Reference no: EM133535731 , Length: word count:1800

Introduction to Business Analytics

Assessment - Individual Report and Individual Presentation

Your Task

Consider below information regarding the Deutsche Bank data breach. Read the case study carefully and using the resources listed, together with your own research, complete:

- Part A (Industry Report)

- Part B (Application for data access presentation)

Assessment Description

Deutsche Bank denies hack despite ‘access to systems' being offered for sale on Telegram

Access to the investment bank's internal systems is being offered for sale online. Has it been breached?

"Deutsche Bank has denied its systems have been breached after access to the bank's internal networks was apparently offered for sale on Telegram by an initial access broker (IAB).

Last week the broker claimed to have access to 21,000 machines and 16 terabytes of data. They are selling it for 7.5 Bitcoin, worth approximately £110,000.

Based in Frankfurt, the bank manages assets worth more than $1.3trn. But a Deutsche Bank spokesperson told Tech Monitor on Monday, November 14, the IT does not believe it has been compromised. "Following the report implying a potential cyber breach, we conducted extensive analysis to assess potential relevance or impact to Deutsche Bank," the spokesperson said. "Our assessment to date has shown no indication of compromise or breach. We continuously scan and monitor our technology environment to identify and detect threats, and maintain a robust incident response capability as part of our standard operating procedures.

Deutsche Bank ‘breach' details posted on Telegram.

The broker, going by the username Ox_dump, announced on Telegram that they possess access to internal networks and machines at Deutsche Bank.

The announcement has been posted alongside a picture of the Deutsche Bank headquarters in Frankfurt, with the Deutsche Bank icon layered over the picture.

The broker claims to be able to enter numerous Transmission Connection Protocols (TCPs) like User Datagram Protocol (UDP) as well as HTTP and HTTPS which allows them to access different parts of the network. Access to FTP, shells and servers are listed at the head of the announcement. The IAB also claims to have access to "file servers with more than 16 terabytes of internal data," including office chat data".

Brief

As an analyst within Deutsche Bank, you have been tasked with considering ways in which customer data can be used to further assist Deutsche Bank with its marketing campaigns.

As a further task, you have been asked to consider how Deutsche Bank could potentially assist other vendors interested in the credit card history of its customers.

These tasks are now subject to a review by an external regulatory body, given Deutsche Bank's recent data breach.

Your additional and now initial task, as a data analyst, is to justify why Deutsche Bank should be allowed to use customer data in the way described in this brief.

Assessment Instructions

Part A: Industry Report (1800 words) - Individual

Prepare your report justifying why Deutsche Bank should be allowed to use customer data in the way described in this brief, using the following headings:

Data Security and privacy

• How Deutsche Bank will address data security, privacy and accuracy issues associated with the use of the database in the way proposed in the brief. In so doing, refer to the GDPR.

Ethical Considerations

• The ethical considerations behind whether the customer has the option to opt in or opt out of having their data used and stored in the way proposed by this analytics brief.

• An outline of other ethical issues of gathering, maintaining and using the data in the way proposed in the brief above.

Artificial Intelligence

• How developments in AI intersects with data security, privacy and ethics, especially in light of your proposed analytics project.

Data Usability

• How stakeholders, including customers, will benefit from the use of customer data for marketing purposes. In so doing, refer to descriptive, predictive and prescriptive applications of the data available and the data analytics software tools this would require.

Note that it is a requirement to support each of your key points with references (both academic and "grey" material). Use the resources provided as well as your own research to assist with data collection and data privacy discussions.

Part B: Presentation (5 minutes)

Instructions:

You are required to prepare a presentation of 6 - 12 PowerPoint slides. You are an analyst at Deutsche Bank
You have identified a way in which you can use customer data to inform customers of bank offers and offers from other vendors, based on their credit card spending history.

Although it's Deutsche Bank's own data, regulators and legislators are becoming increasingly concerned about the way in which certain types of analytics projects can infringe on privacy, individual rights and potentially be in contravention of the GDPR and other legislation.

Create a video presentation of approximately 5 minutes, using Zoom, in which you discuss how Deutsche Bank plans to use this data and the broad implications involved. Instructions on uploading the video into Kaltura will be present in the assessment table on the subject portal page.

Discuss the issues below, and imagine you are communicating this presentation to government (regulators and / or legislators) as your primary audience.

Consider:

1. Why you want the data and the resulting benefits to your customer base;

2. How the data can be sourced ethically and securely;

3. How you will keep the data safe from the type of attack on customer data outlined in the article above.

4. How you will use your analytical findings in an ethical way.