responses

SitySlyker
Responses.docx

DISCUSSION 5

POST 1: BA

When it comes to attempting to secure networks and equipment there will need to be certain things put in places. Generally speaking it will be important that everyone understand that they should not be connecting to unsecure and public Wi-Fi networks. This greatly increases the chance of cyber attacks and information hacking. This can be a standard practice that can be done in just about any location because especially when it comes to different countries, their laws and network security protocols may vary greatly. Another thing that can be implemented is the use of work laptop. These laptops can be equipped with certain software and encryptions to help keep information secure. This would also allow people to be able to do work on these secure laptops as opposed to personal laptops where it may be less secure. These laptops can also allow for the connection to secure networks in order to get more sensitive work done.

Another thing that can be implemented is that whenever an employee travels abroad there should be some training, whether in person or online and serves as a refresher as to cyber security, what to look out for and ultimately everyone’s role in cyber security. The military is an example of that. Every year we are required to do a cyber awareness challenge and it covers everything from phishing, to creating difficult to crack passwords, to network intrusions. This can be documented at local supervisor levels and disseminated at certain intervals. This will allow employees the opportunity to refresh them selves on the ever changing field and update them on any new information they may have missed through out the year or whenever they weren’t conducting the training.

A way in when we can try and quantify these vulnerabilities is through periodic inspections and assessments of the employees and how they handle certain scenarios of information. Through these assessments we can see where the vulnerabilities may lay and where we need to focus our training and efforts. A obstacle that we may encounter is the employees willingness to take the training serious. After years of taking what may seem like the same information the employee may just want to get it done and “go through the motions.” This will create more deficiency because the employees can get complacent which can ultimately lead to another vulnerability.

I believe that the podcast explains valid points, it is important that executives understand the fallout of a data breach or information breach. Executives need to understand that when a data breach happens, the company or organization has the potential to lose a lot of money. Customers will lose confidence in the company or organization; production may be halted depending on the type or severity of attack. These employees and customers will also be affected if their information, bank account information and other sensitive information is compromised. This can lead to class action suits against the company which is also leads to a ruining of the company’s reputation. If the company is found that they were not in compliance with certain cyber security policies this can also.

POST 2: BB

Cyber attacks and cyber crime have been one of the hurdles facing corporations today and have led to organizations losing vital data and even capital to hackers(Valuch, Gábriš & Hamuľák, 2017). One could argue that businesses and firms know this, yet they continue indicating that they have been affected. I think that the first thing I would do is to create awareness among the employees and educate them about how they can overcome these attacks. I would develop a training program to focus on educating and teaching the employees how well they can protect themselves and vital data and information from prying people.

Hackers target technology to gain information. To protect this information, I would ensure that I embrace technology and that their laptops and tablets are password-protected. Also, I would ensure that information is protected and that the technology only has the information the employees need. These hackers also target sites that are not covered in gaining personal information. Therefore, I would ensure that the internet is limited to only a few safe places. Furthermore, audit programs would need to be developed to ensure that all information is safe and secure.

In my opinion, the most challenging aspect would be the actual costs of investing in these technologies. These technologies cost a lot of money, and the primary question is whether the company is willing to spend that much. Training also involves investing resources and capital, which is one of the main challenges. Time is also a factor, as few people would be willing to devote their time to learning new concepts. In this case, I would say they currently don't need it, and therefore, they can come up with preventative measures to ensure that they are not attacked in the future.