INTERNAL ASSIGNMENT - JUNE 2022 EXAMINATION

COURSE: INFORMATION SYSTEMS FOR MANAGERS

Q1. You have been appointed as IT Head of a soon to be opened Retail chain store by
the name of “India Retail Store” which will have branches all over India. India Retail
store is a Private Limited company.

Highlight atleast 5 security threats that a bank may face in today’s times and suggest 5
innovative IT security mechanisms to ensure that such threats do not harm your Retail
store chain & that your systems remain as secure as ever. (10 Marks)

Answer 1.

Introduction:

The development of generation has now not simplest supplied advantages to the corporations
but has also posed many protection challenges. In India, the major problem that a bank may
additionally face or any corporation for that be counted can face is the issue associated with
cybercrimes. The data available on the bank's cloud may be hacked or misused, and as a
result, it becomes very tough today to trust the bank's functioning.

Concept & application:

Five security threats to bank & five innovative it security mechansims:

The subsequent are the five most significant threats to any newly open-end bank in India:

a) Unencrypted Data: It is to be noted that any monetary organization has to store its
statistics in an encrypted format. It's miles because even supposing the hackers will hack the
statistics, and they won’t be able to use the statistics properly; it would require a specific
different mechanism from their end. However, suppose the records could be left unencrypted.
In that case, the hackers might be able to use the information right away, which may create
serious trouble for the financial institution.

b) Malware: In many instances, the give-up user's devices, including a cell phone or
computers, were compromised with malware. It can pose a severe risk for your bank’s cyber
security on every occasion you will join your device to any network. It is also likely that the
sensitive information can observe from that network out of your device. However, suppose
one could set up malware into their tool without the proper protection. In that case, that

1|Page
malware can even assault the financial institution’s network, which could cause
compassionate statistics to be disclosed or get hacked by random human beings.

c) Third party services are not secure: Many times, those newly set up banks so one can
offer higher offerings to their clients rent a few third party/suppliers. However, it may be
trouble if the third-party vendors do not have accurate cyber security measures in place. It'd
then be able to impact your bank. For this reason, a bank must look into the measures through
which you may guard the bank from the security threats imposed by third parties earlier than
they deploy to them any answers related to bank troubles. Consequently, intending to believe
a third party with the customer's sensitive information, the bank needs to ensure that they
have the top infrastructure to keep away from the security-associated troubles.

d) Data manipulated: Hackers today have located numerous new techniques to hack the
statistics of economic institutions. They now do no longer go to thieve the data. However,
they try to control the statistics. They are trying to alternate or alter the information available
on the cloud. Considering that the altered and unaltered statistics look more or much less
similar to every other, it is difficult to detect this hack properly. However, at the same time,
unknowing to the bank's managers, this will purpose massive loss to the economic
institutions and might incur millions of dollars of damage. So, the bank has to be very careful
while importing the facts. Banks should soak the progressive step in this regard to add the
records in an encrypted layout so that it becomes tough for the hackers to adjust those records
and use them for a few illegal purposes. Furthermore, the bank ought to deploy the latest
technology to help detect the hacking of that encrypted facts. By point, the hackers would be
able to convert those encrypted statistics, and the financial institution can take actions to
forestall it.

e) Spoofing: This is once more a new hacking technique that those hackers are adopting.
Right here, they will discover a way to impersonate a banking internet site’s URL with a
website that appears and functions exactly the identical. It's miles harmful because as and
when the consumer shall enter their login facts, the hackers might be capable of hitting upon
it after misusing it.

Five innovative it security mechanisms

Improve your risk assessment.

In order to establish risk mitigation methods, assess online transactions and the level of risk
they pose by type of transaction or user category. Consider client type, transaction volume

2|Page
and capabilities, data sensitivity and existing security, simplicity of use and customer
experience, and how mobile devices interact with your environment.

Take into account not only the money loss, but also the liability, corporate risk, and
reputational damage. And don't stop there; examine and update this assessment at least once a
year. The risk assessment will assist you in identifying potential consequences and the
security service levels that are necessary.

