirements: Format: Microsoft Word (or compatible) Font: Arial, size 12, double-space Citation Style: APA Length: At least 350 words for each question References: At least 2 credible scholarly references for each question

Dr. Jack HW Helper · Accepted Answer

The development of a comprehensive Windows auditing plan is fundamental for maintaining security and operational integrity within an organization. When configuring audit logs, the critical question revolves around balancing thoroughness with system performance. Although minimizing disk usage and avoiding performance degradation are valid concerns, one significant reason to restrict auditing is related to privacy considerations and legal compliance. Auditing all events indiscriminately could encroach on user privacy rights, especially if sensitive personal or confidential information is being logged without appropriate consent or safeguards (Kesan & Shah, 2014). Additionally, over-logging can lead to compliance violations if the captured data contains personally identifiable information (PII) that must adhere to regulations such as GDPR or HIPAA. Excessive logging increases the risk of data breaches, as larger logs may contain sensitive data and potentially be targeted by attackers (Ruan & Kuo, 2016). Consequently, a selective approach to auditing not only preserves system resources but also mitigates privacy and legal risks by focusing on critical resources and events. Regarding backup strategies, the choice depends on the organization's recovery objectives, resources, and risk appetite. Daily full backups combined with hourly incremental backups offer a balanced approach, providing recent recovery points with manageable data volume. However, in environments requiring continuous availability, high-availability solutions like replicated databases on multi-server clusters more effectively minimize downtime and data loss (Mell et al., 2017). RAID arrays, while offering redundancy and improving disk performance, do not protect against physical damage or catastrophic events. Therefore, for maximum resilience against natural disasters or hardware failures, the strategy of replicated databases and folders on high-availability servers is optimal despite higher costs

Developing a Windows Auditing Plan and Backup Strategies

Paper For Above instruction

References

Related Assignments