Analyzing Security Alerts

Objective

As an Information Security Analyst for AIG, this real-life scenario involved analyzing security alerts and responding to a threat. Based on the findings, a drafted email was sent to inform the relevant infrastructure owner at AIG about the severity of a reported vulnerability.

Skills Learned

· Threat Intelligence Application: How to translate real-world CISA alerts and publications into actionable information for an enterprise.

· Risk Communication: Effectively drafting emails to convey the seriousness of a vulnerability to infrastructure owners.

· Asset and Ownership Mapping: Using an infrastructure list to identify which systems and internal teams are potentially affected by a given vulnerability.

· Incident Response Workflow: Connecting the dots from alert analysis → threat research → stakeholder notification → ownership assignment within a large organization (AIG).

· Cybersecurity Frameworks in Practice: Applying (CISA) guide to a specific corporate security status.

What I did

· Reviewed recent publications from the Cybersecurity & Infrastructure Security Agency (CISA).

· Research the reported vulnerability.

· Draft an email to affected teams to alert them of the vulnerability and explain how to remediate.

In this task, I reviewed some recent publications from the Cybersecurity & Infrastructure Security Agency (CISA). This was to seek information regarding the nation’s exposure to cyber security threats and risks.

After reviewing the publications, I proceeded to draft an email to inform the relevant infrastructure owner at AIG of the seriousness of the vulnerability that has been reported.

The Infrastructure List was reviewed for which infrastructure may be affected by the vulnerability, and which team has ownership.

A composed email was sent out to the Department concerning the installed product, which is affected by a Log4j vulnerability.

Contact