Tjx Fraud Case Study Solution

Improved Essays
The security problem did not start in July 2005 with the first intruder; this was the hole that did not get filled in time. Early detection of the virus could have prevented widespread infection, but either carelessness or ignorance kept the company from looking. The first major concern is that early detection was not an option or the data that was collected was unused. Next the Customer data was kept in a fashion that could be compromised, either unencrypted or access control was inadequate. This shows a deep level of technological inadequacy by the company, the working technology knowledge of the business owners was too low to avoid risky practices. Older technology made it easier to break, cost saving approaches to technology and use were …show more content…
The most obvious option would be to train every employee and manager about the best security practices and ensure compliance with protocols throughout the organization. This however would do very little without good security policy and guidelines. Hiring or contracting security consultants would be the best way to ensure that the best industry standards are being set, and then an informed managerial staff could reasonably follow and create good security strategies. Another possible avenue for improvement would be to remove many of the older technologies that are more risky. While this may make the employee’s life’s more difficult or tedious as well as being costly, the customer’s data and trust are at stake. Keeping updated and secure databases should be a cost considered when describing the benefits it provides. Short of removing all technology from the business, there is no way to avoid the cost of keeping data secure from hackers. A centralized approach to the problem might be another way to solve the problem. Instead of housing data at each store, datacenters with strict policy, guidelines, and procedures. This would eliminate the need for storeowners to have to worry about most of the security concerns and the focused area could ensure that each store is meeting all requirements and …show more content…
When each member of the organization is accountable for the data they oversee the workers are very likely to start asking the right security questions. The top down approach is effective in some large companies, but is inappropriate for TJX, the scale of the company’s business requires that all levels of the company be wary and cautious of all possible threats. The bottom up approach in an informed system can isolate potential holes in the system, and then the proper management can allocate appropriate resources to the problem. Having every employee involved also ensures that the high level goals of the organization are not undone by the carelessness of an entry level associate. The training is costly in terms of money and time, and making people care about security has been a problem in business for as long as there has been business. In the information age this is no longer an acceptable attitude; every employee is liable because every employee has the capacity and resources to do terrible harm to not just customers but the

Related Documents

  • Great Essays

    Internal Security Threats

    • 1296 Words
    • 6 Pages

    We’ve all heard the warnings, “Hackers are everywhere, arm yourselves with the right security to protect your information.”, and hopefully you are not one of the millions that have had their identity stolen. Imagine being in charge of a multibillion-dollar company, and it is your responsibility to make sure that every customers transaction that passes through the system is secure against attacks. That is a pretty big feat, but in today’s world it is a necessary evil that has become one of the biggest concerns faced by corporations. Accountability, in a security sense, is a set of goals that place emphasis on how a company will handle and protect themselves from a security breach. Many companies in the past, have learned hard lessons…

    • 1296 Words
    • 6 Pages
    Great Essays
  • Improved Essays

    Mike Lynn: Whistleblower

    • 1252 Words
    • 6 Pages

    Cyber security is a very sensitive matter as internet is supposed to be a place where your data could stay private but lately it hasn’t been the case. The problem could’ve been addressed by insurance from both parties that they won’t take a rash action without consulting each other first. Mike Lynn got frustrated after he was forced to stay quiet over a matter which he thought was necessary for others to know but also it wasn’t good for Cisco’s business. There needs to be an understanding between the employer and the employee which wasn’t present in this case causing a near disaster situation. Mike Lynn could also have been more patient and waited a bit more…

    • 1252 Words
    • 6 Pages
    Improved Essays
  • Improved Essays

    Power Distance

    • 1158 Words
    • 5 Pages

    If leaders do not handle this carefully, uncertainty avoidance can have a strong negative influence on employees’ loyalty, and employees can be easily demotivated. One of the best ways to avoid this is to measure employees’ risk tolerance by creating a company event that creates uncertainty issue as a testing. Another way is to have employees answering some sort of personality questionnaires when they first enter the company. That way leaders can have a better understanding…

