Hello!
I am working on a case study regarding a ransomware attack at Colonial Pipeline.
I have provided you with the PDF file you will need to complete the assignment. The PDF file is about 16 pages. Please let me know if you have any issues viewing the attached file.
Here are all the bullet points that MUST be answered regarding this assignment.
You will write up a report on the case by answering the following questions:
Dissecting the case:
Who detected the incident at Colonial and who was the first responder?
How did Colonial employees know that they should escalated it and who to escalate it to?
How does the cyber first responder determine if it may be an incident of magnitude?
Who at Colonial made the decision to declare an incident of magnitude?
How did Colonial organize the response team? Who should be on the team? Who decides who should be on the team? What factors change team makeup?
Where and how did Colonial’s response team get together? In person or virtual? In general, how do you communicate and convene if primary business systems are down?
Who did Colonial call for help? In general, what internal or external talent can organizations call for help?
Analyzing the impact of the case: Did Colonial handle the crisis appropriately? What did the company do well and what could it have done better? What other lessons have you learned from the incident?
How should organizations manage the ever-increasing threat of data breaches? Specifically, what are the roles for executives during an incident?
Do you agree with Blount’s decision to pay the ransom? In general, should organizations pay ransomware perpetrators?
This assignment should be completed with NO AI. If you have any questions, please don’t hesitate to reach out!