User Account

All Pages

Security administrator for grocery stores

Assignment Help Macroeconomics
Reference no: EM131212111

Based on your assessment of the security breach and interviewing the staff in the scenario, develop a server malware protection policy that accounts for the concerns of the stakeholders involved in mitigating the risk of a malware attack; network security controls that prevent the infiltration of viruses, worms, and/or malware; and reducing the chances that the attack originates from an internal source. Please draft an 800-1,200 word paper and submit it to the Dropbox. Use transition words, a thesis statement, an introduction, a body, a conclusion, and a reference page with at least two references. Also, use double-spaced, 12-point Arial font.

Scenario:

The infectious company, Grocery Stores, Inc. has just been breached by what was first thought to be a remote attacker who infected the supermarket chain with a server based malware program. However, after a security assessment was performed, it was confirmed that it was an inside job. Apparently, a new and sophisticated plan was developed by a disgruntled employee. The attacker slipped malware onto servers at all of the company's 200 grocery stores. The malware appears to have snatched card data from customers as they swiped their credit cards through the checkout counter machine and transferred the card data overseas.

Role:

You've been hired as an information security administrator for Grocery Stores, Inc. Your duty is to assess the situation and determine the best course of action to take to ensure that the security breach is contained and eradicated. You will need to interview key staff members and decide how which member(s) can best assist you in eliminating this risk.

Players:

Douglas Smith- Vice President Information Technologies:

The fact that the malware was not the ordinary kind of key logger program that might capture keyboard presses as a customer logs into their online bank account, but was instead software programmed to lift credit card data as it was being transmitted to the servers at Grocery Stores, Inc, suggests that the malware program had to be written specifically to target our stores and deployed from inside the company network. It seems almost too much of a coincidence to believe that remote hackers would have a chance to infect every server with the appropriate malware by using traditional security flaws such as a misconfigured firewall, or even an out-of-date antivirus application. We have over 20 network administrators throughout multiple branch offices and satellite locations. Security was set up so that each network administrator had the same security access and privileges to each location. In hindsight, I believe that while having redundant or equal security privileges for all network administrators can be a good thing; it can also be a major security hole. That is because the administrators have access to the entire system and not just their local area network.

Josh Brandenbosh- Network Administrator:

The possibility that the security breach of Grocery Stores, Inc. was performed by an employee is very disturbing. We must review our current employee hiring policies and procedures to insure that we are performing the appropriate background checks and monitoring our employees to make sure that valuable customer data is both secured and protected from external threats and internal employees. We can't have our I.T. professional circumventing the system because they have elevated privileges that give them unfettered access to valuable company data. We must review the current job descriptions and duties of all personnel who have access to customer data and only give access where appropriate. Also, during the termination and/or transfer process, we need to be sure that we have done the steps necessary to disable security access so that we do not have any rogue accounts.

Sarah Campbell- CEO:

The recent security breach at Grocery Stores, Inc. indicates to us that our security policies and procedures need serious scrutiny and oversight. However, even if we were found compliant with all security controls and financial protection measures, the fact remains that we were hacked. A major concern at many corporations is the potential for a man-in-the-middle attack, where an attacker can install a sniffer program and pull out the data as it flows through. You can reduce the risk of this type of attack by encrypting the data at the time it transverses the network. I also want to review the training policies and procedures of our personnel to make sure that everyone understands the rules, is complying, and that there are punitive measures in place to reduce the risk of incidents like these from happening again.

Theresa Brown- Human Resources Director:

The security breach at Grocery Stores, Inc. has caused major damage to the reputation and trust that our customers and stakeholders have in this organization. This cannot be tolerated; security of our valuable data is paramount. As CEO of this company, I am responsible for insuring security of our critical data and compliance. Security must be an important concept to every employee from top to bottom. We must demonstrate adequate internal controls of business records and information security. We need a layered security program so that if one defense is unsuccessful, the attacker must poke through other defenses. Even with a layered security program, there's no guarantee that the company can prevent every attack from succeeding. Good security requires constant care and it doesn't take much for a vulnerable opening to develop. We will do everything possible now and review for potential updates monthly in the future.

