COM700 Professional Issues and Practice: Aldi Security Report
VerifiedAdded on 2023/01/03
|9
|2622
|69
Report
AI Summary
This report focuses on the network security challenges faced by Aldi, a German supermarket chain. It identifies key issues such as unknown assets, abuse of user privileges, unpatched vulnerabilities, lack of defense in depth, and inadequate IT security management. The report proposes a framework for audit and process improvement, including selecting the right processes, enlisting an executive sponsor, staffing the project, establishing benchmarks, identifying improvement opportunities, and testing transactions. An action plan is presented, detailing internal audits, setting benchmarks, data encryption, data authentication, data backups, and implementing vigilance, monitoring, and control measures. The report emphasizes the business's need to secure data to prevent data breaches, protect customer privacy, maintain brand value, and gain a competitive advantage. The report is a comprehensive analysis designed to improve Aldi's data and services security.
Professional
Issues &
Practice
Issues &
Practice
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Contents
INTRODUCTION...........................................................................................................................................3
MAIN BODY.................................................................................................................................................3
Issues in network security.......................................................................................................................3
Framework for audit and process improvement.....................................................................................4
Action plan..............................................................................................................................................5
CONCLUSION...............................................................................................................................................7
REFERENCES................................................................................................................................................9
INTRODUCTION...........................................................................................................................................3
MAIN BODY.................................................................................................................................................3
Issues in network security.......................................................................................................................3
Framework for audit and process improvement.....................................................................................4
Action plan..............................................................................................................................................5
CONCLUSION...............................................................................................................................................7
REFERENCES................................................................................................................................................9
INTRODUCTION
Professional Issues and Practice refers to the issues which occur in different organizations
due to the requirements of the profession and the methods which are used in order to solve these
issues effectively and efficiently (Brooke and et.al., 2018). Therefore it is quite important for the
managers in an organization to look after them. For this report, Aldi has been chosen. It is a
German Supermarket company which deals in groceries and other related products. In the
company the security of data and the devices is being compromised which is creating problems
and issues. Therefore necessary action has to be taken. Therefore, in this assignment detailed
focus will be made on recent issues in network security, framework for audit and process
improvement, an action plan. Additionally, the need of business to act on proposal of improving
security will be made as a part of this project.
MAIN BODY
Issues in network security
There are different types of network security issues which every organization has to face
(Choe, N. H. and et.al., 2019). Some of these issues are mentioned as follows-
Unknown assets on the network- There can be unknown assets on the network of an
organization. These assets may not be even relevant to the business which is done by it
(Cochran, 2017). Thus in this way this can create problems and issues for the
organization. In Aldi this is a major network security issue which is being faced by the
company and thus it creates an impact on the overall level of operations.
Abuse of User Account Privileges- Some of the people in the organization can take
advantage of the privileges granted to them as the users of the network of the firm. This
can therefore affect the firm and its business by creating an impact on it. In Aldi some of
the network users are taking an advantage of the privileges which have been given to
them and thus it creates problems and issues for the company.
Unpatched security vulnerabilities- In an organization, there may be unpatched security
vulnerabilities which mean that that they may not be addressed properly. Thus their
solution is quite important from the point of view of the firm so that it is able to keep its
data quite secure. In the context of Aldi it becomes very crucial so that the company is
able to handle the data securely and in the right manner leading to a higher-level of
efficiency and effectiveness. This is so because at present the security system of the
company is very vulnerable.
Lack of defense in depth- In a firm there may be a lack of defense in depth and thus its
systems may not be advanced to handle certain cyber attacks which can result in a loss of
data. Therefore, In Aldi this defense lacks sufficient depth thus making the company
Professional Issues and Practice refers to the issues which occur in different organizations
due to the requirements of the profession and the methods which are used in order to solve these
issues effectively and efficiently (Brooke and et.al., 2018). Therefore it is quite important for the
managers in an organization to look after them. For this report, Aldi has been chosen. It is a
German Supermarket company which deals in groceries and other related products. In the
company the security of data and the devices is being compromised which is creating problems
and issues. Therefore necessary action has to be taken. Therefore, in this assignment detailed
focus will be made on recent issues in network security, framework for audit and process
improvement, an action plan. Additionally, the need of business to act on proposal of improving
security will be made as a part of this project.
