You are employed at a bank of medium size, worth 5 billion dollars. The IT Director reports
Question:
You are employed at a bank of medium size, worth 5 billion dollars. The IT Director reports to the CIO – both the CIO and CISO report to the COO. At 11:00 A.M. on a Monday morning, the IT Help Desk receives a call from a user in the Wire Transfer Department. He reports that his computer is frozen, and appears to have a message that some type of ransom is requested to free the files up from a type of encryption.
What should your help desk do next? Consider the following:
- What is your response plan to this incident?
- How would you escalate this situation?
- Who would you notify?
- What is your customer notification plan?
- What is the relevant regulatory requirement?
Let’s identify the most probable sequence of events. Select One:
- The Help Desk opens a ticket, assigns it to a technician to respond to the user’s workstation, to inspect and determine what the actual problem is and whether it is a virus or a computer issue that could be resolved by the IT team.
- The Help Desk instructs the user to unplug his computer from the network, proceeds to open a ticket and assigns an IT tech to inspect the user’s computer for an analysis and a possible solution.
- The Help Desk simultaneously proceeds to notify the IT Director of the issue, dispatches a technician and awaits feedback.
- In addition to #3, the Help Desk proceeds to inform the CISO of the occurrence.
- The Help Desk instructs the user to shut down and restart his computer to see if the problem has been remedied before taking any action.
- Any other actions that are not listed above?
As you reflect on what to do and what may happen, the IT Technician arrives:
- The technician immediately determined and reported that the computer was infected with Ransomware.
- He states that there is no way to remove the malware other than disconnecting it from the network and re-imagine it.
- The other option is to pay the ransom of $300.00.
What now? Post your primary thoughts on the scenario, considerations on the most probable next steps, and what you would do after learning the new information from the IT technician's report then find commonalities and differences in your thoughts and approaches and discuss as a class.
Accounting
ISBN: 978-0324662962
23rd Edition
Authors: Jonathan E. Duchac, James M. Reeve, Carl S. Warren