Case Study
In March 1994, Randal Schwartz was indicted on three felony counts under the Oregon State Computer Crime Law and sentenced to 5 years of probation. 480 hours of community service, 90 days of deferred jail time, $68,000 of restitution to Intel, and disclosure of full details surrounding conviction to any future employer. The complaint against Randal Schwartz was brought by Intel Corporation, a multinational microchip manufacturer. The charges related to altering two computer systems without authorization and accessing a computer with intent to commit theft. Randal Schwartz is a perfect example of someone who does not fit into the stereotype of hackers. Anyone familiar with Perl will know Schwartz as the author of the definitive Perl instruction guide, Learning Perl. Schwartz is a frequent columnist for such technical magazines as Unix Review and Web Techniques. Randal Schwartz was a consultant for Intel in Oregon for three years before the indictment. Schwartz’s crimes are a result of what he says were “good intentions.” Although Schwartz is well respected in the community, he has been criticized for his unprofessional and irresponsible conduct as a consultant, thus being subjected to a lot of controversy. Schwartz claimed that because of jos travels and invitations to lecture on Perl, he needed an easy way to access his e-mail at Intel. Without seeking requisite permissions, Schwartz modified the systems so as to access his account outside of the organization. He also installed the Crack software on the systems, which enabled him to capture nearly 50 passwords.
In his defense, Schwartz argued that he was merely helping the company by checking the security of systems. This could have been an excellent explanation except for the fact that in police reports. Randal told the officers that thought he could be criminally prosecuted for these incidents. “When asked why he stole 40 or 50 passwords. Schwartz told detectives. “I needed them in case they caught me doing it and I knew they would shut me down, so the more passwords I had, the longer I could continue doing what I wanted to do.” Schwartz also admitted that this wasn’t the first time he had done things against Intel’s policy. He had been previously caught accessing the systems from outside the company and had been warned on several occasions.
Schwartz Case Study
Organizations need to be concerned with breaches of security from internal sources as much (if not more) as from outside sources. Employees and consultants in an organization often need sensitive information. How can the organization provide access, but still protect against improper usage of this information?
Read the Case Study at the end of Chapter 10. With your group, act as hired consultants and write a 1- to 2-page group report that determines what steps you would recommend for the company to ensure that their security policies are not violated. One of the CEO's goals is to keep from burdening the employees with ...
Case StudyIn March 1994, Randal Schwartz was indicted on three f.docx
1. Case Study
In March 1994, Randal Schwartz was indicted on three felony
counts under the Oregon State Computer Crime Law and
sentenced to 5 years of probation. 480 hours of community
service, 90 days of deferred jail time, $68,000 of restitution to
Intel, and disclosure of full details surrounding conviction to
any future employer. The complaint against Randal Schwartz
was brought by Intel Corporation, a multinational microchip
manufacturer. The charges related to altering two computer
systems without authorization and accessing a computer with
intent to commit theft. Randal Schwartz is a perfect example of
someone who does not fit into the stereotype of hackers.
Anyone familiar with Perl will know Schwartz as the author of
the definitive Perl instruction guide, Learning Perl. Schwartz is
a frequent columnist for such technical magazines as Unix
Review and Web Techniques. Randal Schwartz was a consultant
for Intel in Oregon for three years before the indictment.
Schwartz’s crimes are a result of what he says were “good
intentions.” Although Schwartz is well respected in the
community, he has been criticized for his unprofessional and
irresponsible conduct as a consultant, thus being subjected to a
lot of controversy. Schwartz claimed that because of jos travels
and invitations to lecture on Perl, he needed an easy way to
access his e-mail at Intel. Without seeking requisite
permissions, Schwartz modified the systems so as to access his
account outside of the organization. He also installed the Crack
software on the systems, which enabled him to capture nearly
50 passwords.
In his defense, Schwartz argued that he was merely helping the
company by checking the security of systems. This could have
been an excellent explanation except for the fact that in police
reports. Randal told the officers that thought he could be
criminally prosecuted for these incidents. “When asked why he
stole 40 or 50 passwords. Schwartz told detectives. “I needed
2. them in case they caught me doing it and I knew they would
shut me down, so the more passwords I had, the longer I could
continue doing what I wanted to do.” Schwartz also admitted
that this wasn’t the first time he had done things against Intel’s
policy. He had been previously caught accessing the systems
from outside the company and had been warned on several
occasions.
Schwartz Case Study
Organizations need to be concerned with breaches of security
from internal sources as much (if not more) as from outside
sources. Employees and consultants in an organization often
need sensitive information. How can the organization provide
access, but still protect against improper usage of this
information?
Read the Case Study at the end of Chapter 10. With your group,
act as hired consultants and write a 1- to 2-page group report
that determines what steps you would recommend for the
company to ensure that their security policies are not violated.
One of the CEO's goals is to keep from burdening the
employees with too much overhead, so be sure to find a balance
between ease of access and formal security measures. In
addition, identify the individual contributions of each member
of the group.
Your report should follow APA style.
