Case Study: Cyberattack Challenges in NHS WannaCry Ransomware
VerifiedAdded on 2023/06/18
|28
|8910
|137
Case Study
AI Summary
This case study examines the cyberattack challenges faced by organizations, focusing on the 2017 WannaCry ransomware attack on the National Health Service (NHS) in the United Kingdom. It begins by introducing cyberattacks and their potential impacts, highlighting the increasing threats and vulnerabilities in organizational networks. The study then delves into the specific challenges NHS encountered during the WannaCry attack, including disruptions to patient care, data breaches, and financial losses. Furthermore, the study reviews various systems and controls that can mitigate cyberattacks, such as crimeware prevention, espionage countermeasures, fraud detection, and botnet defense strategies. It concludes by emphasizing the importance of human awareness and robust security systems in safeguarding organizations against evolving cyber threats. Desklib provides resources like this case study to aid students in their studies.
Cyberattack challenges in an
organizational landscape. A
case for NHS 2017 WannaCry
ransomware attack.
organizational landscape. A
case for NHS 2017 WannaCry
ransomware attack.
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Contents
INTRODUCTION.....................................................................................................................................3
Aims and Objectives..................................................................................................................................4
Literature Review......................................................................................................................................5
Different cyber-attack challenges faced by NHS.....................................................................................5
System to mitigate various attacks/ challenges........................................................................................6
Different the controls available for different types of cyber-attacks........................................................7
Methodology and Approach.....................................................................................................................9
Results and Findings...............................................................................................................................13
Analysis and Conclusions........................................................................................................................20
REFERENCES........................................................................................................................................24
Appendix..................................................................................................................................................26
INTRODUCTION.....................................................................................................................................3
Aims and Objectives..................................................................................................................................4
Literature Review......................................................................................................................................5
Different cyber-attack challenges faced by NHS.....................................................................................5
System to mitigate various attacks/ challenges........................................................................................6
Different the controls available for different types of cyber-attacks........................................................7
Methodology and Approach.....................................................................................................................9
Results and Findings...............................................................................................................................13
Analysis and Conclusions........................................................................................................................20
REFERENCES........................................................................................................................................24
Appendix..................................................................................................................................................26
INTRODUCTION
Cyber attacks can be referred to as the strategies that are developed or an attempt that is
made by the hackers to damage or destroy a network of computers or a computer system. It can
maliciously disable the computers or steal data. Cyber-attacks can impact a network of
computers or a single computer in a negative manner (Aquilina and et.al., 2021). This is because
they can cause electrical blackouts, result in theft or sensitive as well as valuable data as well as
paralyze the computer system which can lead to making the data unavailable. Cybercrimes on
the other hand, also referred to as a computer crime can be referred to as using a computer
instrument in order to commit s fraud, stealing identities or violating privacy. One of the primary
effects of cyber-crime is the financial impact and this can include different types of criminal
frauds that are profit driven such as ransomware attacks, internet as well as email fraud as well as
identity fraud. There has been a tremendous increase in the devices, clouds as well as threats to
security in an organization. There are various types of cyber-attacks that organizations can face
such as ransomware attacks, email and internet fraud etc.
Due to this, there are different challenges that companies have to face that can have an
impact on the overall performance of an organization (Bendiab and et.al., 2021). This is also
because there has been an increase in the amount of information available to the organizations
from the different connected devices. A lot of organizations have put in significant amounts of
efforts in order to manage the risks that are posed by cyber-attacks. NHS or National Health
Service is a healthcare organization in the United Kingdom that is publicly funded and it is an
independent body. The organization is responsible for ensuring that there is an effective system
of healthcare services available for the people. The organization was founded in the year 1948
and is headquartered in London, United Kingdom. The respective report explains the various
cyber-attacks that organizations are facing as well as the challenges and issues related to the
same. Apart from this, the report also explains the impact of these challenges on various
organization. Lastly, there is also an explanation about the various controls that are in existence
to the same.
The NHS turned into released in 1948. It turned into born out of a long held perfect that
accurate healthcare must be available to all, no matter wealth – a precept that stays at its center.
With the exception of a few costs inclusive of prescriptions and optical and dental offerings, the
Cyber attacks can be referred to as the strategies that are developed or an attempt that is
made by the hackers to damage or destroy a network of computers or a computer system. It can
maliciously disable the computers or steal data. Cyber-attacks can impact a network of
computers or a single computer in a negative manner (Aquilina and et.al., 2021). This is because
they can cause electrical blackouts, result in theft or sensitive as well as valuable data as well as
paralyze the computer system which can lead to making the data unavailable. Cybercrimes on
the other hand, also referred to as a computer crime can be referred to as using a computer
instrument in order to commit s fraud, stealing identities or violating privacy. One of the primary
effects of cyber-crime is the financial impact and this can include different types of criminal
frauds that are profit driven such as ransomware attacks, internet as well as email fraud as well as
identity fraud. There has been a tremendous increase in the devices, clouds as well as threats to
security in an organization. There are various types of cyber-attacks that organizations can face
such as ransomware attacks, email and internet fraud etc.
