2. Social Assistance Ottawa (SAO) is a large agency in charge of social assistan

Question

2. Social Assistance Ottawa (SAO) is a large agency in charge of social assistance in Ottawa. SAO has a policy stating that all the client data is confidential and in its identifiable form should not leave, electronically or otherwise, the agency’s offices. SAO IT manager requested that have all files are encrypted on the agency’s servers and only decrypted on a SOA workstations, and that file writing/copying to external device by the users (SOA case workers) be disabled. IT manager’s request has been turned down as the system overhaul it requires would slow down work. IT manager accepted this decision.

Case officer John Smith, who has fallen behind on his workload because of playing games on his workstation, takes his cases home on a memory stick. He copies the database as an unencoded MS Access file on a USB memory key. However, on his way home he loses his USB key at a gas station.

Next day “The Capital”, Ottawa’s main daily newspaper, reports that an anonymous caller left a message that the SOA client list, including personal information: names, addresses, SIN numbers, income etc. – of all social assistance clients in Ottawa is in her possession.

Please perform elements of Bynum analysis of this case. In particular, discuss:

a. participants and their roles

b. objectors

c. professional standards analysis. Refer to specific sections of the attached CIPS Code of Ethics.

d. lessons for the future

Explanation / Answer

Hi,

Please find the BYNUM ANALYSIS for the given situation in below line:-

BYNUM ANALYSIS

A) Participants and their roles:-

SOA:-The one whose clients data got leaked.

IT MANAGER:-Who proposed encryption/decryption of client’s data.

John Smith: The case officer who copies data in USB card and loses it at a gas station.

Anonymous lady:-One who found the USB card and warns of leaking data

B) Objectors:-

           The officers of SOA who found John violating the code of ethics

            All clients of SOA whose data was in USB card and can be known worldwide now.

           SOA whose reputation is put at risk.

           John Smith whose job is put at risk.

C) Professional standards analysis:-

       I) Never engaging in conduct, either professional or personal, which would bring the profession :-

           The way john smith got engaged in the activity by ignorance but it brought shame to SOA.

        II)Being aware that my behavior outside my professional life may have an effect on how I am     perceived as professional

          This should kept in mind by each and every professional (not only from SOA) so that the personal   life should not effect the professional decorum of the professional who works.

D) Lessons for future:-

Since SOA was reluctant to implement advice of IT manager which led to this situation. It should be   kept in mind that security of clients data comes first even if it costs a little extra to the infrastructure

Without it trust factor cannot be developed among customers.

There should be strict security policies which needs to be followed by the office staff while working   on the confidential data.

No data access device should be allowed to enter in the work area of such organizations unless it is mandated by the organization itself.

=============================================================================

Please let me know in case clarification is required.

Related Questions

Navigate

• Browse (All)
• Browse 2
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.