MAIN BODY
Issues in network security
There are different types of network security issues which every organization has to face
(Choe, N. H. and et.al., 2019). Some of these issues are mentioned as follows-
Unknown assets on the network- There can be unknown assets on the network of an
organization. These assets may not be even relevant to the business which is done by it
(Cochran, 2017). Thus in this way this can create problems and issues for the
organization. In Aldi this is a major network security issue which is being faced by the
company and thus it creates an impact on the overall level of operations.
Abuse of User Account Privileges- Some of the people in the organization can take
advantage of the privileges granted to them as the users of the network of the firm. This
can therefore affect the firm and its business by creating an impact on it. In Aldi some of
the network users are taking an advantage of the privileges which have been given to
them and thus it creates problems and issues for the company.
Unpatched security vulnerabilities- In an organization, there may be unpatched security
vulnerabilities which mean that that they may not be addressed properly. Thus their
solution is quite important from the point of view of the firm so that it is able to keep its
data quite secure. In the context of Aldi it becomes very crucial so that the company is
able to handle the data securely and in the right manner leading to a higher-level of
efficiency and effectiveness. This is so because at present the security system of the
company is very vulnerable.
Lack of defense in depth- In a firm there may be a lack of defense in depth and thus its
systems may not be advanced to handle certain cyber attacks which can result in a loss of
data. Therefore, In Aldi this defense lacks sufficient depth thus making the company
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
prone to cyber attacks which can affect its level of operations. Thus this can create
problems and issues for the organization.
Not enough IT security management- IT security management is quite crucial for an
organization because on it there is a dependency of the entire functions of the company.
In Aldi there are different problems which are faced in this regard. Therefore in Aldi this
is a network security issue which is faced by the company and thus impacts its level of
operations.
Framework for audit and process improvement
In Aldi, there is a requirement for a detailed framework to be made so that an overall
improvement in the security can be made. The framework is explained as follows-
Selection of right processes- There is an availability of several processes which help in
the improvement of the business processes (Garrett, Anthony and Jackson, 2018). In the
context of Aldi it is quite important that a right process can be used by it so that relevant
improvement can be made without facing problems and issues.
Enlisting of executive sponsor- Finding out an executive sponsor for bringing out
improvements in the overall security of the organization is quite a task as it enables the
organizations to improve effectively and efficiently. Therefore, In Aldi it becomes
necessary that the process of finding out an executive sponsor is started so that processes
can be improved.
Staff the project- Internal teams can be made in the organization for auditing on the
problems which are being faced in data security and systems so that the rectification steps
can be taken effectively and efficiently (George, Bley and Pellegrino, 2019). Thus, in the
context of Aldi it is highly important that the project is started and the issues which are
being faced in these areas are identified so that appropriate actions are taken.
Establishing Benchmarks- Different types of benchmarks and standards can be set so
that the organization is able to act upon them and thus is able to raise its overall level of
efficiency and effectiveness without facing problems and issues (Heidelberger and et.al.,
2017). Thus, In Aldi it is highly necessary that the proper benchmarking is done so that
the company is able to achieve its goals and objectives related to data and services
security.
Identification of improvement opportunities- The internal audit teams which have
been made in the organizations can identify the relevant improvement opportunities
which can be used so that the desired improvements can be made easily in the
organization. Therefore, in the context of Aldi it becomes crucial that these opportunities
are identified and the relevant actions are taken so that the desired improvement can be
made effectively and efficiently.
Test Transactions- There is various transactions which occur within an organization. To
reduce the possibility of errors and frauds in these transactions it is quite important for a
company to ensure that they are tested and thus by testing them the firm can be able to
problems and issues for the organization.