Due to this, there are different challenges that companies have to face that can have an
impact on the overall performance of an organization (Bendiab and et.al., 2021). This is also
because there has been an increase in the amount of information available to the organizations
from the different connected devices. A lot of organizations have put in significant amounts of
efforts in order to manage the risks that are posed by cyber-attacks. NHS or National Health
Service is a healthcare organization in the United Kingdom that is publicly funded and it is an
independent body. The organization is responsible for ensuring that there is an effective system
of healthcare services available for the people. The organization was founded in the year 1948
and is headquartered in London, United Kingdom. The respective report explains the various
cyber-attacks that organizations are facing as well as the challenges and issues related to the
same. Apart from this, the report also explains the impact of these challenges on various
organization. Lastly, there is also an explanation about the various controls that are in existence
to the same.
The NHS turned into released in 1948. It turned into born out of a long held perfect that
accurate healthcare must be available to all, no matter wealth – a precept that stays at its center.
With the exception of a few costs inclusive of prescriptions and optical and dental offerings, the
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
NHS in England stays free at the point of use for anybody who's a UK resident. The NHS is an
thrilling and challenging region to work. In April 2016 the NHS underwent an intensive reform
and re-shape brining new and increasingly complex challenges for NHS leaders and staff. The
NHS employs greater than 1.6million people, putting it within the top 5 of the arena’s largest
body of workers. Finance professionals have a essential position to play in the NHS and we're
currently looking to recruit some of apprentices (Boyle, 2021). The purpose of the scheme is to
attract capability excessive flyers to NHS Finance roles in those regions and to make certain that
there is an good enough pool of fantastically capable, skilled and trained finance experts with the
potential to reach senior and director degrees roles in those regions in the UK. Therefore, it can
be said that these are some of the impacts of the ransomware attack on the respective company,
NHS.
Aims and Objectives
Background of the research
Over the last few years, there is a significant increase in the number of cyber-crimes as
well as cyber-attacks. This has led to making organizations more concerned about the same
(Brett, 2021). The respective report is based on cyberattack challenges that are faced by
organization. National Health Service or NHS was hit by a ransomware attack in the year 2017
and was referred to as the WannaCry outbreak that started affect a lot of NHS facilities in 2017.
The respective report will provide the readers with an understanding about the different
challenges that can affect operations of an organization.
Aim
“To analyze the cyberattack challenges in an organizational landscape. A case for NHS
2017 WannaCry ransomware attack.”
Objectives
To analyze the different cyber-attack challenges faced by NHS.
To implement a system to mitigate various attacks/ challenges.
To identify the controls available for different types of cyber-attacks.
Research Questions
thrilling and challenging region to work. In April 2016 the NHS underwent an intensive reform
and re-shape brining new and increasingly complex challenges for NHS leaders and staff. The
NHS employs greater than 1.6million people, putting it within the top 5 of the arena’s largest
body of workers. Finance professionals have a essential position to play in the NHS and we're
currently looking to recruit some of apprentices (Boyle, 2021). The purpose of the scheme is to
attract capability excessive flyers to NHS Finance roles in those regions and to make certain that
there is an good enough pool of fantastically capable, skilled and trained finance experts with the
potential to reach senior and director degrees roles in those regions in the UK. Therefore, it can
be said that these are some of the impacts of the ransomware attack on the respective company,
NHS.
Aims and Objectives
Background of the research
Over the last few years, there is a significant increase in the number of cyber-crimes as
well as cyber-attacks. This has led to making organizations more concerned about the same
(Brett, 2021). The respective report is based on cyberattack challenges that are faced by
organization. National Health Service or NHS was hit by a ransomware attack in the year 2017
and was referred to as the WannaCry outbreak that started affect a lot of NHS facilities in 2017.
The respective report will provide the readers with an understanding about the different
challenges that can affect operations of an organization.
Aim
“To analyze the cyberattack challenges in an organizational landscape. A case for NHS
2017 WannaCry ransomware attack.”
Objectives
To analyze the different cyber-attack challenges faced by NHS.
To implement a system to mitigate various attacks/ challenges.
To identify the controls available for different types of cyber-attacks.
Research Questions
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
What are the different cyber-attack challenges faced by NHS?
What is the system to mitigate various attacks/ challenges?
What are the different the controls available for different types of cyber-attacks?
Expected Research Outcome
The expected research outcome of the respected research is to provide the readers with an
understanding of the various challenges that NHS has to face because of the ransomware attack
as well as different controls that are available for different types of cyber-attacks. Besides this, it
is also expected that the respective research will provide an effective understanding about the
different control measures that are available for the different types of cyber-attacks.
Literature Review
Different cyber-attack challenges faced by NHS
Cyber-attacks can lead to various challenges and can have a drastic impact on the overall
performance of an organization. This is because a cyber-attack can be conducted to obtain useful
information or to steal identity (Calderon and Gao, 2021). The WannaCry ransomware attack
that the respective company NHS faced was not directly targeted at the organization. WannaCry
is one of the most well-known ransomware attacks that affect not only NHS, but also several
other companies. It posed various challenges to the respective company such as the organization
could not access the files across its different facilities. This was a big challenge because being
one of the largest healthcare organizations in the United Kingdom and This was also because
more than 60 NHS trusts were affected by the ransomware attack. One of the other challenges
was that many facilities were not able to access the records of the patients and hence, this led to
delays in of surgeries as well as cancellations of patients’ appointments. There were some
hospitals who had to divert their ambulances to other locations. In all, it can be said that the
ransomware attack posed a lot of challenges for NHS.
