This case study will result in a report. If you use any sources it must be included and in APA format. The length is determined by the approach you use, however, please be thorough. ORIGINAL WORK ONLY. IF YOU CANNOT PROVIDE ORIGINAL WORK (AND CITING ANY REFERENCES CORRECTLY)
Case Study: Public Company Banking Events of a Breach
1) Accessed bank transfer of Sabanes-Oxley - compliant company
2) Accessed systems after IT-vendor assured security
3) Accessed sensitive Human Resource data over supposedly secure IntraNETs
4) Downloaded Credit Union’s customer file
5) Filled eCommerce shopping baskets using stolen credentials
6) Found malware on 100% of firm’s protected computers.
Assume you have been hired to assess the problems and recommend policies and procedures to put into place so this could not happen again.
a. What is the first task you would do as part of an Incident Response?
b. Create Risk Management Framework that identify and assess risks, define mitigation strategies – this could be a spreadsheet
c. Create a new Security Plan to address the vulnerabilities.