User Account

All Pages

Assess resulting severity of risk or threat to employee data

Assignment Help HR Management
Reference no: EM131607063

Assignment: The Department of Administrative Services

Task

Scenario

The Department of Administrative Services (DAS) provides a number of services to other departments in an Australian State Government. These services include HR and personnel management, payroll, contract tendering management, contractor management, and procurement. These services have all been provided from the Department's own data centres.

As a result of a change in Government policy, DAS is moving to a "Shared Services" approach. This approach will mean that DAS will centralise a number of services for the whole of Government (WofG). This means that each Department or Agency that runs one of these services for its own users, will be required to migrate its data to DAS so that it can be consolidated into the DAS centralised database. DAS will then provide these consolidated services to all other Departments and Agencies within the Government.

Another Government policy mandates a "Cloud first" approach to the process of updating or acquiring software or services. Following these strategic policy changes from Government, DAS has decided to:

• Purchase a HR and personnel management application from a US based company that provides a SaaS solution.

o The application will provide DAS with a HR suite that will provide a complete HR suite which will also include performance management. The application provider has advised that the company's main database is in California, with a replica in Dublin, Ireland. However, all data processing, configuration, maintenance, updates and feature releases are provided from the application provider's processing centre in Bangalore, India.

o Employee data will be uploaded from DAS daily at 12:00 AEST. This will be processed in Bangalore before being loaded into the main provider database.

o Employees can access their HR and Performance Management information through a link placed on the DAS intranet. Each employee will use their internal agency digital ID to authenticate to the HR and Performance management system. The internal digital ID is generated by each agency's Active Directory Instance and is used for internal authentication and authorisation.

• Purchase a Contractor management application from a German based company that provides a SaaS solution.

o This application will provide DAS with a suite of tools to on-board, manage, pay and off-board contractors who are contracted by DAS for specific work. The application provider has advised that the company's main database is located in Heidelberg, Germany, with a replica in Dublin, Ireland. All configuration, maintenance, updates and feature releases are provided from the provider's lab in Walldorf, Germany. The provider does not do any additional processing of data entered into the application.

o DAS employees enter the data directly into the application through a secure URL.

o Bulk contractor data can be uploaded daily through a secure data transfer application. DAS is responsible for ensuring that any data uploaded is correct and ready for use.

o Other Departments and Agencies can view and manage their own contractor data once it has been loaded by DAS staff.

• Move the DAS payroll to a COTS (Commercial Off The Shelf) application that it will manage in a public cloud;

• Move the DAS Intranet into a Microsoft SharePoint PaaS offering so that it can provide Intranet services to all agencies in the WofG.

Tasks

Your team has been engaged to provide a risk assessment for the two planned moves to SaaS application offerings.

Team Setup

This assignment is the first of the team assignments for this subject. The rationale for using a team approach is that most IT risk management assessments are normally done by teams of between 2-5 Architects, Information Security experts, Operations and Business leaders for each problem. You will be assigned to a team and the team, as a whole, will be responsible for the development of the risk assessment.

Team Member Responsibilities

Each team member will be assessed on:

• The final risk assessment presented by the team;

• The individual contributions that they have made to the risk assessment. This will be shown by the entries that they have made in the Team forum;

Team members should note that:

• A total of 20% of the total marks for this assignment are for individual contributions. These include:

o Selection of issues for risk assessment (10%), and
o Reasoning behind the risk assessment for the selected issues (10%)

• A team member without any individual contributions in the Team Forum will be regarded as having not contributed to the risk assessment. This will result in either reduced marks or no marks being awarded to that team member for this assignment.

The tasks:

Your team is to write a report that assesses the risk to DAS in the following areas:

1. Consider the data and information that DAS holds on its employees in the current HR system.

a. Establish the existing threats and risks to the security of that data and information contained in the in house HR database.

b. Are there any other risks and threats to the employee data after migration to an SaaS application?

c. Assess the resulting severity of risk and threat to employee data.

2. Consider the privacy of the data for those employees who will move to an SaaS application.

a. Establish the existing threats and risks to the privacy of that data and information contained in the in house HR database.

b. Are there any other risks and threats to the privacy of the employee data after migration to an SaaS application?

c. Assess the resulting severity of risk and threat to the privacy of employee data.