Not enough IT security management- IT security management is quite crucial for an
organization because on it there is a dependency of the entire functions of the company.
In Aldi there are different problems which are faced in this regard. Therefore in Aldi this
is a network security issue which is faced by the company and thus impacts its level of
operations.
Framework for audit and process improvement
In Aldi, there is a requirement for a detailed framework to be made so that an overall
improvement in the security can be made. The framework is explained as follows-
Selection of right processes- There is an availability of several processes which help in
the improvement of the business processes (Garrett, Anthony and Jackson, 2018). In the
context of Aldi it is quite important that a right process can be used by it so that relevant
improvement can be made without facing problems and issues.
Enlisting of executive sponsor- Finding out an executive sponsor for bringing out
improvements in the overall security of the organization is quite a task as it enables the
organizations to improve effectively and efficiently. Therefore, In Aldi it becomes
necessary that the process of finding out an executive sponsor is started so that processes
can be improved.
Staff the project- Internal teams can be made in the organization for auditing on the
problems which are being faced in data security and systems so that the rectification steps
can be taken effectively and efficiently (George, Bley and Pellegrino, 2019). Thus, in the
context of Aldi it is highly important that the project is started and the issues which are
being faced in these areas are identified so that appropriate actions are taken.
Establishing Benchmarks- Different types of benchmarks and standards can be set so
that the organization is able to act upon them and thus is able to raise its overall level of
efficiency and effectiveness without facing problems and issues (Heidelberger and et.al.,
2017). Thus, In Aldi it is highly necessary that the proper benchmarking is done so that
the company is able to achieve its goals and objectives related to data and services
security.
Identification of improvement opportunities- The internal audit teams which have
been made in the organizations can identify the relevant improvement opportunities
which can be used so that the desired improvements can be made easily in the
organization. Therefore, in the context of Aldi it becomes crucial that these opportunities
are identified and the relevant actions are taken so that the desired improvement can be
made effectively and efficiently.
Test Transactions- There is various transactions which occur within an organization. To
reduce the possibility of errors and frauds in these transactions it is quite important for a
company to ensure that they are tested and thus by testing them the firm can be able to
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
ensure that the transactions are handled in a smooth manner and higher-level of
efficiency and effectiveness is maintained. In Aldi this can be very useful so that the
company is able to maintain a proper and detailed track record of its overall transactions
without problems and issues.
Action plan
For facilitating an improvement in Data and Services Security in Aldi, a detailed action
plan will be required (Higgs, 2016). Therefore by preparing this action plan the company will be
able to take the desired actions in the right manner so that the Data and Services Security is
improved. The Action plan for this purpose is as follows-
Particulars Actions to be taken
Internal audit Formation of Internal audit teams
within the organization.
Identification of problems and issues in
Data and Services Security in the
organization.
Setting benchmarks and standards Identification of IT security needs of
departments like Production, HR,
Finance, Marketing, Sales etc.
Setting of benchmarks and standards
for the IT security needs of these
departments.
Encryption of data Encryption of data of the different
departments and setting of different
passwords for each department so that
the data can be protected.
Ensuring cyber security in the servers
of each department of the organization
to ensure that the malicious attacks on
the data and services security are
quickly identified and the necessary
actions are taken so as to protect the
confidential data of the company from
the attack of the outsiders.
Data Authentication Multi-factor data authentication process
to be brought for the different
departments of the organization so that
the data stays fully secured from the
outside cyber attacks.
Enabling of this authentication in the
overall processes of the organization
thereby allowing more efficiency and
effectiveness in the handling of the
operations in a smooth manner.
efficiency and effectiveness is maintained. In Aldi this can be very useful so that the
company is able to maintain a proper and detailed track record of its overall transactions
without problems and issues.
Action plan
For facilitating an improvement in Data and Services Security in Aldi, a detailed action
plan will be required (Higgs, 2016). Therefore by preparing this action plan the company will be
able to take the desired actions in the right manner so that the Data and Services Security is
improved. The Action plan for this purpose is as follows-
Particulars Actions to be taken
Internal audit Formation of Internal audit teams
within the organization.
