Final draft chapter 2 (dissertation) 20 pages

Introduction

The latest IT sector is faced with several risks. The revolution has a chance with the manufactures of digital supply networks and smart technologies. The revolution is growing at a fast rate which leads to the increase of cyber-attacks. The interconnection of the digital systems leads to the significant rise of cyber-attacks. Some of the firms faced with cyber-attacks are not ready to face the issue of cyber-crime. IT firms need to be organized, vigilant, and resilient to deal with any risk that may arise (Evans, 2019).   They need to put strict measures that will help them tackle any issue on its initial before it destroys different organizations.

Background of the problem

Cybersecurity is also referred to as information technology. Cybersecurity is the process which involves protecting networks, systems, and programs from digital attacks. Cybersecurity has been designed in a way that people try to gain access to applications without easily. Cybersecurity attacks intend to manipulate data, interrupt the functionality of the cyber, destroy digitally stored data as well as demand for money from data owners.

The attacks tend to gain access within the information technology so as they can easily manipulate the data. Most industries today have been affected by cybersecurity attacks. Their information has been managed, leading to loss of money. According to Singer and Friedman (2014), coming up with useful cybersecurity measure is a challenge since it requires a lot of time and attention to implement them. Cybersecurity criminals have also evolved and devised modern means and innovations on how they attack industries.

Cybersecurity can be termed as coming up with different practices into the existing systems to ensure credibility, availability, and integrity of information. The challenges faced with IT organizations can be solved with better practices and measures put in place. Organizations use advanced technology to detect any form of attack. The systems are well protected in a way that they cannot be manipulated. The firms will be on the safe side as they will not lose any data to hackers. They will also transform their technology to a new level. 

The threats have been said to come in different forms such as ransom ware, malware attacks, and phishing and exploit kits. They have become more complicated due to the growing technologies in organizations. The IT firms have revolutionized over the years up to date. They use the latest technology, such as the use of robots, to make the work easier. Once these threats attack the machines, the machine fails hence will not be valid.

The organizations, therefore, need to come up with the latest techniques that will help them protect their technology. The method will be applied across the programs, computers, and networks that help in the manufacturing of different goods and services. The firms’ data should also be protected well from any form of cyber-attacks. The firms over the years have reported numerous cases of cyber-attacks. The sectors, on the other hand, have not managed to keep up with the pace of cybersecurity.

The biggest challenge faced by different firms is how they can protect their programs, computers, and networks from cyber-attacks. The cybersecurity put in place is not sufficient for most organizations since the attackers have devised better technologies. Different cyber-attacks are common to most industries, such as the cyber espionage which involves individuals accessing industries' data without permission.

Significance of the study

The study helps us determine how cybersecurity affects information technology organizations. It will help us come up with different strategies that will help address the issue of cybersecurity that has been changing the IT firms over the years. The study will also help come up with different research questions that will help narrow the gap between the firms and the hackers.

Identification of gaps

Each day cases of cybersecurity are reported. Cybersecurity is on the rise as the numbers are increasing each day. In 2018 alone, 80% of the people reported being affected by cybersecurity. The gaps come about due to the lack of consistency from the board of directors and CEOs. The moment whereby they do not follow up on the issues of security within the organization, then the organization is likely to get affected. Another gap comes about due to some employees who sell the company's vital pieces of information to hackers. Employees that get low pay will want to earn extra income by selling the company’s vulnerable information. The vulnerabilities can be identified only by performing a cyber-security gap analysis. The process of checking the organization’s network security, procedures and policies can help identify different gaps in cybersecurity.

Problem statement

Cybersecurity is a problem that is facing most companies today. The different organization have lost vulnerable information to hackers. It is, therefore, an issue that needs to be addressed within the IT sector. The IT sector can consequently come up with measures that will help protect its data from hackers.

Literature review

Cyber-attack can be termed as cyber risk management, which involves access to information illegally. Cybersecurity, therefore, intends to come up with better means that can help industries protect their essential data. Cybersecurity wants to come up with a mechanism that will help in safeguarding programs, systems, network, and data from any form of damage. In this world full of technologies, there is a need to come up with an extended-lasting mechanism that will help prevent cyber-attacks from taking place. The cybersecurity measures should be put in place and implemented to help the public and private sector.

In research conducted by Bob Thomas, he developed a project which states different computer programs can move to any network. The computers leave behind a stream across the systems they pass. He later came up with a plan referred to as the "Creeper" that travels along with different terminals. He designed with a message which states that “I AM THE CREEPER; CATCH ME IF YOU CAN." The program travelled through various systems and computers. It came across Ray Tomlinson, a guy that was behind the idea of the email.

He liked the idea and took over as he gave it a replicating mechanism that identified as the first computer worm. He used the same purpose and created another program that was the first ever computer antivirus. The antivirus was to go after creeper and delete it from the computer. In the 1970s and 1980s, processors faced several security threats. The main danger that was seen in machines came in from of malicious insiders and made away with essential documents.

In those years, there were also malware and network breach that was used for malicious purposes. The threats were hazardous to the system. The risks made Russia come up with a cyber-power which acted as a weapon to erase all malicious programs. A hacker by the name Marcus Hess, who was a Germany during 1986 used his tactics to hack the internet gateway that was situated in Berkeley. He used his hacking techniques to bypass the program and connected it to the piggyback onto the Arpanet. It is said that he used this hacking skills to hack 400 military computers. He also extended his hacking to the pentagon intending to sell the country's secrets to KGB. The attempts to hack the pentagon were noticed by Clifford Stoll, who was an astronaut. He employed the honeypot technique, which was used to catch the intruder in their systems.

Initially, cybersecurity was not familiar to most people. Most people viewed cybersecurity as a form of prank. No one took it seriously until most industries got affected. The trend grew more significant as the technology developed. The growth of the network kept increasing hence attracting more hackers. It made it easier for people to pass the virus across different systems, networks, and programs (Nguyen, 2018).  The most commonly known virus that almost swept away everything on the internet is referred to as the Morris worm. It was the most dangerous hence contributed towards the initiation phase of coming up with an antivirus.

Morris warm was recorded in 1988 as the most hazardous warm that attacked warm that has ever been recorded. It was written by Robert Morris that wanted to show how the virus can cause significant damage to the internet. He tried to come up with a way that would help move from different programs and networks. He was able to come up with a means that foresaw the program infiltrating into the UNIX terminal through the use of a bug. The plan was also able to copy its data and protect itself from various future attacks.

Research methodology (Qualitative)

The modern period has seen the growth of information technology firms. Each day different new programs are invented. Various programs are included in the systems each day. The growth and development among organizations are central and leads to the growth of enterprises. The significance and the benefits that industries receive each day have been seen due to numerous research and support mechanisms. The risks and benefits are well known to most people hence posing threats from the outside world. The threats may come about due to inadequate mechanisms put in place by various industries, and also there is no proper follow-up. The attacks have contributed majorly towards the organizations coming up with robust tools that help them protect their data. IT firms today have been able to protect their data from any form of cyber-attacks.

On the other hand, cybersecurity aims at coming up with a stronger mechanism that will fight programs that have been developed to interfere with the data. Cybersecurity has also been improved in a way that the program can resist any plans that can be created and released into different systems.  Cybersecurity has got several themes that ensure that organizational' data is stable and well secure.

The 5 research questions to include in the area’s listed below

1. Networking

2. Human-computer interaction

3. Programing

4. Web systems

5. Database

Networking

Networking is one of the component tools in IT. An information technology organization needs to have basic knowledge in networking. It will help understand different protocols, concepts and technicalities are likely to be affected. An organization will know how to handle such information in the early stages.

Human-computer interaction

Organizations can be victims of social computer interaction. It is one of the security breaches. It happens as a result of poor user education or poor user interface design. The organization can, therefore, device different ways that can help bring about efficiency and a secure connection within the organization. The organization can educate the members and train them on how to interact and use the computers. It will help reduce any cases of cybersecurity

Programing

The concept of developing the right programs to be used in computer systems is critical in any organization. Computer programming is also one of the crucial parts that are likely to be affected in an organization. Cases of programming security vulnerabilities is a major cause of security breaches. The best programmers can also make errors in an organization. Organizations can, therefore, come up with ways that can help secure any vulnerabilities that are likely to affect an organization.

Databases

Different hackers mostly target the database of an IT organization. The database of an organization contains sensitive information and data. The computing programs have better database structures and information technology, such as the database administration and database management systems. An organization can come up with better arrangements that will help protect the company's essential information. The first thing is for the organization to understand how a database works, then the organization will know how to protect its data from cyber-attacks.

Web systems

The organization’s web systems help provide the organization with different computing systems. Every attacker first looks at the website of the organization. The site as a communication boundary that allows the attacker to know what is contained in the organization. The website includes the internal network of an organization.

A good example is the XSS which includes a code. Attackers use this code to inject the website's vital information. They end up getting away with crucial information for the organization. The attackers can also come up with harmful security patches that are likely to affect essential details. The organization can, therefore, come up with implementations and policies that will help guide the manufacture fixes in the websites. They also need to come up with active firewalls that will detect any form of unwanted patches into the systems.

Conclusion

Cyber-attacks are on the rise. Different IT organizations have been affected by cyber-attacks. It is, therefore, essential for an organization to come up with ways that will help protect their data. The organization can focus on critical aspects such as networking, database and programming to ensure that they are not manipulated in any way (Vacca, 2013). 

References

Evans, L. (2019). Cybersecurity: What You Need to Know about Computer and Cyber Security, Social Engineering, the Internet of Things + an Essential Gui. Independently Published.

Nguyen, N. H. (2018). Essential Cyber Security Handbook In English. Nam H Nguyen.

Singer, P. W., & Friedman, A. (2014). Cybersecurity: What Everyone Needs to Know. New York, NY: Oxford University Press.

Vacca, J. R. (2013). Cyber Security and IT Infrastructure Protection. Rockland, MA: Syngress.