3. What are the threats and risks to the digital identities of Government employees from the move to SaaS applications?

4. Consider the operational solution and location(s) of the two SaaS providers for HR and Contractor management. Does either the operational solution, or the operational location, or both, increase or mitigate the threats and risks identified for the security and privacy of employee data?

5. Are there any issues of data sensitivity or jurisdiction that should be considered?

The team is to provide a written report with the following headings:

• Security of Employee Data
• Privacy of Employee Data
• Digital Identity Issues
• Provider Solution Issues
• Data Sensitivity

As a rough guide, the report should not be longer than about 5,000 words. The report is to be loaded into the Team Resource area in Interact.

All risk assessment discussions in the team forum should be exported into a single document and loaded into the Team Resource area in Interact.

It is suggested that the report should be written using Google Docs. Google Docs allows multiple authors to contribute to a single document, and their individual contributions can be assessed.

Reference no: EM131607063

Questions Cloud

How would you present the program to the new mentors : How would you present the program to the new mentors?What possible challenges will mentors and mentees face during the program?
Analyze the impact of the industrial age : Analyze the impact of the Industrial Age and the rise of capitalism and discuss the key features of both and their influence on contemporary society
Discuss ethical behaviour in accordance with codes : Network Management in Organisations - Investigate and reflect upon one of the above scenarios using Ethical Guidelines published by organisations
What is your expected return : What is your expected return? If you require a return of 9 percent, given the current price, should you sell or buy more stock?
Assess resulting severity of risk or threat to employee data : Assess the resulting severity of risk and threat to employee data. Consider the privacy of the data for those employees who will move to an SaaS application.
How you propose to implement the solution : How you propose to implement the solution, and your role as a leader to manage conflict and create an effective work environment.
What is the dividend yield of delta company : What is the dividend yield of Delta Company? What is the capital gain yield of Delta Company?
Discussion the differences and similarities in access : In your reply post, comment on at least one of your classmates' discussion and choice of plan and how it compares to your choice
Current dividend per share will never change : the assumption is that the current dividend per share will never change. The stock's required rate of return is 6.15%.

Reviews

Write a Review

HR Management Questions & Answers

  Opportunity cost of capital

You own 100 acres of timberland, with young timber worth $20,000 if logged today. This represents 500 cords of wood at $40 per cord. (cord is a unit of quantity for cut fuel wood.) After logging, the land can be sold today for $10,000 ($100 per ac..

  What the artifacts mean to your learning about hrm

Develop a folder (portfolio) by researching and reflecting on the topics covered in this course. You are required to submit Four different artifacts - Your folder analysis should clearly demonstrate what the artifacts mean to your learning about H..

  Transform into a highly functioning team

Group Team and Matrix Org and How can a group of individuals be transform into a highly functioning team

  Collaborative working context

The concept of working together to produce a better outcome is not a novel idea. Competition in a collaborative working context may encourage productivity and the realization that different people bring different skills and different levels of ski..

  Visit any 2 websites that offer salary survey information

visit any 2 websites that offer salary survey information and compare your positionsalary with what is offered in those

  Why hrm is important in todays business environment

Define Human Resource Management (HRM). Explain why HRM is important in today's business environment.

  In building relationships

In building relationships, what should American negotiators do to increase their chances of success? Write your response in 300 words count with references.

  Determine legal compliance challenges which could be

resources baderman island virtual organization located under the virtual organizations link on the materials page of

  Compare two leaders one of whom be a business leader

Compare and contrast two leaders, at least one of whom must be a business leader. Which of the two was the more effective leader? Why?

  Hrm consultancy report

What organisational issues might the scenario transition create and what are the people management implications of this transition? What HRM approaches may need to be revised and/or new ones introduced?

  Evaluate the pay structure at your current job

Evaluate the pay structure at your current job or a job you have recently had. How much do/did you know about the pay structure

  Can you please help me with the following pay and reward

can you please help me with the following pay and reward startegyfind out what pay and reward strategy kelloggs company

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd