Security Incident

Security Incident – Student

Summary:

ABC Company is a manufacturing company that produces new technology that sells online directly to customers and retailers. The system they use is a core transactional Enterprise Resource Planning system called NEDS. NEDS is similar to many core systems that provide integrated applications on a common platform for financials, managing materials, sales distribution, and production planning (similar to Oracle or SAP). NEDS is located in the Netherlands, while ABC Company is located in Florence, Kentucky. On June 15, 2016, James Hurd (ABC’s Global Security Director) was notified that NEDS was burglarized during business hours involving individuals stealing equipment including blackberries, iPhones, laptops and hard drives. Local police were notified and the incident was reported on that date. A police report only included identification of specific hardware that was stolen and several bicycles.

The burglary notification that was mailed was sent to a branch office of ABC Company in Mexico. James Hurd was notified by the Mexico office via email which included an attached electronic version of the burglary notification and police report on June 20, 2016. James Hurd recognized that the incident actually occurred 5 days earlier.

The letter contained the following information about the incident:

· The incident occurred in the application area that provides custom application development and reporting for the ABC Company.

· The area that was impacted involved “potential data” used for sales analysis. Data from the ABC Company had been placed on laptops while some diagnostics were being carried out.

· Compromised data could have included customer or retailer information from 2002-2014 consisting of names, address, bank account data or credit card numbers, SKU product numbers, descriptions, quantities, Purchase Order numbers, and purchase price.

You are James Hurd and need to respond to this incident by taking action immediately.

You will need to complete the following:

I. Develop an Incident Response Policy for ABC Company that will be used as your reference for your evaluation of this potential data incident (this is an attachment that should be included in your paper and referenced in your presentation).

II. Upon developing ABC Company’s Incident Response Policy, evaluate the incident described above:

· Summarize the data incident and potential level of risk, include why?

· Upon identifying the types of data that could potentially be impacted and what laws/regulations could be in violation of non-compliance if this data was breached

· Develop your action plan to evaluate this data incident (include your rationale for why the steps were necessary)

· Describe how the Incident Response Policy supported your actions

· Identify any issues that made the evaluation more difficult

· Identify areas of future risk mitigation actions should a similar incident occur (look at the gaps or issues with this scenario)

· Close the incident (NOTE: The outcome of the incident did not surface any major risks or data breach to the company but it took the evaluation to get to this conclusion)

This presentation must be support by the research paper.

Please note the following criteria:

Research paper:

· Research Paper must be in APA Style

· Research Paper must have at least 5 works cited of which 2 must be peer reviewed works/articles (note your book can be included as a reference)

· Must be at least 5 double-spaced pages

· The Policy will be an Attachment and not count toward the 5 Page requirement

· Graphs, illustrations and spreadsheets are allowed, but will not count toward the 5 Page requirement

Grading criteria will include the following as this represents 40% of your grade:

Presentation will be 100 points and based on the following:

Completeness of the Topic (Policy, Processes, Action, Conclusion)

Presentation Delivery

Alignment of policy

Paper will be 100 points:

· Meets Standard Criteria

· Completeness/content

· Incident Risk Policy as Attachment

· Logic of Processes and Actions (Thoroughness)

· Alignment of the Incident Risk Policy components in completing and supporting the evaluation