User Account

All Pages

What rules and regulations are you planning to adhere to

Assignment Help Auditing
Reference no: EM132605989

SBM4302 IT Audit and Controls - Asia Pacific International College

Case Study: NAB Data Breach

On the 26th July 2019, National Australia Bank (NAB) which is the 4th largest bank in Australia, contacted approximately 13,000 customers to advise that some personal information provided when their account was set up was uploaded, without authorisation, to the servers of two data service companies. NAB's security teams have contacted the companies, who advise that all information provided to them is deleted within two hours.

NAB Chief Data Officer, Glenda Crisp, said the compromised data included customer name, date of birth, contact details and in some cases, a government-issued identification number, such as a driver's licence number. "We take the privacy and the protection of customer information extremely seriously and I sincerely apologise to affected customers. We take full responsibility," she said. "The issue was human error and in breach of NAB's data security policies." Ms Crisp said it was not a cyber-security issue. No NAB log-in details or passwords have been compromised - and NAB's systems remain secure. "Our number one priority is to support our customers. We are moving quickly to proactively contact every person affected."

NAB called, emailed or written to each impacted customer individually. A dedicated, specialist support team was in place, available to them 24/7. If government identification documents need to be reissued, NAB would cover the cost. NAB would also cover the cost of independent, enhanced fraud detection identification services for affected customers. Importantly there is no evidence to indicate that any of the information has been copied or further disclosed.

NAB is advising impacted customers that they do not need to take any action with their account. "We have reviewed these customers' accounts, over and above our rigorous normal checks, and have not identified any unusual activity. We will continue to monitor 24/7 to protect our customers' accounts," Ms Crisp said. NAB also notified and was working with industry regulators, including the Office of the Australian Information Commissioner. Ms Crisp said: "We take full responsibility. We can assure you that we understand how this happened and we are making changes to ensure this does not happen again."

On further development, NAB CEO admitted that it is difficult to invest huge amount of money in information security compared to the industry leaders like Microsoft, Google, Amazon. His opinion was to leverage on the infrastructure created by these companies i.e. through cloud computing.

Based on the above case study, you have to prepare a report to answer the followings:
- Objectify your audit focus and scope
- Which business departments, functionalities of NAB, are you planning to audit? And how can you detect regularities, abnormalities in them?
- What suggestions, recommendations do you want to provide to NAB based on your findings?
- As an IT auditor, what rules and regulations are you planning to adhere to?

Reference no: EM132605989

Questions Cloud

What incentive will the create for the supervisors : What incentive will this create for the supervisors? What improvement can be made by the management to improve the bonus plan? Explain briefly.
Rationales for government intervention : ?Discuss one or more rationales for government intervention in the provision of this good or service.
Explain what a production possibilities frontier is : Suppose you are a farmer with 20 hectares of land on which you could grow either wheat or barley. You can allocate however much land you want to each crop.
Compute the product cost per unit of butter cake : Cakey Bakey Trading, Compute the product cost per unit of Butter Cake and Pineapple Layer Cake using the activity-based costing system.
What rules and regulations are you planning to adhere to : Which business departments, functionalities of NAB, are you planning to audit? And how can you detect regularities, abnormalities in them?
Difference between the two market structures : Give reasons for your answer and explain with the aid of a diagram the difference between the two market structures.
What was the unit cost valuation for product three : Find What was the unit cost valuation for product 3 using the sales revenue basis for allocating joint costs assuming that the revenue receivable
Design a knowledge management strategy in tourism : Design a knowledge management strategy in tourism and hotel industry and discuss it from the epistemological and ontological perspectives.
Find what is the net cash inflow from financing activities : Find What is the net cash inflow (outflow) from financing activities? Profit from ordinary activities before income tax expense, Income tax expense

Reviews

Write a Review

Auditing Questions & Answers

  Internal audit

Describe and evaluate this type of internal audit. What types of organisation would it be most useful for?

  Accounting professional and ethical standards

Code of Ethics for Professional Accountants

  Prepare swag''s consolidated balance sheet

Prepare Swag's consolidated balance sheet

  Auditing and assurance

Notable operational challenges for 4X Heavy Ltd faced in 2012/2013 were but not limited to

  State of the company’s industry and associated risk factors

Audit partner is concerned about his lack of knowledge of the industry the company is operating in, state of the company's industry and associated risk factors

  Prepare a memo to the audit partner

Prepare a memo to the audit partner on the ‘state of the company's industry' and associated risk factors.

  Adjusting or non- adjusting events

State whether Event is adjusting or non-adjusting event.

  Audit financial data

As a consequence an accounts payable clerk and financial accountant were made redundant from the business during the year.

  Identify principal audit risk

To identify principal audit risk and corresponding audit procedures

  Auditing and assurance

Show the audit inherent risk and rate the risk as low, medium or high.

  National health reform

Explain the role of the following three 'bodies' in National Health Reform

  Prepare a memo on the state of the company''s industry

Prepare a memo on the 'state of the company's industry' and associated risk factors.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd