This section defines the systems critical to security operations, including asset roles, trust levels, data sensitivity, and monitoring priority.
Any unapproved user connecting to my Wi-Fi, pfSense firewall, VirtualBox SOC, or personal accounts is unacceptable. This includes attempts to bypass passwords, MFA, or exploit vulnerabilities.
Impact: High
Reason: Could lead to data theft, system compromise, or full loss of control.
This includes passwords, school/work files, financial data, cloud accounts, or anything stored on my laptops, phones, or virtual machines.
Impact: High
Reason: Results in privacy loss, identity theft, financial damage, or long-term harm.
Any event that disables pfSense, disconnects the network, corrupts VMs, or interrupts monitoring is unacceptable.
Impact: High
Reason: Prevents security visibility, learning environment operations, and access to critical resources.