The WannaCry ransomware attack had a negative impact on the overall performance of
NHS (Djenna, Harous and Saidouni, 2021). The organization had to face the challenge of a
significant decline in the number of admissions that were made to the hospitals. The ransomware
attack had an impact on a large number of computer networks and this led to huge amounts of
losses for the respective organization. As already mentioned, the patients were not able to book
What is the system to mitigate various attacks/ challenges?
What are the different the controls available for different types of cyber-attacks?
Expected Research Outcome
The expected research outcome of the respected research is to provide the readers with an
understanding of the various challenges that NHS has to face because of the ransomware attack
as well as different controls that are available for different types of cyber-attacks. Besides this, it
is also expected that the respective research will provide an effective understanding about the
different control measures that are available for the different types of cyber-attacks.
Literature Review
Different cyber-attack challenges faced by NHS
Cyber-attacks can lead to various challenges and can have a drastic impact on the overall
performance of an organization. This is because a cyber-attack can be conducted to obtain useful
information or to steal identity (Calderon and Gao, 2021). The WannaCry ransomware attack
that the respective company NHS faced was not directly targeted at the organization. WannaCry
is one of the most well-known ransomware attacks that affect not only NHS, but also several
other companies. It posed various challenges to the respective company such as the organization
could not access the files across its different facilities. This was a big challenge because being
one of the largest healthcare organizations in the United Kingdom and This was also because
more than 60 NHS trusts were affected by the ransomware attack. One of the other challenges
was that many facilities were not able to access the records of the patients and hence, this led to
delays in of surgeries as well as cancellations of patients’ appointments. There were some
hospitals who had to divert their ambulances to other locations. In all, it can be said that the
ransomware attack posed a lot of challenges for NHS.
The WannaCry ransomware attack had a negative impact on the overall performance of
NHS (Djenna, Harous and Saidouni, 2021). The organization had to face the challenge of a
significant decline in the number of admissions that were made to the hospitals. The ransomware
attack had an impact on a large number of computer networks and this led to huge amounts of
losses for the respective organization. As already mentioned, the patients were not able to book
their appointments at the hospitals. And also, the hospital staff also faced difficulties with
analyzing as well as assessing the records of the patients that were maintained. Besides this,
there was also financial loss that the respective organization, NHS had to face. It can be said that
cyber-attacks can have a direct impact on not only the operations of an organization, but can also
lead to an increase in the overall challenges. And as far as NHS is concerned, the organization
was affected to a great extent by the WannaCry ransomware attack.
The WannaCry ransomware attack also posed various other challenges to NHS such as
there was a leak of a lot of information (Formosa, Wilson and Richards, 2021). An ordinary
cyber insurance policy will guard organizations in opposition to extortion which includes
ransomware assaults. But, alternatively worryingly, maximum corporations outside the U.S.
Nevertheless don’t have cyber cover. Nearly 9 out of 10 cyber coverage rules within the world
are in the U.S. – in component due to greater flair for litigation in the United States and breach
notification laws putting responsibilities on groups. The upcoming European Union General Data
Protection Regulation (GDPR), because of be implemented in May 2018, is probable to increase
cyber coverage penetration in Europe – but EU companies nevertheless lag behind. However,
insurance isn't always a catch-all answer, and it's far crucial for policyholders to apprehend the
limitations in their insurance applications. Many policies have a deductible more than $300, so
the WannaCry ransom charge itself would no longer be blanketed. And even though there are
appropriate insurance offers, it’s important policyholders apprehend how they work.
System to mitigate various attacks/ challenges
There can be different systems that can be used by the hackers in order to mitigate the
various attacks and challenges. Therefore, it is important to mitigate the same and there are
different techniques that can be adopted. The same are explained below –
Crimeware - This consists of all styles of malware designed to automate cybercrime,
with Ransomware being the maximum prominent example (Jabbar, Prasad and Aluvalu, 2021).
For the crook, launching an assault and conserving documents for ransom is incredibly speedy,
of low danger and smooth to capitalize on — specially with cryptocurrency such as Bitcoin that
allows them to anonymously pocket bills. It all starts with constant patching and stressing the
importance of software program updates – that applies no longer best for the cutting-edge anti-
virus patterns, however also for packages and even the working device itself. There are different
analyzing as well as assessing the records of the patients that were maintained. Besides this,
there was also financial loss that the respective organization, NHS had to face. It can be said that
cyber-attacks can have a direct impact on not only the operations of an organization, but can also
lead to an increase in the overall challenges. And as far as NHS is concerned, the organization
was affected to a great extent by the WannaCry ransomware attack.