Strong authentication standards should be adopted.

Today's risks necessitate more secure authentication methods than simple usernames and
passwords, especially for high-risk financial transactions like wire transfers. Traditional two-
factor authentication solutions such as one-time-passcode (OTP) tokens, when used alone, are
no longer viable against sophisticated man-in-the-browser attacks, for example.

There are a variety of contemporary solutions that give the necessary level of safety, such as
using a separate communication channel with the user or depending on advanced behavior-
based fraud detection engines that can detect transaction or website navigation irregularities
in real-time.

Take a multi-pronged approach.

It's worth mentioning that no one authentication or traditional fraud detection solution will
protect banks and other financial institutions from advanced malware. The best method of
protecting customer identities and transactions in a banking environment is to layer different,
complementary security technologies, such as strong authentication, behavioural fraud
detection, out-of-band transaction verification, mobile authentication, and extended
validation SSL digital certificates.

Investigate improved authentication methods.

Today, a variety of robust advanced authentication approaches are accessible. As the

sophistication of online fraud attempts grows, so does the need for authentication technology
innovation to counter these attacks in the consumer sector.

Rather than relying on static device cookie-based procedures, FIs should investigate
sophisticated strategies such as mobile-based transaction verification and dynamic device
authentication — which includes one-time session cookies and digital fingerprints.

3|Page
Keep in mind, though, that dangers change and expand all the time. This means that financial
institutions must invest in their technology, people, and procedures on a continuous basis.
This is not a one-time exercise in terms of security.

Customer education and awareness should be improved.

Finally, we recommend that financial institutions include customers as much as possible in

the battle against fraud. To guarantee that everyone does their part to protect and minimise
today's hazards, ongoing education and training programmes should be implemented.

Some progressive banks, for example, are implementing security measures that alert clients
when questionable transactions are taking place and ask them to affirm that the transaction is
legal.

It is critical to sustain consumer confidence. The reputational harm that an online attack can
bring is something that no bank or financial institution can afford. Investing in security
systems, procedures, and people on a regular basis is a must, not a nice-to-have. Otherwise,
institutions risk exposing client data to hackers.

Conclusion:

Today, the bank needs to take innovative measures to stop those mishappenings. In any other
case, the bank will face varieties of problems, and one could be dropping patron base due to
loss of consideration. The alternative is the money owed/ liabilities because now all the losses
should be recovered from the bank. So, to avoid some of these contingencies, a bank must
verify the third party entirely- heartedly, and handiest then must consider them with the
records of the citizens. It is essential for the lengthy sustenance of the newly open-end bank
inside the marketplace. It has to expand the trust of most of the people that allows you to
have higher sustenance and to offer better offerings to the clients.

4|Page
Q2. Choose any e-Governance initiative of any country in the world which is aimed at
helping the poor & the needy sections of the society. Enlist atleast 10 benefits of having
implemented this system for the benefit of this downtrodden section. (10 Marks)

Answer 2.

Introduction:

The term E in E-governance refers to Electronics. E-governance can be defined because of

how the advantages or perks are provided to the citizens of the country or a selected nation
using the software of facts and communication technology (ICT). It's far used for providing
government offerings, facts, transactions, integration of previously existing services, and data
portals. For this reason, its method is a type of governance provided to the citizens by a
digital method.

Concept & application:

10 benefits of implementing the system of e-governance for the downtrodden section:

In pursuance of the goal of digital India, the government of India has released many tasks of
governance in electronic modes. It includes Bhoomi challenge (Karnataka online shipping of
Land records), KHAJANE (Karnataka end to stop automation of government treasury
machine), E- Seva (Andhra Pradesh), E- courts and E- Districts, and so forth. Those digital
approaches of governance have proved to e applicable in times of pandemic due to the fact at
that factor, and these were the mechanism through which the authorities has supplied
offerings to the citizens. The number one purpose of these e-governance measures are as
follows:

1. To deliver or deliver better offerings to residents.

2. It is used by the authorities to usher transparency and accountability amongst citizens.
3. It's also used to empower the citizens of the location by offering them correct facts.
4. It also allows in enhancing efficiency inside the governments. It additionally
facilitates in maintaining precise and peaceful inter-state or center-state relations.
5. It also helps in enhancing the interface with groups and industries inside the country.