Identification of problems and issues in
Data and Services Security in the
organization.
Setting benchmarks and standards Identification of IT security needs of
departments like Production, HR,
Finance, Marketing, Sales etc.
Setting of benchmarks and standards
for the IT security needs of these
departments.
Encryption of data Encryption of data of the different
departments and setting of different
passwords for each department so that
the data can be protected.
Ensuring cyber security in the servers
of each department of the organization
to ensure that the malicious attacks on
the data and services security are
quickly identified and the necessary
actions are taken so as to protect the
confidential data of the company from
the attack of the outsiders.
Data Authentication Multi-factor data authentication process
to be brought for the different
departments of the organization so that
the data stays fully secured from the
outside cyber attacks.
Enabling of this authentication in the
overall processes of the organization
thereby allowing more efficiency and
effectiveness in the handling of the
operations in a smooth manner.
Data Backups and Update A regular backup of the data to be kept
in the company so that the data can be
used properly thereby allowing their
usage if required.
Regular updates to be given to the Data
backups so that the processes can be
improved thus ensuring the attainment
of higher-level of data security within
the company.
Vigilance Vigilance to be kept by making the use
of Vigilance software which will
identify any problems and issues if they
occur in the data security of the
different departments of the
organization.
Vigilance reports to be generated
regularly to update the security of the
departments of the company and to
ensure that the data of these
departments stays safe and secure from
the outsider cyber attacks. These
reports can be generated according to
the needs and requirements of the
managers of the company.
Monitoring and Control Regular monitoring of the Data and
Services Security system to be done
and the staff members who are looking
after it must be assessed regularly on
their overall level of performance in
keeping the recorded updated.
Regular control of the Data and
Services Security system to be kept and
if deviations and variations from the set
benchmarks and standards are
witnessed then rectifying actions are
required to be taken so that these
deviations and variations can be
removed leading towards an
enhancement in the overall level of
performance of the company in
ensuring Data and Services Security.
Need of business to keep data secure-
in the company so that the data can be
used properly thereby allowing their
usage if required.
Regular updates to be given to the Data
backups so that the processes can be
improved thus ensuring the attainment
of higher-level of data security within
the company.
Vigilance Vigilance to be kept by making the use
of Vigilance software which will
identify any problems and issues if they
occur in the data security of the
different departments of the
organization.
Vigilance reports to be generated
regularly to update the security of the
departments of the company and to
ensure that the data of these
departments stays safe and secure from
the outsider cyber attacks. These
reports can be generated according to
the needs and requirements of the
managers of the company.
Monitoring and Control Regular monitoring of the Data and
Services Security system to be done
and the staff members who are looking
after it must be assessed regularly on
their overall level of performance in
keeping the recorded updated.
Regular control of the Data and
Services Security system to be kept and
if deviations and variations from the set
benchmarks and standards are
witnessed then rectifying actions are
required to be taken so that these
deviations and variations can be
removed leading towards an
enhancement in the overall level of
performance of the company in
ensuring Data and Services Security.
Need of business to keep data secure-
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
The businesses have to make sure that they keep their data well-secure from the cyber
attack of the outsiders (Jomeen, Jarrett and Martin, 2018). Therefore it is important for them so
that it ensures that the usage of data is made in the right manner. Their need for keeping the data
secure is explained as follows-
Removal of data breaches- In an organization there may be a number of data breaches
(Prentakis and et.al., 2016). This can affect its prospects as a lot of sensitive data related
to the operations and management can be leaked which can be misused. Thus as Aldi is a
big retail company it has to ensure that it is able to remove these data breaches without
facing problems and issues.
Prevents loss of revenue- In the event of data leakage of the organization and its
operations there is a threat of potential loss of revenue to it. Therefore, in the context of
Aldi it is important that this loss is prevented. This can be done by bringing relevant
improvements in Data security systems so that they stay up-to-date and can protect the
data of the company from outside attacks.