The WannaCry ransomware attack also posed various other challenges to NHS such as
there was a leak of a lot of information (Formosa, Wilson and Richards, 2021). An ordinary
cyber insurance policy will guard organizations in opposition to extortion which includes
ransomware assaults. But, alternatively worryingly, maximum corporations outside the U.S.
Nevertheless don’t have cyber cover. Nearly 9 out of 10 cyber coverage rules within the world
are in the U.S. – in component due to greater flair for litigation in the United States and breach
notification laws putting responsibilities on groups. The upcoming European Union General Data
Protection Regulation (GDPR), because of be implemented in May 2018, is probable to increase
cyber coverage penetration in Europe – but EU companies nevertheless lag behind. However,
insurance isn't always a catch-all answer, and it's far crucial for policyholders to apprehend the
limitations in their insurance applications. Many policies have a deductible more than $300, so
the WannaCry ransom charge itself would no longer be blanketed. And even though there are
appropriate insurance offers, it’s important policyholders apprehend how they work.
System to mitigate various attacks/ challenges
There can be different systems that can be used by the hackers in order to mitigate the
various attacks and challenges. Therefore, it is important to mitigate the same and there are
different techniques that can be adopted. The same are explained below –
Crimeware - This consists of all styles of malware designed to automate cybercrime,
with Ransomware being the maximum prominent example (Jabbar, Prasad and Aluvalu, 2021).
For the crook, launching an assault and conserving documents for ransom is incredibly speedy,
of low danger and smooth to capitalize on — specially with cryptocurrency such as Bitcoin that
allows them to anonymously pocket bills. It all starts with constant patching and stressing the
importance of software program updates – that applies no longer best for the cutting-edge anti-
virus patterns, however also for packages and even the working device itself. There are different
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
macro-enabled MS Office documents and teach users in no way to click on suspicious
hyperlinks. Also, create backups often as a way to redeploy clean pix if wished.
Espionage – Increasingly, state-affiliated actors are entering the scene aiming to gather
intelligence or aid their local economy, for example. Whether it’s a malicious e-mail or other
types of malware that paves the way in, this is usually followed by tactics aimed at blending in,
giving the hacker time to quietly capture the desired digital assets. In order to mitigate the attach
one can conduct regular security awareness training and encourage your teams to report phishy
e-mails (Jimada and et.al., 2021). Make it difficult for the adversary to jump from a rigged
machine to other devices on your network. Apart from leveraging networking security to prevent
unauthorized access in the first place, again close monitoring will help you to discover
suspicious activities. If a person has reasons to believe that there have been attempts or an attack
is underway, get the authorities involved quickly.
Fraud - An emerging tactic consists of suspicious e-mails wherein “the CEO” or any
other senior official suddenly orders wire transfers with an pressing and believable again-story.
While it would sound simple, regrettably it frequently works. The groups must be informed — in
particular in finance — that nobody will request a price via an unauthorized manner. Moreover,
ask IT to mark outside e-mails with an unmistakable stamp.
Botnets - Botnets are the hundreds of thousands of structures infected with malware
below hacker manipulate as a way to carry out DDoS assaults. These bots or zombie structures
are used to carry out attacks towards the goal systems, often overwhelming the goal system’s
bandwidth and processing competencies (Jofre, Navarro-Llobet and et.al., 2021). These DDoS
attacks are hard to trace due to the fact botnets are located in differing geographic locations. A
replay attack occurs while an attacker intercepts and saves antique messages and then attempts to
send them later, impersonating one of the individuals. This kind can be without problems
countered with session timestamps or nonce (a random range or a string that adjustments with
time).
Different the controls available for different types of cyber-attacks
Human beings are nevertheless the weakest hyperlink in any employer’s virtual
protection device. People make errors, overlook things, or fall for fraudulent practices. That’s
where cyber safety cognizance comes in. This includes the method of instructing employees on
hyperlinks. Also, create backups often as a way to redeploy clean pix if wished.
Espionage – Increasingly, state-affiliated actors are entering the scene aiming to gather
intelligence or aid their local economy, for example. Whether it’s a malicious e-mail or other
types of malware that paves the way in, this is usually followed by tactics aimed at blending in,
giving the hacker time to quietly capture the desired digital assets. In order to mitigate the attach
one can conduct regular security awareness training and encourage your teams to report phishy
e-mails (Jimada and et.al., 2021). Make it difficult for the adversary to jump from a rigged
machine to other devices on your network. Apart from leveraging networking security to prevent
unauthorized access in the first place, again close monitoring will help you to discover
suspicious activities. If a person has reasons to believe that there have been attempts or an attack
is underway, get the authorities involved quickly.
Fraud - An emerging tactic consists of suspicious e-mails wherein “the CEO” or any
other senior official suddenly orders wire transfers with an pressing and believable again-story.
While it would sound simple, regrettably it frequently works. The groups must be informed — in
particular in finance — that nobody will request a price via an unauthorized manner. Moreover,
ask IT to mark outside e-mails with an unmistakable stamp.
Botnets - Botnets are the hundreds of thousands of structures infected with malware
below hacker manipulate as a way to carry out DDoS assaults. These bots or zombie structures
are used to carry out attacks towards the goal systems, often overwhelming the goal system’s
bandwidth and processing competencies (Jofre, Navarro-Llobet and et.al., 2021). These DDoS
attacks are hard to trace due to the fact botnets are located in differing geographic locations. A
replay attack occurs while an attacker intercepts and saves antique messages and then attempts to
send them later, impersonating one of the individuals. This kind can be without problems
countered with session timestamps or nonce (a random range or a string that adjustments with
time).
Different the controls available for different types of cyber-attacks
Human beings are nevertheless the weakest hyperlink in any employer’s virtual
protection device. People make errors, overlook things, or fall for fraudulent practices. That’s
where cyber safety cognizance comes in. This includes the method of instructing employees on
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
the exclusive cyber safety dangers and threats available, in addition to potential vulnerable spots.
Employees should analyze the satisfactory practices and tactics for keeping networks and facts
secure and the outcomes of no longer doing so. These consequences might also consist of losing
one’s job, criminal penalties, or even irreparable harm to the employer. By making personnel
aware about the scope of the threats and what’s at stake if security fails, cyber safety
professionals can shore up this capacity vulnerability. First and main, a body of workers well-
educated in cyber security poses less of a chance to the overall protection of an enterprise’s
virtual network.
Fewer risks suggest fewer monetary losses due to cyber-crime. Therefore, a organisation
that allocates budget for cyber security attention education for employees need to experience a
go back on that funding (Kaur and Lashkari, 2021). Furthermore, if all personnel get schooling in
cyber protection practices, there may be less chance of lapses in protection have to someone go
away the organization. In other phrases, you’ll lessen the chances that a protection breach takes
place because a critical worker wasn’t at paintings that day. Finally, a organisation with
protection-conscious personnel could have a higher reputation with consumers, on account that
most are reluctant to do enterprise with an untrustworthy company. A commercial enterprise this
is time and again subject to protection breaches will lose customers as a result of negative
publicity, regardless of the actual effect of any particular breach.
Different cities, states, and international locations have one-of-a-kind policies and
guidelines to follow (Kolokotronis and Shiaeles, 2021). Everyone must end up privy to those
policies due to the fact lack of understanding of the law isn't always an good enough
protection.T’s all or not anything. Anyone now not taking part within the new security measures
constitutes a possible vulnerable hyperlink. If all and sundry isn’t completely engaged, it’s
concerned with not anything. This precise practice additionally assumes that all departments
(e.G., HR, Legal, Security) should buy-in and assist make it a truth. Employees need to be
suspicious of emails from unrecognizable assets. Phishing scams use emails to gain get right of
entry to to structures and wreak havoc. Employees should be knowledgeable on things like
suspicious links, attachments, and untrustworthy sources. There’s no excuse for having the
phrase “password” as your password. They need to be at least eight characters long, with both
higher and lower case letters, numbers, and at the very least one unique man or woman. Avoid
Employees should analyze the satisfactory practices and tactics for keeping networks and facts
secure and the outcomes of no longer doing so. These consequences might also consist of losing
one’s job, criminal penalties, or even irreparable harm to the employer. By making personnel
aware about the scope of the threats and what’s at stake if security fails, cyber safety
professionals can shore up this capacity vulnerability. First and main, a body of workers well-
educated in cyber security poses less of a chance to the overall protection of an enterprise’s
virtual network.
Fewer risks suggest fewer monetary losses due to cyber-crime. Therefore, a organisation
that allocates budget for cyber security attention education for employees need to experience a
go back on that funding (Kaur and Lashkari, 2021). Furthermore, if all personnel get schooling in
cyber protection practices, there may be less chance of lapses in protection have to someone go
away the organization. In other phrases, you’ll lessen the chances that a protection breach takes
place because a critical worker wasn’t at paintings that day. Finally, a organisation with
protection-conscious personnel could have a higher reputation with consumers, on account that
most are reluctant to do enterprise with an untrustworthy company. A commercial enterprise this
is time and again subject to protection breaches will lose customers as a result of negative
publicity, regardless of the actual effect of any particular breach.
Different cities, states, and international locations have one-of-a-kind policies and
guidelines to follow (Kolokotronis and Shiaeles, 2021). Everyone must end up privy to those
policies due to the fact lack of understanding of the law isn't always an good enough
protection.T’s all or not anything. Anyone now not taking part within the new security measures
constitutes a possible vulnerable hyperlink. If all and sundry isn’t completely engaged, it’s
concerned with not anything. This precise practice additionally assumes that all departments
(e.G., HR, Legal, Security) should buy-in and assist make it a truth. Employees need to be
suspicious of emails from unrecognizable assets. Phishing scams use emails to gain get right of
entry to to structures and wreak havoc. Employees should be knowledgeable on things like
suspicious links, attachments, and untrustworthy sources. There’s no excuse for having the
phrase “password” as your password. They need to be at least eight characters long, with both
higher and lower case letters, numbers, and at the very least one unique man or woman. Avoid
errors along with writing the password on a publish-it word and attaching it to your computer.
