solved Look at the attached file for full detailsThe security posture

Look at the attached file for full detailsThe security posture of the information systems infrastructure of an organization should be regularly monitored and assessed (including software, hardware, firmware components, governance policies, and implementation of security controls).undefinedThe monitoring and assessment of the infrastructure and its components, policies, and processes should also account for changes and new procurements in order to stay in step with ever-changing information system technologies.undefinedThe data breach at the US Office of Personnel Management (OPM) was one of the largest in US government history. It provides a series of lessons learned for other organizations in industry and the public sector. Some failures of security practices, such as lack of diligence with security controls and management of changes to the information systems infrastructure, were cited as contributors to the massive data breach in the OPM Office of the Inspector General’s (OIG) Final Audit Report, which can be found in open-source searches. Some of the findings in the report include:weak authentication mechanisms;lack of a plan for life-cycle management of the information systems;lack of a configuration management and change management plan;lack of inventory of systems, servers, databases, and network devices;lack of mature vulnerability scanning tools;lack of valid authorizations for many systems; andlack of plans of action to remedy the findings of previous audits.The breach ultimately resulted in removal of OPM’s top leadership. The impact of the breach on the livelihoods of millions of people may never be fully known.There is a critical need for security programs that can assess vulnerabilities and provide mitigations.Security Assessment Report (SAR): This should be an eight- to 10-page double-spaced Word document with citations in APA format. The page count does not include figures, diagrams, tables, or citations.Risk Assessment Report (RAR): This report should be a five- to six-page double-spaced Word document with citations in APA format. The page count does not include figures, diagrams, tables, or citations.