Objective 5
5. Develop a research report or implementation plan concerning legal and ethical best practices and mandated requirements that pertain to information security.
Projects
Project 1 - Daubert & Frye - Legal Implementation Plan
Summary -
This report examines the Daubert and Frye standards, which are used to determine whether expert testimony in forensic investigations is admissible in court. It explains the legal requirements for digital forensic evidence, focusing on the Federal Rules of Evidence (FRE 702), the Computer Fraud and Abuse Act (CFAA), and the General Data Protection Regulation (GDPR). The report also discusses best practices for forensic professionals, including maintaining the chain of custody, using validated forensic tools, and properly handling digital evidence to ensure compliance with legal frameworks.​
Why This Project Meets Objective 5 -
This project meets Objective 5 because it provides a detailed research report on legal and ethical best practices related to digital forensic investigations. It explains mandated requirements such as FRE 702 and GDPR, ensuring that forensic professionals follow proper evidence-handling procedures to maintain legal integrity. Additionally, the report includes an "how to" on handling evidence outlining best practices, demonstrating how forensic investigators apply these legal frameworks in real-world cybersecurity cases.
Project 2 - Cybercrime & Legal Regulation - Report
The image shows off a statistic about identify theft from 2019 - 2020 for creation of this report.
The image shows off a statistic about identify theft from 2019 - 2020 for creation of this report.
Summary -
This report analyzes the Matthew Gatrel DDoS-for-hire case, where cybercriminals provided illegal DDoS attack services through DownThem.org and AmpNode.com. It discusses how these actions violated the Computer Fraud and Abuse Act (CFAA) and wire fraud laws, leading to significant legal consequences. The report also provides best practices for businesses to protect themselves from cybercrime liability, covering DDoS mitigation techniques, security policies, and regulatory compliance frameworks such as NIST and ISO 27001. Additionally, it includes an implementation plan that outlines how businesses can develop security policies, deploy technical controls, and train employees to prevent legal violations.​​​​
Why This Project Meets Objective 5 -
This project meets Objective 5 by providing a thorough analysis of cybersecurity laws and legal violations, specifically the CFAA and wire fraud statutes. It connects these legal requirements to real-world business security strategies, ensuring that organizations understand their legal responsibilities in cybersecurity. The report also includes a mitigation strategies on, detailing how businesses can align with legal and ethical best practices to prevent cybercrime and ensure regulatory compliance.