This includes the whole thing from physical access on your agency’s IT department to preserving
your business enterprise-issued cell gadgets and laptops locked and within reach at all times. It’s
vital to raise everyone’s consciousness of hazards, which include tries at manipulating
employees into granting system get entry to or divulging private corporation records. This
practice is especially critical for middle and higher control. The better need to be kept inside the
loop, apprised of the current development, and, in uncommon times, document if any individual
or department isn’t compliant.
Methodology and Approach
Research Philosophy – Research philosophy can be defined as the belief regarding how
the research should be conducted, the data should be gathered, analyzed and used. It can be said
that there are two types of research philosophies, interpretivism as well as positivism.
Interpretivism helps the researcher in interpreting the different elements of the study
(Kouloufakos, 2021). On the other hand, positivism is another type of research philosophy that
can help the researcher in completing the research in an effective manner. Positivists accept as
true with society shapes the individual and use quantitative techniques, intepretivists agree with
individuals shape society and use qualitative strategies. Positivist prefer medical quantitative
strategies, whilst Interpretivists opt for humanistic qualitative techniques. Interpretivism, an
approach to social technology that opposes the positivism of herbal technological know-how.
Qualitative research, a method of inquiry in social science and related disciplines.
Research Approach – Research approach can be referred to as the methods as well as
techniques that are used in order to complete the research project in an effective manner.
Research approach is important and guides the researcher to achieve the research goals as well as
objectives. There are different types of research such as inductive as well as deductive approach.
The research approach is a plan and manner that includes the steps of wide assumptions to
unique methods of records collection, analysis, and interpretation (Kristen and et.al., 2021). The
studies technique is essentially divided into categories: the technique of records collection and.
The method of records evaluation or reasoning. Choosing an inductive method thru thematic
evaluation (a records-driven’ method) for the observe determines that the objective of the
examine is to achieve an expertise of a phenomenon. It does not attention on testing the
This includes the whole thing from physical access on your agency’s IT department to preserving
your business enterprise-issued cell gadgets and laptops locked and within reach at all times. It’s
vital to raise everyone’s consciousness of hazards, which include tries at manipulating
employees into granting system get entry to or divulging private corporation records. This
practice is especially critical for middle and higher control. The better need to be kept inside the
loop, apprised of the current development, and, in uncommon times, document if any individual
or department isn’t compliant.
Methodology and Approach
Research Philosophy – Research philosophy can be defined as the belief regarding how
the research should be conducted, the data should be gathered, analyzed and used. It can be said
that there are two types of research philosophies, interpretivism as well as positivism.
Interpretivism helps the researcher in interpreting the different elements of the study
(Kouloufakos, 2021). On the other hand, positivism is another type of research philosophy that
can help the researcher in completing the research in an effective manner. Positivists accept as
true with society shapes the individual and use quantitative techniques, intepretivists agree with
individuals shape society and use qualitative strategies. Positivist prefer medical quantitative
strategies, whilst Interpretivists opt for humanistic qualitative techniques. Interpretivism, an
approach to social technology that opposes the positivism of herbal technological know-how.
Qualitative research, a method of inquiry in social science and related disciplines.
Research Approach – Research approach can be referred to as the methods as well as
techniques that are used in order to complete the research project in an effective manner.
Research approach is important and guides the researcher to achieve the research goals as well as
objectives. There are different types of research such as inductive as well as deductive approach.
The research approach is a plan and manner that includes the steps of wide assumptions to
unique methods of records collection, analysis, and interpretation (Kristen and et.al., 2021). The
studies technique is essentially divided into categories: the technique of records collection and.
The method of records evaluation or reasoning. Choosing an inductive method thru thematic
evaluation (a records-driven’ method) for the observe determines that the objective of the
examine is to achieve an expertise of a phenomenon. It does not attention on testing the
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
hypothesis. Thematic evaluation can both realistically gift studies, which means, and the reality
of members. This also can be used to have a look at the results of those reviews, occasions, and
realities running inside society.
Quantitative studies is generally related to the positivist/postpositivist paradigm. It
commonly involves accumulating and converting information into numerical shape in order that
statistical calculations can be made and conclusions drawn.Qualitative studies is the approach
commonly related to the social constructivist paradigm which emphasises the socially
constructed nature of fact. It is set recording, analysing and attempting to find the deeper
meaning and significance of human behaviour and revel in, inclusive of contradictory beliefs,
behaviours and feelings. Researchers are interested in gaining a rich and complex understanding
of people’s revel in and no longer in obtaining information which can be generalized to other
larger corporations.
Research Design and Process – While conducting the research, the researcher has
ensured that the researcher has used the effective research design in an effective manner (Maggio
and et.al., 2021). The studies design refers to the general strategy which you pick to combine the
distinctive components of the look at in a coherent and logical manner, thereby, making sure
you'll efficiently address the research hassle; it constitutes the blueprint for the gathering,
measurement, and analysis of records. The feature of a studies layout is to make certain that the
evidence received allows you to effectively address the studies trouble logically and as
unambiguously as viable. In social sciences studies, acquiring information relevant to the
research hassle normally involves specifying the type of proof needed to test a principle, to
evaluate a program, or to accurately describe and investigate meaning associated with an
observable phenomenon. With this in thoughts, a common mistake made through researchers is
they begin their investigations a ways too early, earlier than they've notion severely about what
facts is needed to deal with the research trouble. Without getting to those design troubles in
advance, the general studies problem will not be correctly addressed and any conclusions drawn
will run the hazard of being susceptible and unconvincing. As a effect, the general validity of the
study may be undermined.
