5.3 Advanced Threat

Printer Friendly Page

5.3 Advanced Threat

 

This activity results in creation of the Advanced Threat Assessment and Recommendations Report. Creation of the report involves a further assessment of the threat stance and additional hardening. This activity includes security policy fine tuning recommendations to prevent behavioral-driven risks. Three policies will be analyzed. Tasks in this activity include:

 

  • Review live traffic against policy rules
  • Assessment against Palo Alto Networks defined best practices 
  • Creation of recommendations document
  • Recommendations to include behavioral risks: 
    • Recategorization and blocking of Threat related URL Categories
    • File Type Blocking recommendations 
    • Phishing Prevention Enablement
    • Credential Theft Enablement
    • Tuning against High and Medium Brute Force Categories
    • Block Medium Vulnerabilities and Spyware across all zones
    • Ongoing prevention of inappropriate or insecure traffic

 

Deliverables: 

  • Advanced Threat Assessment and Recommendations Report

 

Consultant Collateral: 

  • Enforcement Threat Best Practice
Ask Questions Get Answers Join the Live Community
Version history
Revision #:
3 of 3
Last update:
‎07-02-2020 11:14 AM
Updated by:
 
Labels
Contributors