Cybersecurity

CSIS-3001 – Introduction to Cybersecurity
Guidelines for The Assignment – Data Breach Incident Analysis

 OBJECTIVE & PURPOSE:

The purpose of this assignment is to be able to: Identify a data breach incident from news media and provide an overview of the case; Analyze common security failures and identify specific cybersecurity principles that have been violated; Given a specific scenario, identify the cybersecurity principles involved or needed to increase the cybersecurity posture; and describe appropriate measures to be taken should a system compromise occur (Business Continuity Plan).

 DESCRIPTION OF ASSIGNMENT:

Your assignment will be to first to identify and conduct investigation using (Google, news report, government report, and any other valid source) into a data breach incident of an organization in the past several years. *** NO CASE That will be and/or was reviewed during class will be accepted (Check the PDF File) Ensure you select new case, not one covered in class. Assignment done on cases covered in class will get immediate zero***
Then, develop a written paper that will provide the following sections:

· Data Breach Overview: Provide an overview of the data breach incident you selected, the organization that it occurred in, and indicate if any prior data incidents occurred in that organization previously (Use references to support your claims).
· Cybersecurity Failures: Analyze the cybersecurity failures and identify the specific dimension(s) of cybersecurity and their related principles (Hint: McCumber Cube and it’s dimensions + relevant principles on each dimension!) that have been violated during the identified data breach incident (Use references to support your claims).
· Cyber Risk Management: From recent industry and/or government reports (i.e. less than three years old) and in your own words (no quotes, but use references to support your claims) identify the cyber risk management factors (Likelihood – also known as ‘rate of occurrence’ + estimated impact) associated with the specific cyber incident that occurred for the organization you’re investigating. (Use references to support your claims). Include a simple table to highlight the cyber threat, risk description, likelihood, impact, and actions proposed to mitigate that cyber threat in the future.
· Business Continuity Plan: In your own words (no quotes, but use references to support your claims) describe appropriate measures that the organizations should take to mitigate the risk of another data breach incident in the future.
· Conclusion: In your own words (no quotes!!!), provide a conclusion that summarizes the whole paper.
In particular, you will need to develop a 5- to 7-page document (not more!) that outlines each of the section above and provides the details to address the points above.

 FORMAT:

All text in the proposal should be word-processed (letter or correspondence-quality font), New Times Roman or Calibri, 12 point, double space and standard margins. The body of the proposal should be 5- to 7-pages long (not including title page, Table of Contents, Reference List).
The following information should also be included:
Title page:
· Assignment Name and Number
· Name
· Professor’s name
· Class Name and Number
· Due date
The report should also be done professionally and should include:
· Table of Contents (with sections & page numbers identified – Ensure the context text starts on page 1, frontmatter shouldn’t be counted in page numbers)
· Page numbers on all pages
· Clear and consistent headings of all sections
· No running heads
· Reference List following APA (At least seven different references)
· Certificate of Authorship – Use the certificate provided as the last page of the document within the assignment file (not separate file)
Professional and appealing document is expected. As required by Code of Student Conduct and Academic Responsibility, please make sure to document appropriately your references and state it in your own words, or put in quotations.

 GRADING AND RUBRIC:

This case will be graded out of 100 points. This assignment will weight 10 points of your final grade.

Does not meet standard

Nearly meets standard

Meets standard

Title page

Total mess, nothing is there

Few required items there

All required items there and looks professional

TOC page

Total mess, nothing is there

Few required items there

All assignment sections noted, page numbers indicated, and looks professional

Overall layout

Total mess

Few required items there

Assignment looks highly professional

Data Breach Overview

Not found

Few required items there

Section noted in a professional appearance with proper APA citations

Cybersecurity Failures

Not found

Few required items there

Section noted in a professional appearance with proper APA citations

Cyber Risk Management

Not found

Few required items there

Section noted in a professional appearance with proper APA citations

Business Continuity Plan

Not found

Few required items there

Section noted in a professional appearance with proper APA citations

Conclusion

Not found

Few required items there

Section noted in a professional appearance with proper APA citations

References

Not found

Some references appear and not fully in APA

All references appear and follow closely APA

Filename

Not per guidelines

Few required items there

Fully following the filename guidelines

 DEADLINE:

The assignment is expected to be completed by the deadline February 25th, 2022

 SUBMISSION:

Please submit the assignment in MS Word format ( x) to the Canvas Assignments Dropbox. A direct link to Assignment Dropbox is provided in the course menu bar on the left.