Protection of customer’s privacy- The customers are very crucial as well as important
for any organization. Thus, In Aldi also they are quite important so that the company is
able to act in their interest and thus is able to ensure the protection of privacy of the
customers in a highly effective manner.
Maintaining and Improving Brand Value- Brand Value is an important factor which is
considered by all the brands. Thus, In Aldi it is an important factor which impacts the
data security of the organization. It has to make sure that it uses Advanced IT systems to
protect its data which will contribute towards maintaining and improving Brand Value in
front of its various customers.
Support to organization’s code of ethics- A support can be provided to an
organization’s code of ethics because they are important to be followed in the
organizations. Therefore, in the context of Aldi it is important that it sets a code of ethics
for using its data so that its data can be safe and secure.
Competitive advantage- Use of a strong IT system to keep the data of the company well
safe and secure renders a competitive advantage to an organization as compared to the
competitors in the market (Ryley and Middleton, 2016). Thus, for Aldi it is important
because by applying this system in the right way a competitive advantage can be
achieved by the organization over its different types of rivals who exist in the market,
This will lead the company towards the attainment of strategic edge over its competitors.
CONCLUSION
From the above report, it can be concluded that Professional Issues and Practice is a
diverse field which is required so that the organizations are able to achieve sustainable growth in
the market. There are different types of issues which are faced in Network security. There is also
a process for audit and process management. An action plan allows the organizations to prepare a
attack of the outsiders (Jomeen, Jarrett and Martin, 2018). Therefore it is important for them so
that it ensures that the usage of data is made in the right manner. Their need for keeping the data
secure is explained as follows-
Removal of data breaches- In an organization there may be a number of data breaches
(Prentakis and et.al., 2016). This can affect its prospects as a lot of sensitive data related
to the operations and management can be leaked which can be misused. Thus as Aldi is a
big retail company it has to ensure that it is able to remove these data breaches without
facing problems and issues.
Prevents loss of revenue- In the event of data leakage of the organization and its
operations there is a threat of potential loss of revenue to it. Therefore, in the context of
Aldi it is important that this loss is prevented. This can be done by bringing relevant
improvements in Data security systems so that they stay up-to-date and can protect the
data of the company from outside attacks.
Protection of customer’s privacy- The customers are very crucial as well as important
for any organization. Thus, In Aldi also they are quite important so that the company is
able to act in their interest and thus is able to ensure the protection of privacy of the
customers in a highly effective manner.
Maintaining and Improving Brand Value- Brand Value is an important factor which is
considered by all the brands. Thus, In Aldi it is an important factor which impacts the
data security of the organization. It has to make sure that it uses Advanced IT systems to
protect its data which will contribute towards maintaining and improving Brand Value in
front of its various customers.
Support to organization’s code of ethics- A support can be provided to an
organization’s code of ethics because they are important to be followed in the
organizations. Therefore, in the context of Aldi it is important that it sets a code of ethics
for using its data so that its data can be safe and secure.
Competitive advantage- Use of a strong IT system to keep the data of the company well
safe and secure renders a competitive advantage to an organization as compared to the
competitors in the market (Ryley and Middleton, 2016). Thus, for Aldi it is important
because by applying this system in the right way a competitive advantage can be
achieved by the organization over its different types of rivals who exist in the market,
This will lead the company towards the attainment of strategic edge over its competitors.
CONCLUSION
From the above report, it can be concluded that Professional Issues and Practice is a
diverse field which is required so that the organizations are able to achieve sustainable growth in
the market. There are different types of issues which are faced in Network security. There is also
a process for audit and process management. An action plan allows the organizations to prepare a
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
strategy for succeeding it in the future. Also, there is a need of the businesses so that their data is
kept well-secured.
kept well-secured.
REFERENCES
Books and Journals:
Brooke, P. and et.al., 2018. Becoming Professional A University Perspective. ITNow. 60(2).
pp.16-17.