Research Strategy – A Research Strategy is a step-with the aid of-step course of action
that offers path on your mind and efforts, permitting you to behavior research systematically and
of members. This also can be used to have a look at the results of those reviews, occasions, and
realities running inside society.
Quantitative studies is generally related to the positivist/postpositivist paradigm. It
commonly involves accumulating and converting information into numerical shape in order that
statistical calculations can be made and conclusions drawn.Qualitative studies is the approach
commonly related to the social constructivist paradigm which emphasises the socially
constructed nature of fact. It is set recording, analysing and attempting to find the deeper
meaning and significance of human behaviour and revel in, inclusive of contradictory beliefs,
behaviours and feelings. Researchers are interested in gaining a rich and complex understanding
of people’s revel in and no longer in obtaining information which can be generalized to other
larger corporations.
Research Design and Process – While conducting the research, the researcher has
ensured that the researcher has used the effective research design in an effective manner (Maggio
and et.al., 2021). The studies design refers to the general strategy which you pick to combine the
distinctive components of the look at in a coherent and logical manner, thereby, making sure
you'll efficiently address the research hassle; it constitutes the blueprint for the gathering,
measurement, and analysis of records. The feature of a studies layout is to make certain that the
evidence received allows you to effectively address the studies trouble logically and as
unambiguously as viable. In social sciences studies, acquiring information relevant to the
research hassle normally involves specifying the type of proof needed to test a principle, to
evaluate a program, or to accurately describe and investigate meaning associated with an
observable phenomenon. With this in thoughts, a common mistake made through researchers is
they begin their investigations a ways too early, earlier than they've notion severely about what
facts is needed to deal with the research trouble. Without getting to those design troubles in
advance, the general studies problem will not be correctly addressed and any conclusions drawn
will run the hazard of being susceptible and unconvincing. As a effect, the general validity of the
study may be undermined.
Research Strategy – A Research Strategy is a step-with the aid of-step course of action
that offers path on your mind and efforts, permitting you to behavior research systematically and
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
on time table to produce best effects and specified reporting (Masip-Bruin and et.al., 2021). A
research approach introduces the principle components of a research project such as the research
subject matter region and cognizance, the research perspective, the research design, and the
studies methods (those are mentioned below). It refers to how you recommend to answer the
studies questions set and the way you will implement the methodology. In the first a part of this
path, you started out to discover your research subject matter, to increase your research
announcement and you concept approximately feasible studies query(s). While you would
possibly already have clean research questions or objectives, it is viable that, at this stage, one is
uncertain approximately the maximum suitable approach to enforce in order.
Research Method – This specializes in an in-depth investigation of a unmarried case
(e.G. One employer) or a small range of instances. In case have a look at studies usually, records
is sought from extraordinary resources and thru the use of various styles of records which
include observations, survey, interviews and analysis of files. Data can be qualitative,
quantitative or a combination of each (McIntyre and Frank, 2021). Case look at research lets in a
composite and multifaceted research of the issue or problem. There are exceptional types of
qualitative interviews (e.G. Established, semi-established, unstructured) and this is the most
broadly used method for accumulating facts. Interviews permit get entry to to rich data. They
require vast making plans concerning the development of the structure, decisions approximately
who to interview and the way, whether to behavior man or woman or group interviews, and the
way to record and examine them. Interviewees want a wide variety of competencies, such as
desirable social talents, listening skills and verbal exchange skills. Interviews are also time-
consuming to behavior and they are at risk of problems and biases that need to be minimized at
some stage in the design level.
This is a widely used approach in commercial enterprise research and lets in access to
seriously high numbers of contributors (Meng and et.al., 2021). The availability of on line web
sites enables the huge and cheap distribution of surveys and the organization of the responses.
Although the improvement of questions may also appear clean, to increase a significant
questionnaire that allows the answering of research questions is tough. Questionnaires want to
enchantment to respondents, can not be too lengthy, too intrusive or too difficult to recognize.
They additionally need to measure correctly the problem under research. For these reasons it is
research approach introduces the principle components of a research project such as the research
subject matter region and cognizance, the research perspective, the research design, and the
studies methods (those are mentioned below). It refers to how you recommend to answer the
studies questions set and the way you will implement the methodology. In the first a part of this
path, you started out to discover your research subject matter, to increase your research
announcement and you concept approximately feasible studies query(s). While you would
possibly already have clean research questions or objectives, it is viable that, at this stage, one is
uncertain approximately the maximum suitable approach to enforce in order.
