Cybersecurity Breach Case Study

Abstract

This cybersecurity case study provides a comprehensive remediation plan for an organization that recently experienced a data breach and lacks a risk management strategy. Starting with a current state analysis, the plan includes strategies to support the new organizational behaviors, understanding and aligning company culture, supporting changes with ethical decision-making and strong leadership, and ensuring changes are maintained and reinforced. Foundation theories and models are used to support the plan: human factors, theory of constraints, the plan-do-check-act cycle, Schein's model of organizational culture, the Deal and Kennedy culture model, Lewin's change management model, nudge theory, the duty-based approach to ethical decision-making, and transformational leadership. The resulting plan ensures that the organization is able to prevent most cyberattacks and has a ready response plan for dealing with any future breaches.