A large multinational corporation experiences a severe data breach that results

Question

A large multinational corporation experiences a severe data breach that results in the loss of customer data for nearly 250 million customers. The lost data included names, addresses, email addresses, passwords, credit card numbers, and dates of birth. During the first week, the entire company is in damage control mode. About 2 weeks after the data breach, the company’s board of directors starts asking who was responsible. Heads are going to roll. They want to show their customers that they are taking steps so this won’t happen again. Should they fire the CEO, CIO, CISO, CTO, database administrators, or line workers? Justify your choices.

Explanation / Answer

The company needs to hold a detailed investigation to identify the root cause behind this tragic event of severe data breach. The Chief Information Officer needs to own the accountability for this tragic event as being the leader, it was his responsibility to ensure that all business processes are designed in a way that data of customers is protected carefully. The CIO is answerable to all the stakeholders of the company. Based on the root cause analysis and the identification of culprits, company can decide of issuing pink slips. The company also needs to apologize to the customers for this data breach event and they need to share information about ways in which company is assuring that this type of incident will not happen in future.

Related Questions

Navigate

• Browse (All)
• Browse A
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.