In India, E- Kranti is the umbrella below which the authorities have started those e-
governance techniques to offer better services to all residents. The objective of E- Kranti is
“to make certain government-wide transformation by using delivering all authorities services
electronically to citizens thru integrated, interoperable structures thru a couple of modes.”

5|Page
Permit’s taken the E-Courts challenge Mode mission to look at the benefits of those e-
governance mechanisms for the negative and oppressed people. The E- courts project is a
Pan- India venture, monitored and funded via the Department of Justice, Ministry of law and
Justice, authorities of India for all of the districts throughout the nation. The cause of
establishing this E- courts follow:

1. It aims to offer efficient and timely courtroom offerings to all citizens in a detailed
layout.
2. It also aims to expand, install and implement decision assist systems in courts.
3. It will also help grow the accessibility of the people to the court system and assist in
providing transparency of records to the stakeholders.
4. In India, the judicial device could be a lovely present, but the issue is usually
accessibility. To make matters more extraordinary on hand, such an initiative in e-
governance turned into of extreme requirement.

The predominant contribution of these e-governance techniques of E- courts is to make the

judicial device accessible to the general masses who can't manage to pay to visit court now
after which. They can go without difficulty kind their dispute via this mechanism. It has
additionally benefitted in enhancing the judicial productiveness of the system in each
qualitative and quantitative fashion. It has made the judicial transport gadget greater, less
costly, reachable, value-effective, predictable, reliable, and transparent.

If we speak about the E- court system launched through Punjab and Haryana excessive court
at Faridabad, it aimed to cope with the visitor's Chilean case all across the state. The
assignment has been released beneath the steerage of the e- committee of the superior court
of India. Those digital courts have also eliminated the traditional court system and facilitated
the adjudication of the case online through using records and communication technology.

Conclusion:

E-governance can be described because of how the advantages or perks are furnished to the
residents of the USA or a particular state using the utility of information and conversation
generation (ICT). Those electronic processes of governance have proved to e applicable in
times of pandemic because at that factor, and those have been the mechanism thru which the
authorities have provided services to the residents.

6|Page
Q3. The city of Mysuru is one of the cleanest cities of India and is in close driving
distance from Bengaluru, the IT hub. You have been invited as an external IT
consultant by Government of India with a mandate to convert Mysuru into a “Smart
City”

a. Which “Smart” city in the world will you choose as a benchmark to emulate some of
the best practices of that city into Mysuru? Provide atleast 3 reasons with brief
descriptions behind your choice of choosing that particular city as a benchmark? (5
Marks)

Answer 3a.

Introduction:

Smart cities are the towns that have a modern competitive framework and the one which
highlights the importance of records and communication technology (ICTs) in the town.
Various innovative town projects had been launched using the Ministry of Housing and
concrete Affairs (authorities of India). Nonetheless, the most famous and recent one became
the smart towns venture in 2015. it is a mission below which the government is trying to
build smart towns throughout the country and make them citizen-friendly and sustainable.

Concept & Application:

Benchmark for smart city:

In my perspective, the smart city does now mean a city with excellent IT infrastructure. It
wishes to meet many more standards, including sanitation, good power, and water supply, to
maintain first-rate living requirements for all the residents living there. One more excellent
critical issue that has taken vicinity in these standards is the better healthcare services
available 24*7 for all the citizens. I will surely take Jaipur as a benchmark for the clever
metropolis project. I might say that Jaipur is a wholly developed city in all respects. From
sanitation to healthcare, to IT hubs, to education hubs, to culturally rich, you could find the
whole thing in Jaipur. You may see an ordinary Dhaba at a high-class café in Jaipur. You
may visit a typical haveli to large big palaces and homes in Jaipur. In Mysore, I might
suggest the subsequent changes for its inclusion in the intellectual town challenge of the
government:

1. Development of IT quarter, because Bengaluru has a lot rush which can be

accommodated right here. As Jaipur has evolved during the last decade in phrases of

7|Page
 IT improvement. Jaipur has offices of just about all the IT zone industries offering
employment possibilities to many and adding directly to the town's improvement as
an intelligent town.
2. Development of better accommodative facilities for tourists because Mysore is a
culturally rich town with numerous ancient places to visit. It's miles to be inspired by
Jaipur because Jaipur also has a massive tourist inflow, so this approach might assist
in improving Mysore as a smart city.

Conclusion:

Smart city assignment is consequently a target to ensure cities are nicely ready with all of the
facilities and a nicely-suited proper law and order that may assist hold the city's safety. But
on the side of certain benefits that the smart city venture could be bringing, it has posed
various challenges for maintaining these smart towns in a rustic like India.

8|Page
Q3. b. Suggest & describe atleast 2 innovative technology enabled services that you will
introduce into Mysuru so that it can be called as a “Smart city”? (5 Marks)

Answer 3. b.

Introduction:

Innovative city project is a target to make sure cities are well equipped with all the centers
and a well-suited proper law and order that can help maintain the town's security. This may
assist in incentivizing the other cities and towns to undertake similar standards and guidelines
to be part of the clever town task.

Concept & application:

Humans move to cities for a diffusion of motives, and the maximum common is locating
work. Humans also require decent high-quality housing and cost-powerful physical and social
infrastructure, which include water, sanitation, energy, smooth air, schooling, healthcare,
safety, and enjoyment. Smart cities are those which can be able to attract investments for
infrastructure development and different social facilities in this setting. An investor-friendly
town needs to have the correct infrastructure and clean and obvious online processes that
make it simple to begin and keep a business. Without this, a city's appeal as an investment
destination dwindles. A smart city investor invests in a city to take advantage of it instead of
profit from it.

ICT performs an extensive position in integrating numerous additives within the bright town
idea. In line with the studies, most towns lacking infrastructure, societal recognition, and
abilities had to upgrade to intelligent cities. Furthermore, while a few towns have ICT
infrastructure, it is not being applied to its complete ability. The municipal governance and
government implementing organizations ought to establish an effective plan or format to
build focus, skills, and infrastructure to transform present towns into destiny smart cities.

Innovative technology to be used in mysuru:

The following technology may be used to improve Mysuru as a smart town.

1. Artificial Intelligence: Since Bengaluru, the neighboring city, is well developed within
the IT quarter, Mysuru can be made a hub of synthetic intelligence technology. This can now
not help within the development of the metropolis as a smart city but will also assist in
differentiating it from Bengaluru. In any other case, it is an opportunity that Mysuru could be
assumed part of Bengaluru when a factor in time. This era can well be used on the cultural
9|Page
websites in Mysuru to explain the ancient significance and improvement of that place as it is.
Preventive upkeep is one of the significant capabilities of this technology and one of the most
vital advantages.

2. Geospatial Technology: This technology is used by smart cities to behavior extra

urbanization inside the city, and that too that's environmentally friendly. It's miles one to
make urban areas handier and environmentally friendly. It could also be used to come across
disasters that affect the ecosystem. Because Mysuru is to be developed and it is one of the
cleanest towns in the country, this technology could be very probable to assist the city in
growing itself sustainably from very scratch. This era would assist mysuru in developing it as
one of the most environmentally friendly cities.

Conclusion:

Smart cities are the towns with a current aggressive framework and are the only ones that
highlight the importance of statistics and conversation technology (ICTs) inside the town.
Numerous innovative city tasks have been released using the Ministry of Housing and Urban
Affairs (government of India). Nonetheless, the most famous and recent one turned into the
smart towns venture in 2015. It’s far a project under which the government attempts to
construct smart cities throughout the United States and make them citizen-pleasant and
sustainable.

10 | P a g e