Deliverables:

Given the scenario, your role and the information provided by the key players involved, it is time for you to make a decision.

If you are finished reviewing this scenario, close this window and return to this Week's You Decide tab, in your course, to complete the activity for this scenario.

You can return and review this scenario again at any time.

Reference no: EM131212111

Questions Cloud

What is sustainable investing : What is sustainable investing? - Do you think investors should be concerned with ESG? -  Do you think ESG investments can perform better than non-ESG investments? Why or why not?
Find the density function of x + y : Suppose that X and Y are independent Uniform random variables on [0, 1].
Critical task as a project manager : What do you believe is the most critical task as a project manager? What role should they play (a coordinator, a technical advisor, a consultant, a coach, a manager, a bridge between project team, upper manager and customers or a combination of al..
Define categorical imperative according to kant : Define categorical imperative according to Kant.-  Define utilitarianism.- Discuss the contributions of Martin Buber and Carl Rogers to the study of ethics in communication.
Security administrator for grocery stores : You've been hired as an information security administrator for Grocery Stores, Inc. Your duty is to assess the situation and determine the best course of action to take to ensure that the security breach is contained and eradicated. You will need ..
What are the characteristics of the new global country : Identify a Global Environment for the company (an international country for the company) - What are the characteristics of the new Global Country/Environment that will best suit the company for success?
Is this system currently in a safe or unsafe state and why : Compute what each process still might request and display in the columns labeled "still needs."
Is the expression ethical hacker an oxymoron : Is the expression "ethical hacker" an oxymoron?- Do you agree that someindividuals should be allowed to be "certified" as hackers to work on behalf of industry or for the interests of other organizations?
Describes and explains scrum software development framework : Develop a detailed presentation or an essay that describes and explains the SCRUM software development framework. Include the following components

Reviews

Write a Review

Macroeconomics Questions & Answers

  Production possibility frontier

In some economies relative supply may be unresponsive to changes in prices. For example, if factors of production were completely immobile between sectors, the production possibility frontier would be right-angled, and output of the two goods woul..

  Saving and investment relationship in the closed economy

Based on the saving and investment relationship in the closed economy, explain how an increase in government pushes (G) can affect growth in output per worker. We assume that the taxes that the government collects remain unchanged.

  Determine the value of the marginal propensity to consume

In national income accounting, grain fed to a hog at a commercial hog farm is considered a(n) a. final good b. intermediate good c. consumer good d. capital consumption allowance

  Network connectivity issues

Your computer is having network connectivity issues. One of the first troubleshooting steps is to ping the loopback address. Why? What is a loopback address?

  What implications does have for conduct of monetary policy

look up for the numbers of the M1, M2 and M3 monetary aggregates in the European central bank euro area statistic for the most recent last-year period since the outburst of the global financial crisis.

  How an employee rationalize his or her decision to conform

Identify two instances in the case study in which employees at Goodrich succumbed to the pressures of conformity. Consider the level at which both groupthink and diffusion of responsibility affected the actions of those involved in the A7D affair,..

  Macroeconomics multiple choice questions

If twelve units of a good are sold when the price is $1 per unit, and eight units are sold at a value of $1.50 per unit,

  Should the united states pass a minimum wage that assures

Should the United States pass a minimum wage that assures all workers earn a wage above the poverty level? Defend your position using economic principles

  Line with the largest number of vowels

Write a function named count_vowels to count the number of vowels (a, e, i, o,u) in each line of the poem. Print the line with the largest number of vowels and this number. If there is a tie then print all the tied lines.

  Determine the salary for continue the interviewing process

BK Books is an online book retailer that also has 10,000 "bricks and mortar" outlets worldwide. You are a risk-neutral manager within the Corporate Finance Division and are in dire need of a new financial analyst. You only interview students from ..

  Monopolistic competitive market as used in economics

Outline three salient features of a monopolistic competitive market as used in economics?

  Should the likely effects of the policy on real gdp be taken

The government is considering a policy to reduce air pollution by restricting the use of “dirty” fuels by factories. In deciding whether to implement the policy, how, if at all, should the likely effects of the policy on real GDP be taken into accoun..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd