LEARN MORE...

Home
Documents
December 2021
6
Screenshot 20211204 132508 drive

Screenshot 20211204 132508 drive

Content type

User Generated

School

University of Nairobi

Uploaded By

Cybcrfn

Pages

1

Showing Page:

1/1

Sign up to view the full document!

Unformatted Attachment Preview

coordination, and IT-Security coordination” at the time of the breach.11 A number of teams dealt with cybersecurity issues at Equifax. Among them were the Global Threat and Vulnerability Management (GTVM) team, the Vulnerability Assessment team, and the Countermeasures team. The GTVM team tracked threats to the security of Equifax's IT systems and notified relevant personnel across the company about such threats through emails and monthly meetings. The Vulnerability Assessment team ran regular scans of Equifax's IT systems for vulnerabilities, and the Countermeasures team deployed code designed to obstruct the exploitation of ongoing vulnerabilities while IT “system owners” installed patches to resolve the underlying software problems. 12 Mauldin and Webb both resigned in September 2017, following the fallout from the breach. 3 4/28 118-031 Data Breach at Equifax Prior Security Issues Prior to the breach in 2017, Equifax had suffered several security lapses. Between April 2013 and January 2014, hackers accessed credit report data from Equifax. In 2015, a "technical error" ostensibly caused by software modifications publicly exposed consumer information. In 2016, another incident exposed the salary and tax data of 431,000 employees at Equifax client Kroger. Finally, in February 2017, Equifax discovered that hackers were exploiting Equifax Workforce Solutions, downloading employee tax documents on Equifax clients like Northrop Grumman and Whole Foods. Equifax retained cybersecurity firm Mandiant to investigate the Workforce Solutions incident in March. While conducting its investigation, Mandiant“ warned Equifax that its unpatched systems and misconfigured security policies could indicate major problems.” 13 Equifax had received other warnings about potential cybersecurity vulnerabilities. In December 2014 nindanondont vocanuobou diocaround that ...faw badleft conc.nouifuation avecdona ...
Purchase document to see full attachment

User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Studypool

4.7

Indeed

4.5

Sitejabber

4.4

24/7 Study Help

Stuck on a study question? Our verified tutors can answer all questions, from basic math to advanced rocket science!

Post question

FINC 330 Southern Illinois University Accounting Firm Banker Interview Research

In Week 2 your first Short Assignment (SA1) will be an interview assignment which is due by Day 7 Sunday of this wee ...

FINC 330 Southern Illinois University Accounting Firm Banker Interview Research

In Week 2 your first Short Assignment (SA1) will be an interview assignment which is due by Day 7 Sunday of this week. Choose one of the two interview options and complete the assignment by taking into account of the following questions. Interview feedback can be gathered from face-to-face meeting, phone call, email or online chat. a) Review rubric for grading criteria before you start to work on this assignment. b) Briefly introduce your interviewee at the beginning to start your interview report. c) The formats of your interview conducted by face to face meeting, phone, online chat system or back-and-forth email/letter are all acceptable. d) Incorporating the following questions of your chosen option in your interview as basic guideline to engage in your interview dialogue. Be reminded also - this is not a short-answer assignment. Please document your takeaway in commentary style. e) The intended interview outcome of SA1 is for our students to learn from a hands-on individual who possesses knowledge and experiences in their fields. If you are unable to successfully set up an interview, your report can then be 100% research-based when you also briefly document your experience of scheduling difficulty in your work. f) APA standard is required. Option 1 – Interview an Accountant or Accounting Firm Contact an accountant and conduct an interview on forms of businesses, taxes, licenses needed, and so forth. 1) Which legal structure do you recommend? Why? 2) Can this legal structure be changed once it has been established? 3) Should the business be formed in or out of state? Why? 4) What are the tax implications of the legal structure recommended? 5) Will I need an employer identification number (EIN)? 6) Should I open a business bank account, or will my personal account be sufficient? Why? 7) Do you recommend using accounting software? Why? 8) What are the strengths and weaknesses of this business form? OR, Option 2 – Interview a Banker Contact a bank manager and conduct an interview on loan procedures and qualifications. 1) What is the current environment like for bank loans for small businesses? 2) What are the current rates the bank charges for business loans? 3) What criteria are considered in the determination of the rate of the loan and the amount that can be borrowed? 4) Are you lending money to new/small businesses? 5) What is the difference between a line of credit and a loan? 6) Do you sell your loans? 7) What financial information is required by the lender? 8) How do I obtain a loan application? 9) What types of questions might be asked in addition to those in the loan application? 10) What types of security might be requested to secure the loan? 11) What types of businesses normally get loans? 12) What are the characteristics of successful borrowers?

5 pages

Hotel Swot Analysis.edited

SWOT analysis refers to studies undertaken in organizations to identify their internal Strengths, Weaknesses, external Opp ...

Hotel Swot Analysis.edited

SWOT analysis refers to studies undertaken in organizations to identify their internal Strengths, Weaknesses, external Opportunities and Threats, in ...

KCCML Community Hand Hygiene Training Teaching & Evaluation Plan Presentation

Goal: Create a board or power point presentation of important learning and resources learned throughout the course. Explai ...

KCCML Community Hand Hygiene Training Teaching & Evaluation Plan Presentation

Goal: Create a board or power point presentation of important learning and resources learned throughout the course. Explain approaches to community intervention and evaluation. Implement a teaching and evaluation plan. Presentation Instructions:1. Choose one topic from the prevention strategies and intervention recommendations identified in your Community Family Assessment.2. Develop a teaching plan, including objective, content outline, teaching method, and time in a table format.3. Develop an evaluation plan for your teaching intervention and create a tool for feedback from your learners.4. Implement the teaching plan and evaluation during Visit 5 of your clinical experience.5. Summarize the outcomes of your teaching plan and evaluation.6. Submit your teaching plan, evaluation tool, and summaryPresentation Submission Instructions:Produce a video and upload it with your presentationhttps://community.canvaslms.com/docs/DOC-14585-50736858114 (Links to an external site.)Canvas Studio Screen Capture (Links to an external site.). Peer Review Submission Instructions:Click here to learn how to complete a peer review assignment.

Aberystwyth University Behavioral Theory Case Study of Caiden Paper

What if, from a young age, Caiden has always enjoyed very physically active play such as running and crashing into his sur ...

Aberystwyth University Behavioral Theory Case Study of Caiden Paper

What if, from a young age, Caiden has always enjoyed very physically active play such as running and crashing into his surroundings? What if he loves bear hugs, and has always been soothed by vigorous back rubs? Be sure to address Caiden’s behaviors at school as well as those at home. For example, you could include a reinforcement scheme that is contingent on good or bad reports each day from caiden’s teacher. You may also find it helpful to refer to the Observation Recording Form the school sent to Brian earlier.

1 page

Lander's Spotless Calculus Notes pt. 2

Lander's Spotless Calculus Notes pt. 2

IT ETHICS, Ethcal theory

Specific guidance for the 201760 exam As a teaching panel we have decided to narrow the range of things that students need ...

