Comment: 6/23/2017: the Well-Organized Submission Provides Recommended Safeguards With
Comment: 6/23/2017: The well-organized submission provides recommended safeguards with a focus on firewalls, routers, switches, anti-malware, and personnel training and recommended functions/systems with a focus on aspects pertaining to vulnerability scanners, audit logging, and intrusion prevention/intrusion detection systems. Adequate scope and detail has not been included in presenting these recommendations with respect to the case scenario.
General comments:6/23/2017: The well-organized submission provides recommended safeguards with a focus on firewalls, routers, switches, anti-malware, and personnel training and recommended functions/systems with a focus on aspects pertaining to vulnerability scanners, audit logging, and intrusion prevention/intrusion detection systems. Adequate scope and detail has not been included in presenting these recommendations with respect to the case scenario.
Detailed Results
(Rubric used: BWP Task 3 (1216))
Display
All CommentsCriteria Description
A. RECOMMENDED SAFEGUARDS
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
The submission does not recommend any specific safeguards or the recommended safeguards would not plausibly protect the delivery of critical infrastructure services at the Western Interconnection power grid. / The submission recommends specific safeguards to protect the delivery of critical infrastructure services at the Western Interconnection power grid but does not explain how these recommended safeguards will protect the critical infrastructure services, or the information provided contains inaccuracies. / The submission recommends specific safeguards that would protect the delivery of critical infrastructure services at the Western Interconnection power grid and explains how these recommended safeguards will protect the critical infrastructure services.
CRITERION SCORE:
Approaching Competence
COMMENTS ON THIS CRITERION:
6/23/2017: The submission provides recommended safeguards with a focus on firewalls, routers, switches, anti-malware, and personnel training. Adequate scope and detail has not been included in presenting these recommendations in the context as to their applicability to protecting the critical infrastructure services of the Western Interconnection power grid.
B. EVOLUTION OF SAFEGUARDS
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
A description is not provided, or the submission does not include any changes that would be needed over time with the evolution of cyber-related capabilities, changing threats, and emerging technologies. / The submission describes changes that would be needed over time with the evolution of cyber-related capabilities, changing threats, and emerging technologies but does not addressallsafeguards, or the described changes are not plausible. / The submission describes plausible changes that would be needed over time foreachsafeguard with the evolution of cyber-related capabilities, changing threats, and emerging technologies.
CRITERION SCORE:
Not Evident
COMMENTS ON THIS CRITERION:
6/23/2017: Evaluation of this part will be completed with the required modifications in part A. Recommended Safeguards. Please ensure the alignment of this discussion.
C. RECOMMENDED FUNCTIONS OR SYSTEMS
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
The submission does not recommend any functions or systems, or the recommended functions or systems would not enable timely detection of cybersecurity threats. / The submission recommends functions or systems that would enable timely detection of cybersecurity threats, but does not explain howeachfunction or system would detect cybersecurity threats, or the information provided contains inaccuracies. / The submission recommends functions or systems that would enable timely detection of cybersecurity threats, and accurately explains howeachfunction or system would detect cybersecurity threats.
CRITERION SCORE:
Approaching Competence
COMMENTS ON THIS CRITERION:
6/23/2017: The submission presents recommended functions/systems with a focus on aspects pertaining to vulnerability scanners, audit logging, and intrusion prevention/intrusion detection systems. Adequate scope and detail has not been included as to how these recommendations would operate as functions or systems in enabling timely detection of cybersecurity threats and how each function or system would actually detect cybersecurity threats.
D. EVOLUTION OF FUNCTIONS OR SYSTEMS
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
A description is not provided, or the submission does not include any changes that would be needed over time with the evolution of cyber-related capabilities, changing threats, and emerging technologies. / The submission describes changes that would be needed over time with the evolution of cyber-related capabilities, changing threats, and emerging technologies but does not addressallfunctions or systems, or the described changes are not plausible. / The submission describes plausible changes that would be needed over time foreachfunction or system with the evolution of cyber-related capabilities, changing threats, and emerging technologies.
CRITERION SCORE:
Not Evident
COMMENTS ON THIS CRITERION:
6/23/2017: Evaluation of this part will be completed with the required modifications in part C. Recommended Functions or Systems. Please ensure the alignment of this discussion.
E.SOURCES
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
The submission does not include both in-text citations and a reference list for sources that are quoted, paraphrased, or summarized. / The submission includes in-text citations for sources that are quoted, paraphrased, or summarized, and a reference list; however, the citations and/or reference list is incomplete or inaccurate. / The submission includes in-text citations for sources that are properly quoted, paraphrased, or summarized and a reference list that accurately identifies the author, date, title, and source location as available.
CRITERION SCORE:
Not Evident
COMMENTS ON THIS CRITERION:
6/23/2017: The submission includes five sources; however, the evaluation of the Sources aspect will be performed when the required revisions of the submission are in place.
PROFESSIONAL COMMUNICATION
NOT EVIDENT / APPROACHING COMPETENCE / COMPETENT
Content is unstructured, is disjointed, or contains pervasive errors in mechanics, usage, or grammar. Vocabulary or tone is unprofessional or distracts from the topic. / Content is poorly organized, is difficult to follow, or contains errors in mechanics, usage, or grammar that cause confusion. Terminology is misused or ineffective. / Content reflects attention to detail, is organized, and focuses on the main ideas as prescribed in the task or chosen by the candidate. Terminology is pertinent, is used correctly, and effectively conveys the intended meaning. Mechanics, usage, and grammar promote accurate interpretation and understanding.