    • 1158 Words
    • 5 Pages
    Improved Essays
  • Improved Essays

    When making a product, all rules, regulations, and past failures, should be taken into consideration so that aforementioned product will not hurt the environment or the user. Taking shortcuts in the workplace is a common trend today that occurs more often than not. This can be a result of the simple reasons of laziness or cutting corners to make extra money. For example, a flawed number in a calculation can cause a building, house or any product for that matter, to be slightly askew and can put people at risk of injury. This is primarily due to the lack of attention to detail that is so desperately important in the field of design and engineering.…

    • 961 Words
    • 4 Pages
    Improved Essays
  • Superior Essays

    Keeping the data safe will help in maintaining the image of the organization to the general public and therefore it is important to impose this security principle when it’s needed in a business environment. This is because it’s very hard at times to keep remain silent with the knowledge of a certain extend of information which can cause major harm to the business…

    • 1415 Words
    • 6 Pages
    Superior Essays
  • Great Essays

    Strengths Of Bureaucracy

    • 1366 Words
    • 6 Pages

    Decision making is always monitored and it is centralized, this will reduce all the redundancy and unwanted information when decision making is being held, making the business create decisions, that will be very effective for the business to make. The weaknesses of bureaucratic are: * Processes like decision making are very timely and will take time. * Employees might get bored from their job * Communication may not be clear because it has to go through so many levels that sometimes the message gets…

    • 1366 Words
    • 6 Pages
    Great Essays
  • Superior Essays

    Destructive Leadership

    • 1638 Words
    • 7 Pages

    As McCartney and Campbell (2006) indicate “Once an individual has met the initial expectations… organizational development activities will still be necessary to avoid derailment”(p. 199). Another solution suggested is that through a selection process with a role-playing method followers who have the potential to be vulnerable to leaders can be found (Thoroughgood et al., 2012) or if they are already employed, they should be empowered to overcome these vulnerabilities and be able to dispute the destructive leaders (Padilla et al., 2007). Finally, it is certain that leaders with narcissism are needed in many areas of business because they are good reformers but management should be aware to restrict their power (Maccoby,…

    • 1638 Words
    • 7 Pages
    Superior Essays
  • Improved Essays

    These companies or organizations working within another supply chain make it extremely difficult to define an entire network. However, the partnership (business relationship) that exists within the network should establish guidelines to eliminate or minimize risk factors among the companies to increase customer’s loyalty. When customer’s loyalty is achieved, all companies within the network can obtain a profitable margin in revenue. However, loyalty must also exist within the supply chain network. Eliminating and Minimizing Risk Factors Although some risks cannot be avoided as natural disasters, each member of the supply chain should have a contingency plan or two.…

    • 780 Words
    • 4 Pages
    Improved Essays
  • Improved Essays

    This is a huge risk issue since it touches the security and the staff rights of the company. To reduce this risk issue, Elizabeth Sparrow (2003) stated that“ Increase difficulties in defending other people’s confidentiality: for example, access to personnel files and customer data.” 2. Loss of Control: The company that chooses IT outsourcing from an external vendor might lose control on the strategic issues since the vendor is always present and controlling each and everything related to their activity. This will negatively affect the mechanism of advancing through a specific direction in certain cases. “This movement may result from perceptions about the different goals and attitudes of internal and external staff towards service, profits, and survival “(Annette…

    • 1224 Words
    • 5 Pages
    Improved Essays
  • Improved Essays

    Taking risk is a big part of a business, but unlike most collaborative leaders want people to take some risks. George Ambler and YScout says that they want people to take risk because it makes creativity, innovation and growth. People also feel like they can take risk because trust and job security is in the business, so employees can feel like if they fail at the risk they will still have their job(George Ambler & YScout). Trust is important in any leadership, but without trust in collaborative leadership the business will fall apart. Carol Goman found out that trust is shown by open and ongoing communication(Forbes).…

    • 1066 Words
    • 5 Pages
    Improved Essays