- 450 words of content
- APA Format with references
- Analyze the given case study on security breach.
- Recommend controls to avoid an enterprise security breach.
Read the below attached text sheet named “Local Breach of Sensitive Online Data” and address the following:
describe what measures should have been taken by the educational service and test preparation provider to avoid the security breach mentioned in the text sheet.
Use the following checklist to support your work on the assignment:
- I have engaged in a discussion of the assigned topics with at least two of my peers.
- I have raised questions and solicited peer and instructor input on the topics discussed.
- I have articulated my position clearly and logically.
- I have supported my argument with data and factual information.
- I have provided relevant citations and references to support my position on the issue discussed.
- I have compared and contrasted my position with the perspectives offered by my peers and highlighted the critical similarities and differences.
- I have solicited peer and instructor feedback on my arguments and propositions.
- I have offered a substantive and critical evaluation of my peer’s perspective on the issues that is opposite of mine, and supported my critical review with data and information.
- I have followed the submission requirements.
|Local Breach of Sensitive Online Data|
The EducationS Review, a fictional company, is hit with a data breach that is making headlines. The Olianas-based educational service and test preparation provider inadvertently exposed files of at least 100,000 students in various parts of the country through its Web site. News of the breach was made public on Tuesday morning by a report in the local newspaper.
The files were exposed after the company switched the Internet service providers earlier this year. The sensitive information, which included personal data such as names, birth dates, ethnicities, and learning disabilities, as well as test performance, were easily accessed through a simple Web search and were available for at least seven weeks, according to the report. None of the information was password protected and was intended only to be viewed by EducationS authors.
EducationS officials told the local newspaper that access to the information was immediately shut down as soon as the company was informed about the problem. “This brings up two big questions,” said Alex Graham, a senior technology consultant with information technology (IT) security and control firm Lizos. “Are companies doing enough to protect their data? Also, do companies really need to keep all this kind of data?” A competing test preparation firm discovered the flaw. The competitor contacted the local newspaper with the story, according to Alex, who said the play-out points to the high stakes were now involved with a data breach. If companies have not heard this before, it is a huge reminder that security is important not just for the company’s customers, but for the company’s reputation as well.
While the publishing of birth dates may not seem like a massive leak, Alex said the information is a good stepping-stone for someone who is attempting to steal an identity. This is the second time in a month a public breach has involved birth dates. A glitch in a test version of social networking site, Facebook, inadvertently exposed the birthdays of its 80 million members last month. Alex discovered the bug while checking Facebook’s new design. He noticed that the birth dates of some of his privacy-obsessed acquaintances were popping up when they should have been hidden. The fact that the people affected by this latest breach were children adds to the general background radiation about security, or lack thereof, of peoples’ data on the Web.
© 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.
www.jblearning.com Page 1