IT ETHICS, Ethcal theory

Specific guidance for the 201760 exam As a teaching panel we have decided to narrow the range of things that students need to focus on. From our point of view this approach to exam preparation ensures that students engage deeply with the subject matter, by having the motivation to explore particular cases and in great depth. From your point of view it should give you greater peace of mind going into the exam, because if you have prepared good answers to each of these restricted questions, then you can be sure to not only pass, but in all likelihood do well. However, we do put a caveat on this approach. That is, we will not give any students assistance with the particular cases and question examples listed here. For example, should a student come to one of us for help in applying the DET to a case study, we will gladly do so, except that we will not do so for any of the three cases listed here. As seen in the sample exam, Part 1 asks the following of you ... PART 1: DOING ETHICS TECHNIQUE AND ETHICAL THEORY QUESTIONS Part 1 - Question 1 – Doing Ethics Technique This session we have restricted the cases to the following three (3). One of these will appear in the exam. We encourage you to prepare all three. i. Jean, a statistical database programmer, is trying to write a large statistical program needed by her company. Programmers in this company are encouraged to write about their work and to publish their algorithms in professional journals. After months of tedious programming, Jean has found herself stuck on several parts of the program. Her manager, not recognising the complexity of the problem, wants the job completed within the next few days. Not knowing how to solve the problems, Jean remembers that a coworker had given her source listings from his current work and from an early version of a commercial software package developed at another company. On studying these programs, she sees two areas of code which could be directly incorporated into her own program. She uses segments of code from both her co-worker and the commercial software, but does not tell anyone or mention it in the documentation. She completes the project and turns it in a day ahead of time. Australian Computer Society (2014) ii. Company X has just signed a business agreement with Company Y, which entitles both of them to access each other clients’ records. Mr. Faisal, a software programmer at Company Z, was assigned the task of developing a software program that handles the access and retrieval of records from each Company’s database system into the other. A first run of the software on real data indicated that the work was well within the state of the art, and no difficulties were found or anticipated. Several weeks later and during a normal test on the software developed, Faisal discovered a serious ‘security hole’ in the database system of Company Y by which hackers can easily obtain confidential information about clients. He was convinced that while the software he developed could correctly accomplish the task, the code in Company Y’s database system could not be trusted as the security hole posed a threat even on Company X’s database system. Faisal told his manager about the problem and explained its significance. The manager's response was, "That's not our problem; let's just be sure that our software functions properly." Faisal is not sure what to do. Refusing to work on the project means disobeying his manager’s orders. Continuing to work on the project, means disobeying one of God’s commands, this requires him to be truthful and sincere in his dealings. Australian Computer Society (2014) iii. You are a computer programmer working for a small business that provides specialized financial services to local, mostly small businesses. You have been working for company X for about six months. Recently X has been occupied with reengineering the inventory system of a local hardware chain, ABC Hardware. The objective is to enable ABC to keep better track of their inventory, to be more responsive to changes in customer demand, and to adopt a “just in time” strategy to reduce inventory. Your supervisor calls you into his office. “Do you know of any existing software products to help ABC keep better track of its inventory?” You mention a particular product that you have worked with in another job and point out that ABC could use it without any modification. The only drawback, you point out, is that this software is somewhat expensive. Your supervisor leans back in his chair, puffs on his cigar and says, “That’s no problem. We have that software. Why don’t you just install it on ABC’s computers?” You diplomatically indicate that this would violate the licensing agreement X has with the developers of the software. “Do it anyway,” your supervisor says. “Nobody’s going to find out, and ABC is a very important client. We need to do all we can to keep them happy.” William J. Frey (2010) Reference: Australian Computer Society (2014), ACS Code of Ethics Case Studies & Related Clauses to the Code of Conduct William J. Frey (2010), The Case of the Troubled Computer Programmer, National Academy of Engineering, Online Ethics Center. Part 1 - Question 1 – Doing Ethics Technique (20 marks) Analyse the above case study using the Doing Ethics Technique.Part 1 - Question 2 - Ethical Theory question (10 marks) We ask the students to analyse the above case study using either two or four classical ethical theories. So, it is always from the four classical ethical theories such as utilitarianism, deontology, virtue and contract. PART 2 – SHORT ANSWER QUESTIONS (40 MARKS) These will be four questions covering anything in the syllabus. In every topic that had review questions from the text we encouraged students to do them; exam questions in this section are frequently based on them. PART 3: ESSAY (30 marks) This session we have restricted the essay topics to the following three (3). One of these will appear in the exam. We encourage you to prepare all three. i. A software development company has just produced a new software package that incorporates the new tax laws and figures taxes for both individuals and small businesses. The president of the company knows that the program has a number of bugs. He also believes the first firm to put this kind of software on the market is likely to capture the largest market share. The company widely advertises the program. When the company actually ships a CD, it includes a disclaimer of responsibility for errors resulting from the use of the program. The company expects it will receive a number of complaints, queries, and suggestions for modification. The company plans to use these to make changes and eventually issue updated, improved, and debugged versions. The president argues that this is general industry policy and that anyone who buys version 1.0 of a program knows this and will take proper precautions. Because of bugs, a number of users filed incorrect tax returns and were penalised by the ATO. ii. Over the years a number of systems have been developed which record coded information across a range of factors about disabilities in ethnic communities. A new coding convention has been developed to rationalise the inconsistent coding conventions of these legacy systems. The new coding convention uses codes which had different meanings in the legacy systems. This means that time series analysis gives inconsistent results, particularly showing both under and over reporting of numbers of particular disability categories. This is significant when making policies for people based on the size of the communities. To fix this would take a lot of work and expense, and management has decreed that historical systems will not be fixed, but new systems will all adopt the new coding convention. iii. Joe is working on a project for his computer science course. The instructor has allotted a fixed amount of computer time for this project. Joe has run out of time, but has not yet finished the project. The instructor cannot be reached. Last year Joe worked as a student programmer for the campus computer centre and is quite familiar with procedures to increase time allocations to accounts. Using what he learned last year, he is able to access the master account. Then he gives himself additional time and finishes his project. Reference

Similar Documents

IMAMU Value of Money Decline when Inflation Increased Discussion

- Briefly explain in words how does the value of money decline when inflation increased? with provide example&...

Operations Management

Operations & Supply Chain Management questionsall the questions and instructions are attached in a word file I have also a...

Literature essay, writing homework help

Write a four page essay outlining the differences and similarities between the earlier version of “The story of the ...

Research Study, social science homework help

ARTICLE UPLOADED BELOWPLAGRISM FREE AND CORRECT APA FORMAT AND CITATIONS For this assignment, you review a published res...

Walden University Reflections on Ethical Leadership Response

Directions:Read a selection of your colleagues’ posts.Respond to, two colleagues separately in at least one of the follo...

BIO SCI 203 UWM Ovarian Events & Plasma Levels of Sex Steroid Hormones Questions

Menstrual cycle worksheetQuestions1.How many days are shown for this typical ovarian cycle?2.Look closely at the follicles...

Pdf gallery 20220113 125527

Papers on the prehistory of northeastern mexico and adjacent texa

Papers on the Prehistory of Northeastern Mexico and AdjacentFollow this and additional works at: https://scholarworks.sfas...

This law expresses that a body very still will stay very still and a body moving will stay moving at a similar speed and a...

Study help

Our tutors provide high quality explanations & answers.

Post question

FINC 330 Southern Illinois University Accounting Firm Banker Interview Research

In Week 2 your first Short Assignment (SA1) will be an interview assignment which is due by Day 7 Sunday of this wee ...

FINC 330 Southern Illinois University Accounting Firm Banker Interview Research

In Week 2 your first Short Assignment (SA1) will be an interview assignment which is due by Day 7 Sunday of this week. Choose one of the two interview options and complete the assignment by taking into account of the following questions. Interview feedback can be gathered from face-to-face meeting, phone call, email or online chat. a) Review rubric for grading criteria before you start to work on this assignment. b) Briefly introduce your interviewee at the beginning to start your interview report. c) The formats of your interview conducted by face to face meeting, phone, online chat system or back-and-forth email/letter are all acceptable. d) Incorporating the following questions of your chosen option in your interview as basic guideline to engage in your interview dialogue. Be reminded also - this is not a short-answer assignment. Please document your takeaway in commentary style. e) The intended interview outcome of SA1 is for our students to learn from a hands-on individual who possesses knowledge and experiences in their fields. If you are unable to successfully set up an interview, your report can then be 100% research-based when you also briefly document your experience of scheduling difficulty in your work. f) APA standard is required. Option 1 – Interview an Accountant or Accounting Firm Contact an accountant and conduct an interview on forms of businesses, taxes, licenses needed, and so forth. 1) Which legal structure do you recommend? Why? 2) Can this legal structure be changed once it has been established? 3) Should the business be formed in or out of state? Why? 4) What are the tax implications of the legal structure recommended? 5) Will I need an employer identification number (EIN)? 6) Should I open a business bank account, or will my personal account be sufficient? Why? 7) Do you recommend using accounting software? Why? 8) What are the strengths and weaknesses of this business form? OR, Option 2 – Interview a Banker Contact a bank manager and conduct an interview on loan procedures and qualifications. 1) What is the current environment like for bank loans for small businesses? 2) What are the current rates the bank charges for business loans? 3) What criteria are considered in the determination of the rate of the loan and the amount that can be borrowed? 4) Are you lending money to new/small businesses? 5) What is the difference between a line of credit and a loan? 6) Do you sell your loans? 7) What financial information is required by the lender? 8) How do I obtain a loan application? 9) What types of questions might be asked in addition to those in the loan application? 10) What types of security might be requested to secure the loan? 11) What types of businesses normally get loans? 12) What are the characteristics of successful borrowers?

5 pages

Hotel Swot Analysis.edited

SWOT analysis refers to studies undertaken in organizations to identify their internal Strengths, Weaknesses, external Opp ...

Hotel Swot Analysis.edited

SWOT analysis refers to studies undertaken in organizations to identify their internal Strengths, Weaknesses, external Opportunities and Threats, in ...

KCCML Community Hand Hygiene Training Teaching & Evaluation Plan Presentation

Goal: Create a board or power point presentation of important learning and resources learned throughout the course. Explai ...

KCCML Community Hand Hygiene Training Teaching & Evaluation Plan Presentation

Goal: Create a board or power point presentation of important learning and resources learned throughout the course. Explain approaches to community intervention and evaluation. Implement a teaching and evaluation plan. Presentation Instructions:1. Choose one topic from the prevention strategies and intervention recommendations identified in your Community Family Assessment.2. Develop a teaching plan, including objective, content outline, teaching method, and time in a table format.3. Develop an evaluation plan for your teaching intervention and create a tool for feedback from your learners.4. Implement the teaching plan and evaluation during Visit 5 of your clinical experience.5. Summarize the outcomes of your teaching plan and evaluation.6. Submit your teaching plan, evaluation tool, and summaryPresentation Submission Instructions:Produce a video and upload it with your presentationhttps://community.canvaslms.com/docs/DOC-14585-50736858114 (Links to an external site.)Canvas Studio Screen Capture (Links to an external site.). Peer Review Submission Instructions:Click here to learn how to complete a peer review assignment.

Aberystwyth University Behavioral Theory Case Study of Caiden Paper

What if, from a young age, Caiden has always enjoyed very physically active play such as running and crashing into his sur ...

Aberystwyth University Behavioral Theory Case Study of Caiden Paper

What if, from a young age, Caiden has always enjoyed very physically active play such as running and crashing into his surroundings? What if he loves bear hugs, and has always been soothed by vigorous back rubs? Be sure to address Caiden’s behaviors at school as well as those at home. For example, you could include a reinforcement scheme that is contingent on good or bad reports each day from caiden’s teacher. You may also find it helpful to refer to the Observation Recording Form the school sent to Brian earlier.

1 page

Lander's Spotless Calculus Notes pt. 2

Lander's Spotless Calculus Notes pt. 2

IT ETHICS, Ethcal theory

Specific guidance for the 201760 exam As a teaching panel we have decided to narrow the range of things that students need ...

IT ETHICS, Ethcal theory

Specific guidance for the 201760 exam As a teaching panel we have decided to narrow the range of things that students need to focus on. From our point of view this approach to exam preparation ensures that students engage deeply with the subject matter, by having the motivation to explore particular cases and in great depth. From your point of view it should give you greater peace of mind going into the exam, because if you have prepared good answers to each of these restricted questions, then you can be sure to not only pass, but in all likelihood do well. However, we do put a caveat on this approach. That is, we will not give any students assistance with the particular cases and question examples listed here. For example, should a student come to one of us for help in applying the DET to a case study, we will gladly do so, except that we will not do so for any of the three cases listed here. As seen in the sample exam, Part 1 asks the following of you ... PART 1: DOING ETHICS TECHNIQUE AND ETHICAL THEORY QUESTIONS Part 1 - Question 1 – Doing Ethics Technique This session we have restricted the cases to the following three (3). One of these will appear in the exam. We encourage you to prepare all three. i. Jean, a statistical database programmer, is trying to write a large statistical program needed by her company. Programmers in this company are encouraged to write about their work and to publish their algorithms in professional journals. After months of tedious programming, Jean has found herself stuck on several parts of the program. Her manager, not recognising the complexity of the problem, wants the job completed within the next few days. Not knowing how to solve the problems, Jean remembers that a coworker had given her source listings from his current work and from an early version of a commercial software package developed at another company. On studying these programs, she sees two areas of code which could be directly incorporated into her own program. She uses segments of code from both her co-worker and the commercial software, but does not tell anyone or mention it in the documentation. She completes the project and turns it in a day ahead of time. Australian Computer Society (2014) ii. Company X has just signed a business agreement with Company Y, which entitles both of them to access each other clients’ records. Mr. Faisal, a software programmer at Company Z, was assigned the task of developing a software program that handles the access and retrieval of records from each Company’s database system into the other. A first run of the software on real data indicated that the work was well within the state of the art, and no difficulties were found or anticipated. Several weeks later and during a normal test on the software developed, Faisal discovered a serious ‘security hole’ in the database system of Company Y by which hackers can easily obtain confidential information about clients. He was convinced that while the software he developed could correctly accomplish the task, the code in Company Y’s database system could not be trusted as the security hole posed a threat even on Company X’s database system. Faisal told his manager about the problem and explained its significance. The manager's response was, "That's not our problem; let's just be sure that our software functions properly." Faisal is not sure what to do. Refusing to work on the project means disobeying his manager’s orders. Continuing to work on the project, means disobeying one of God’s commands, this requires him to be truthful and sincere in his dealings. Australian Computer Society (2014) iii. You are a computer programmer working for a small business that provides specialized financial services to local, mostly small businesses. You have been working for company X for about six months. Recently X has been occupied with reengineering the inventory system of a local hardware chain, ABC Hardware. The objective is to enable ABC to keep better track of their inventory, to be more responsive to changes in customer demand, and to adopt a “just in time” strategy to reduce inventory. Your supervisor calls you into his office. “Do you know of any existing software products to help ABC keep better track of its inventory?” You mention a particular product that you have worked with in another job and point out that ABC could use it without any modification. The only drawback, you point out, is that this software is somewhat expensive. Your supervisor leans back in his chair, puffs on his cigar and says, “That’s no problem. We have that software. Why don’t you just install it on ABC’s computers?” You diplomatically indicate that this would violate the licensing agreement X has with the developers of the software. “Do it anyway,” your supervisor says. “Nobody’s going to find out, and ABC is a very important client. We need to do all we can to keep them happy.” William J. Frey (2010) Reference: Australian Computer Society (2014), ACS Code of Ethics Case Studies & Related Clauses to the Code of Conduct William J. Frey (2010), The Case of the Troubled Computer Programmer, National Academy of Engineering, Online Ethics Center. Part 1 - Question 1 – Doing Ethics Technique (20 marks) Analyse the above case study using the Doing Ethics Technique.Part 1 - Question 2 - Ethical Theory question (10 marks) We ask the students to analyse the above case study using either two or four classical ethical theories. So, it is always from the four classical ethical theories such as utilitarianism, deontology, virtue and contract. PART 2 – SHORT ANSWER QUESTIONS (40 MARKS) These will be four questions covering anything in the syllabus. In every topic that had review questions from the text we encouraged students to do them; exam questions in this section are frequently based on them. PART 3: ESSAY (30 marks) This session we have restricted the essay topics to the following three (3). One of these will appear in the exam. We encourage you to prepare all three. i. A software development company has just produced a new software package that incorporates the new tax laws and figures taxes for both individuals and small businesses. The president of the company knows that the program has a number of bugs. He also believes the first firm to put this kind of software on the market is likely to capture the largest market share. The company widely advertises the program. When the company actually ships a CD, it includes a disclaimer of responsibility for errors resulting from the use of the program. The company expects it will receive a number of complaints, queries, and suggestions for modification. The company plans to use these to make changes and eventually issue updated, improved, and debugged versions. The president argues that this is general industry policy and that anyone who buys version 1.0 of a program knows this and will take proper precautions. Because of bugs, a number of users filed incorrect tax returns and were penalised by the ATO. ii. Over the years a number of systems have been developed which record coded information across a range of factors about disabilities in ethnic communities. A new coding convention has been developed to rationalise the inconsistent coding conventions of these legacy systems. The new coding convention uses codes which had different meanings in the legacy systems. This means that time series analysis gives inconsistent results, particularly showing both under and over reporting of numbers of particular disability categories. This is significant when making policies for people based on the size of the communities. To fix this would take a lot of work and expense, and management has decreed that historical systems will not be fixed, but new systems will all adopt the new coding convention. iii. Joe is working on a project for his computer science course. The instructor has allotted a fixed amount of computer time for this project. Joe has run out of time, but has not yet finished the project. The instructor cannot be reached. Last year Joe worked as a student programmer for the campus computer centre and is quite familiar with procedures to increase time allocations to accounts. Using what he learned last year, he is able to access the master account. Then he gives himself additional time and finishes his project. Reference