Research Method – This specializes in an in-depth investigation of a unmarried case
(e.G. One employer) or a small range of instances. In case have a look at studies usually, records
is sought from extraordinary resources and thru the use of various styles of records which
include observations, survey, interviews and analysis of files. Data can be qualitative,
quantitative or a combination of each (McIntyre and Frank, 2021). Case look at research lets in a
composite and multifaceted research of the issue or problem. There are exceptional types of
qualitative interviews (e.G. Established, semi-established, unstructured) and this is the most
broadly used method for accumulating facts. Interviews permit get entry to to rich data. They
require vast making plans concerning the development of the structure, decisions approximately
who to interview and the way, whether to behavior man or woman or group interviews, and the
way to record and examine them. Interviewees want a wide variety of competencies, such as
desirable social talents, listening skills and verbal exchange skills. Interviews are also time-
consuming to behavior and they are at risk of problems and biases that need to be minimized at
some stage in the design level.
This is a widely used approach in commercial enterprise research and lets in access to
seriously high numbers of contributors (Meng and et.al., 2021). The availability of on line web
sites enables the huge and cheap distribution of surveys and the organization of the responses.
Although the improvement of questions may also appear clean, to increase a significant
questionnaire that allows the answering of research questions is tough. Questionnaires want to
enchantment to respondents, can not be too lengthy, too intrusive or too difficult to recognize.
They additionally need to measure correctly the problem under research. For these reasons it is
also recommended, whilst feasible, to use questionnaires which are to be had available on the
market and feature already been thoroughly confirmed. This is pretty encouraged for initiatives
which include the only you want to perform for this path. When using questionnaires selections
should be made approximately the size of the pattern and whether and whilst that is
representative of the complete population studied. Surveys can be administered to the whole
populace (census), for example to all personnel of a particular corporation.
The research process will involve different steps that will help the researcher in
completing the study in an effective manner. Action-orientated studies isn't always precisely
action research, even though they are both grounded inside the identical assumptions (e.G. To
supply change). Action studies is a highly complicated technique to investigate, reflection and
alternate which isn't always conceivable in exercise. Furthermore motion researchers need to be
fantastically skilled and it is unlikely that for this particular assignment you may be involved in
movement studies. For those motives this assessment specializes in the much less pure
movement-orientated studies approach (Miadzvetskaya, 2021). If one is inquisitive about
exploring this method and action research similarly. It is feasible with a view to select a
approach that consists of the usage of secondary information. Secondary information is data that
has been accrued via other human beings (e.G. Worker surveys, marketplace studies statistics,
census). Using secondary records to your studies mission wishes to be justified in that it meets
the requirements of the studies questions. The use of secondary statistics has apparent blessings
in terms of saving time and money. However, it's far essential to envision the pleasant of the
records and how it was accrued; as an instance, information accrued with the aid of government
groups would be properly high-quality however it can no longer important meet the wishes of
your challenge.
It is critical to note that there must be consistency between the attitude (subjective or
objective) and the method hired (Okereafor, 2021). This means that the type of approach
followed wishes to be coherent and that its numerous factors want to healthy in with each other,
whether the research is grounded on primary or secondary records.
Sampling – Sampling is an important component of a research study and helps the
researcher in obtaining useful conclusions about the large population. In research phrases a
sample is a group of human beings, objects, or items that are taken from a larger population for
market and feature already been thoroughly confirmed. This is pretty encouraged for initiatives
which include the only you want to perform for this path. When using questionnaires selections
should be made approximately the size of the pattern and whether and whilst that is
representative of the complete population studied. Surveys can be administered to the whole
populace (census), for example to all personnel of a particular corporation.
The research process will involve different steps that will help the researcher in
completing the study in an effective manner. Action-orientated studies isn't always precisely
action research, even though they are both grounded inside the identical assumptions (e.G. To
supply change). Action studies is a highly complicated technique to investigate, reflection and
alternate which isn't always conceivable in exercise. Furthermore motion researchers need to be
fantastically skilled and it is unlikely that for this particular assignment you may be involved in
movement studies. For those motives this assessment specializes in the much less pure
movement-orientated studies approach (Miadzvetskaya, 2021). If one is inquisitive about
exploring this method and action research similarly. It is feasible with a view to select a
approach that consists of the usage of secondary information. Secondary information is data that
has been accrued via other human beings (e.G. Worker surveys, marketplace studies statistics,
census). Using secondary records to your studies mission wishes to be justified in that it meets
the requirements of the studies questions. The use of secondary statistics has apparent blessings
in terms of saving time and money. However, it's far essential to envision the pleasant of the
records and how it was accrued; as an instance, information accrued with the aid of government
groups would be properly high-quality however it can no longer important meet the wishes of
your challenge.
It is critical to note that there must be consistency between the attitude (subjective or
objective) and the method hired (Okereafor, 2021). This means that the type of approach
followed wishes to be coherent and that its numerous factors want to healthy in with each other,
whether the research is grounded on primary or secondary records.
Sampling – Sampling is an important component of a research study and helps the
researcher in obtaining useful conclusions about the large population. In research phrases a
sample is a group of human beings, objects, or items that are taken from a larger population for
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
1 out of 28
Related Documents
Your All-in-One AI-Powered Toolkit for Academic Success.
+13062052269
info@desklib.com
Available 24*7 on WhatsApp / Email
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
Unlock your academic potential
Copyright © 2020–2025 A2Z Services. All Rights Reserved. Developed and managed by ZUCOL.