Hands-On Observability
Ali is the Lead SecOps Engineer who works for Savi at Bridge to Possibili-Tea. You will be working with Ali during this exercise. Your job is to make sure Ali achieves his goals for which Bridge to Possibili-Tea bought Cisco Secure Application.
Ali wants to secure his application against the log4j CVE-2021-44228 vulnerability that can result in remote code execution giving complete control over the application and underlying system.
To achieve the above, we will take Ali through the following steps:
- Access Business Risk Profile
- Detect if the vulnerability (log4j CVE-2021-44228) is actually present in the application
- If it is, block the attacks without even updating the code or restarting the app
- Making sure the attacks were being blocked
- Further investigating the attacks and the related vulnerability across all tiers of the application
- Suggesting ways for a permanent remediation for this vulnerability
Next
We’ll look at the current security state of the application.