Choe, N. H. and et.al., 2019. Professional aspects of engineering: improving prediction of
undergraduates’ engineering identity. Journal of Professional Issues in Engineering Education
and Practice. 145(3). p.04019006.
Cochran, C., 2017. Effectiveness and Best Practice Of Nurse Residency Programs: A Literature
Review. Medsurg Nursing. 26(1).
Garrett, B. M., Anthony, J. and Jackson, C., 2018. Using mobile augmented reality to enhance
health professional practice education. Current Issues in Emerging eLearning. 4(1). p.10.
George, A. C., Bley, S. and Pellegrino, J., 2019. Characterizing and Diagnosing Complex
Professional Competencies—An Example of Intrapreneurship. Educational Measurement: Issues
and Practice. 38(2). pp.89-100.
Heidelberger, L. and et.al., 2017. Registered dietitian nutritionists’ perspectives on integrating
food and water system issues into professional practice. Journal of the Academy of Nutrition and
Dietetics. 117(2). pp.271-277.
Higgs, J., 2016. Professional practice discourse. In Professional practice discourse
marginalia (pp. 1-10). Brill Sense.
Jomeen, J., Jarrett, P. and Martin, C., 2018. Professional issues in maternal mental health scale
(PIMMHS): The development and initial validation of a brief and valid measure. European
Journal of Midwifery, 2(February).
Prentakis, A. G. and et.al., 2016. Education, training, and professional issues of radiographers in
six European countries: a comparative review. Journal of European CME. 5(1). p.31092.
Ryley, N. and Middleton, C., 2016. Framework for advanced nursing, midwifery and allied
health professional practice in Wales: the implementation process. Journal of Nursing
Management. 24(1). pp.E70-E76.
Books and Journals:
Brooke, P. and et.al., 2018. Becoming Professional A University Perspective. ITNow. 60(2).
pp.16-17.
Choe, N. H. and et.al., 2019. Professional aspects of engineering: improving prediction of
undergraduates’ engineering identity. Journal of Professional Issues in Engineering Education
and Practice. 145(3). p.04019006.
Cochran, C., 2017. Effectiveness and Best Practice Of Nurse Residency Programs: A Literature
Review. Medsurg Nursing. 26(1).
Garrett, B. M., Anthony, J. and Jackson, C., 2018. Using mobile augmented reality to enhance
health professional practice education. Current Issues in Emerging eLearning. 4(1). p.10.
George, A. C., Bley, S. and Pellegrino, J., 2019. Characterizing and Diagnosing Complex
Professional Competencies—An Example of Intrapreneurship. Educational Measurement: Issues
and Practice. 38(2). pp.89-100.
Heidelberger, L. and et.al., 2017. Registered dietitian nutritionists’ perspectives on integrating
food and water system issues into professional practice. Journal of the Academy of Nutrition and
Dietetics. 117(2). pp.271-277.
Higgs, J., 2016. Professional practice discourse. In Professional practice discourse
marginalia (pp. 1-10). Brill Sense.
Jomeen, J., Jarrett, P. and Martin, C., 2018. Professional issues in maternal mental health scale
(PIMMHS): The development and initial validation of a brief and valid measure. European
Journal of Midwifery, 2(February).
Prentakis, A. G. and et.al., 2016. Education, training, and professional issues of radiographers in
six European countries: a comparative review. Journal of European CME. 5(1). p.31092.
Ryley, N. and Middleton, C., 2016. Framework for advanced nursing, midwifery and allied
health professional practice in Wales: the implementation process. Journal of Nursing
Management. 24(1). pp.E70-E76.
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
1 out of 9
Related Documents
Your All-in-One AI-Powered Toolkit for Academic Success.
+13062052269
info@desklib.com
Available 24*7 on WhatsApp / Email
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
Unlock your academic potential
Copyright © 2020–2025 A2Z Services. All Rights Reserved. Developed and managed by ZUCOL.