User Account

All Pages

What advantages does use of an mssp offer a small retailer

Assignment Help Management Theories
Reference no: EM131631455

Question: Fair play Turns to a Managed Security Service Provider

Fairplay Finer Foods is an independent grocery retailer that operates in the greater Chicago area. From its beginning, Fairplay's mission has been to provide quality foods at an affordable price along with exceptional customer service. Starting with a single store in 1975, Fairplay has since grown to seven locations. The opening of each new store led to increased sales and attracted new customers; however, expansion also raised new information system needs as well as information security risks.

Due to its size, it was not practical for Fairplay to create and run its own information systems organization, so it contracted with KCS Computer Technology, Inc., to provide these services along with the necessary computer hardware and systems. One of KCS's key accomplishments for Fairplay was to implement and manage a corporate network that the grocery chain uses to run applications and communicate across all of its stores Another important area of focus for KCS involved helping Fairplay manage issues related to the Payment Card Industry Data Security Standard (PCI DSS). Retailers accepting credit cards and other forms of electronic payment are required to comply with the PCI DSS. The PCI DSS standard ensures that businesses follow best practices for protecting their customers' payment card information. A strong desire to ensure compliance with the PCI DSS standard and concern over potential network security issues led Fairplay and KCS to seek out a managed security service provider (MSSP).

After a thorough investigation, Fairplay and KCS selected ControlScan, an MSSP headquartered in Atlanta, based on its simple pricing model, stable of certified security experts, advanced technology, and solid reputation. As part of its contract with Fairplay, ControlScan agreed to serve as an extension of KCS, delivering cloud-based security technologies and related security support services, including:

? Installing, configuring, and monitoring a system of next-generation firewalls

? Investigating, responding to, and reporting on security-related events

? Providing network usage reports for insights into company resource utilization

? Upgrading the network on an ongoing basis by implementing the latest security enhancements

? Providing expertise to reduce network complexity and contain network-related costsControlScan's initial action was to install next-generation firewall appliances to protect each of Fairplay's locations. This work was completed overnight in a single night to minimize business disruption. ControlScan then conducted a thorough PCI gap analysis to compare current Fairplay security controls with those required by the PCI DSS. ControlScan developed a detailed set of recommendations and options for eliminating the gaps; thus, giving Fairplay management a roadmap to achieve full PCI DSS compliance. Finally, ControlScan did a full review of all of Fairplay's existing information systems and security policies, working with the chain's IS staff to tweak and customize policies where necessary.

Critical Thinking Questions

1. What advantages does use of an MSSP offer a small retailer like Fairplay? Can you think of any potential drawbacks of this approach? Is there a danger in placing too much trust in the use of an MSSP? Explain?

2. Data breaches at major retailers, such as Neiman Marcus, Target, and others, in recent years have shown that compliance with the Payment Card Industry Data Security Standard (PCI DSS) is no guarantee against an intrusion (see Vijayan, Jaikumar, "After Target, Neiman Marcus Breaches, Does PCI Compliance Mean Anything?," ComputerWorld, January 24, 2014). If you were a member of Fairplay's management team, what additional actions would you take to ensure your customer's credit card data is not stolen?

3. Do research on the Web to gain insight into the evolution of the PCI DSS standard. What major changes were made in moving from PCI 2.0 to PCI 3.0? What changes are being suggested for future versions of the PCI standard?

Reference no: EM131631455

Questions Cloud

Identify commonly used antivirus software packages : Identify three commonly used antivirus software packages. Develop a spreadsheet that compares the cost and fundamental features of each package.
How the government should regulate through the system : Why do you think Democracy is the most reasonable formula for how the government should regulate, through the system of checks and balances?
Distinguish between a hacktivist and a cyberterrorist : How would you distinguish between a hacktivist and a cyberterrorist? Should the use of hacktivists by a country against enemy organizations be considered.
A research essay on the government and national security : Address the responsibilities of each level of government, which are federal, state, and local. a research essay on the government and national security.
What advantages does use of an mssp offer a small retailer : Fairplay Finer Foods is an independent grocery retailer that operates in the greater Chicago area. From its beginning, Fairplay's mission has been to provide.
Define the health disparity affect health outcomes : What causes and factors contributed to the health disparity
How implementation of fall prevention program : Describe how implementation of fall prevention program on OB unit would help improve patient outcomes
Discuss problem-sony response to north korea cyberattack : Sony's Response to North Korea's Cyberattack On November 24, 2014, employees of Sony Pictures Entertainment booted up their computers to find an image.
What is the explanation for the patients vital signs : Case Study - Management of Patients With Neurologic Trauma, What is the explanation for the patients vital signs

Reviews

Write a Review

Management Theories Questions & Answers

  Learning in action

Learning contract proposal that will form the basis of your learning contract report.

  Change is the only constant

"Change is the only constant " Evaluate the different types of change that have occurred in Sony.

  How do advertisers try to use group influence

How do advertisers try to use group influence?  Will you find any specific examples and explain the relevant theory of group behavior and influence?

  Case study:saving sony

You have been appointed by Sony as a consultant on change management. Advise Sony on how they could implement the change by using the various theories of change you have learnt.

  How the stock market works

The purpose of this project is to help you to gain an understanding of how the stock market works and of the relationship between theory and practice.

  Find the optimal production quantities

Find not only the optimal production quantities, but also the optimal total cost.

  Describe the management process

Describe the management process and identify the skills required to manage business organizations.

  Case study : bert''s bonsai and aquatic sport museum

Case Study : Bert's Bonsai and Aquatic Sport Museum Prepare a knowledge management system.

  Knowledge management techniques

Demonstrate understanding of the many-sided nature of knowledge management

  Theory of transtheoretical model

Demonstrate understanding of the many-sided nature of knowledge management

  Write a paper on historical trends of management

Write a paper on Historical Trends of Management.

  Theory of reasoned action

Theory of Planned Behavior and Integrated Behaviors Model

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd