System Analyst and Security: There\'s a saying among some IT professionals. \"Th
ID: 3607578 • Letter: S
Question
System Analyst and Security:
There's a saying among some IT professionals. "There are two types of companies in this world: those who have been hacked and those who don't know they've been hacked."
It seems like just about every week, the news is reporting on some organization becoming the victim of some form of security breach. What is your opinion on the occurrence of lost laptops by government officials and creditors as well as the data/identity theft of large corporations such as (most recently) Equifax and (about a year ago) Target and the Home Depot? Do you feel that they are doing enough to secure our data? From a systems analyst perspective, discuss what can be done to protect users' data and ensure users are doing the same.
Explanation / Answer
"There are two types of companies in this world: those who have been hacked and those who don't know they've been hacked." This saying is quite true. For every neatly organized company there is a security department to take care of any malware or malfunctioning attack.
In day-to-day life, all of us are using internet and there are lot of web sites which asks us for our information. Such information includes some basic things like name, address to the highly confidential information like the credit card number, our contact number. Now, this is a customer’s right that his or her data should be protected from any other person and should be kept private. Also, if a customer do not want’s to share his data with anyone then it must be private.
But there are few web portals, which accepts user data and literally share this data with third party so that they should get some reward from third party. Basically for example we can say that there is one job portal which accepts all the information from a candidate. Now, on the same portal, a person registers himself as a recruiter with very minor fee. Now this guy has full access to the whole candidates data registered on portal. So, basically this person can take this data from portal and can give this to other firm, and this firm pays high amount of money to the person who is providing data to them. This implies that out data is not secure on such portal.
Now there are lot of firms they actually protects our data from outsiders. If I can take example of a private IT company. Now the workers information is highly private. Plus the data stored by the employee is private too. No any company wants to share their data to outsiders, so they have their own protection policies, rules and regulation to data. So by applying strict rules and regulations we can prevent the data loss to unwanted person.
The most important thing to discuss is how a user can protect his data himself. User should always use the authorized web sites or the wen portals which are secured. Generally, the web portals which has standard ‘https’ are more secured than the normal ‘http’. So user should try to avoid use of http portals. Plus whenever you are using a bank transaction, you should always try to close the window after logging out, plus you should not connect to public network for such transaction instead you should use private networks. You should never share your details over phone or message. This details are meant to be private and it’s your responsibility to keep your data private and protected.
Related Questions
Navigate
Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.