Search the internet for one instance of a security breach that occured for each of the four best practices of access control (separation of duties,job rotation, mandatory vacations, and clean desk). Write a summary of that breach then rank these 4 best practices from most effective to least effective.
Search the internet for one instance of a security breach that occured for each of the four best practices of access control (separation of duties,job rotation, mandatory vacations, and clean desk). Write a summary of that breach then rank these 4 best practices from most effective to least effective.
Separation of Duties
After finding that they had falsely defrauded the company $8.2 million over a period of three years, the Alberta Motor Association lodged a big complaint against the former Vice President for Information Technology (IT). This was one of the top five most expensive cases of theft in the province in a 20 year period. According to the AMA, the employee has formed a fraud scheme by which fake invoices of between $30,000 and $4,50000 have been created. It also included electronic transfer of funds.
Job Rotation:
The FBI documents explain a scheme in which, since 2006 and 2008, Rebollo has virtually every week downloaded 20,000 client accounts, including name, address and social security numbers. Each batch of data was sold on a compact disk, a thumb drive or a $500 email attachment. "Rebollo estimated that he made $50,000 to $70,000 over the course of two years by selling the Countrywide Home Loan data,".
Rebollo initially cooperated with the FBI, meeting with agents July 15, 2008 and authorizing them to take his laptop computer and a thumb drive from his Pasadena apartment as evidence. Two days later, however, Rebollo retained an attorney who told him to withdraw his cooperation, requir-ing the FBI to get a warrant. But despite knowing the FBI was on to him, Rebollo tried to sell more info. An FBI affidavit says Rebollo was on the phone July 23rd with an informant posing as a customer and was arranging yet another sale.Rebollo is charged with violating permitted access to the machine of a financial institution, a federal offense that carries a potential five-year prison sentence. His prosecutor, Michael sever.
Trending now
This is a popular solution!
Step by step
Solved in 2 steps