You should work on this assignment as you go through the
chapter(s). This assignment reinforces information in your
textbook and concepts presented in this unit. You will be graded
on the accuracy and thoroughness of your responses. Please
write in complete sentences unless otherwise directed.
Remember to cite your textbook just as you would any other
resource. Your textbook and any additional outside resource
citation should use APA format.
3. 1.The first step in the decision making/problem solving process
is to identify the problem. (We cannot solve a problem unless
we know what the problem is!) The second step involves
consideration of all the alternatives to the problem. In this step,
we weigh the advantages and disadvantages to each possible
solution or decision.
A cost benefit analysis (CBA) is a valuable tool to use in this
second step. Costs are a definite factor in many decisions!
When you use a cost benefit analysis to decide which item to
purchase or which decision to make, you compare the costs of
each alternative, the features of each, and the
advantages/disadvantages of each. Cost benefit analyses should
include tangible costs and benefits (measured in dollars and
cents) and intangible costs and benefits. Intangibles cannot be
measured in dollars, and include employee goodwill, brand
identification, the company's image and reputation, etc.
Consider a decision that you must make in the near future or a
decision that you recently made. What criteria did you use or
will you use to weigh the alternatives?
2.Refer to #1. How could you use a cost benefit analysis to
make your decision?
3.Refer to #2. Give one example of the costs/features of two
items involved in your decision. What are your conclusions?
4.Define the term root cause. Why is it important to determine
the root cause of any problem?
5.Groupthink is a term that we all need to add to our working
vocabulary. Groupthink occurs when a group of decision makers
focus more on just reaching a decision than on making the right
decision. (Effective Change, page 202) It is the "any decision is
better than no decision" mentality. Identify and explain two
strategies for overcoming groupthink.
6.Groupshift is another phenomenon in group decision making.
Define the term groupshift. In your opinion, explain why
4. groupshift a positive action or negative action.
7.Why should we collect input from employees before we make
a decision?
8.Identify and explain two reasons why plans might fail.
9.Explain why it is important to any change plan to monitor
progress and to celebrate success.
10.Explain how an organization's core beliefs and core values
affect change initiatives.
You will use information from your Case assignments in Units 2
and 3 to create this Unit 4 Case Assignment: Change Analysis
Presentation.
Imagine you have been placed in charge of a change initiative
for the organization you have selected to use for your case
assignments. You must give a presentation to support this
change initiative to senior level management. Your presentation
will use MS PowerPoint and must include speaker notes or your
voice narration for each slide.
Important Note: Your presentation should be no larger than 9
MBs. If your project is larger than 10 MBs (in a zipped file)
you will not be able to submit your file in the Unit Project page.
Your PowerPoint Presentation must meet these criteria:
•10 -12 slides, not including these four slides:
◦Title Slide
◦Objectives slide
◦Conclusion slide
◦References slide
•The body of your presentation should include summary
information from your three case files and should follow this
outline:
◦Title Slide that includes your name, course, date
◦Objectives slide that gives the purpose of the presentation
◦Identify the organization and its core business
5. ◦SWOT Analysis Summary, relative to the change initiative
◾Strengths, including core competency
◾Weaknesses
◾Opportunities
◾Threats
◦Organization's leadership and vision
◦Identify the change the company faces and why this change is
significant
◦Your recommendations for a successful change initiative
◦Conclusion Slide
◦References Slide
Note: Be sure to cite your sources using APA style. You will
find information on APA in the Course Information section.
The grading rubric for this final case project is featured below.
Note that you are graded on content, as well as formatting,
background, font and use of color and graphics.
For this forum, you will interview a person of your choice.
Before we begin, let me review a couple of points that will
prove helpful when you conduct your interview. As we have
previously discussed, a "change" leader must be able to guide
other people into the future, to take risks, to work towards goals
and objectives, to move into the future. Leaders must be able to
make decisions and to achieve results. Leaders must be able to
empower employees and involve them in decisions and plans.
Instructions for Your Interview
For this interview, you should use someone from the same
company/industry that you are using for your unit case
assignments. If this not possible, select someone who works for
another company.
Select a person who works for the company to interview. This
6. interview can be done either in person, via phone, or via email.
Ideally, this person should be in a management position but this
is not a requirement. Give careful thought to this person you
choose to interview!
I have provided a list of questions and topics to use as a guide
for your interview. This list is not in any particular order. Write
a thorough summary of your interview results. You must also do
some evaluation and analysis of your interview results. Include
your conclusions and your recommendations for change plans
and initiatives.
•Include the organization's name, the person's name, position,
date and time of interview.
•Briefly describe the type of organization or industry.
•What is your role in the organization?
•What goods or services does this organization provide its
customers?
•How does your organization differentiate itself from the
competition (core competencies)?
•Describe the organization's leadership/management.
•Describe the company's communication processes and decision
making processes.
•What plans for change are in process?
•What factors of change are affecting this organization?
(demographic, technological, sociopolitical, etc.)
•How should this organization change in order to meet future
demands?
•Where do you see this company in five years? In ten years?
•If you could change one thing about this company, what would
it be?
•When you reply to your classmates' interview posts, evaluate
their interview summary and give your opinions and conclusions
as to their recommendations and conclusions