The system used by TJX had made it possible for the intruder to steal the data from the system. The company has discovered in December , a computer intrusion dating back to TJX should log all the transactions happening in their stores and save them into their databases with proper authentication. Smart, profitable retail organizations get into such situations because of hand held price checking devices, point of sale cash registers, and the computers used in the retail stores. Post was not sent – check your email addresses! The long term plan of TJX must be to minimize risks so that hackers cannot intrude gain. Implementation framework helps in weeding out non actionable recommendations, resulting in awesome Security Breach at TJX case study solution.

TJX has retained customer data years after it should have been purged. There are no business processes defined for monitoring and regular internal audits. Build a corporate level strategy – organizing your findings and recommendations in a way to answer the larger strategic objective of the firm. It should also not store any customer data that is not required or against PCI standards. TJX had retained the data of customers even after years. Take a small break, grab a cup of coffee or whatever you like, go for a walk or just shoot some hoops.

So this old credit card information had to be manually deleted from the database. You can use this history to draw a growth path and illustrate vision, mission and strategic objectives of the organization.

For example you can recommend a low cost strategy but the company core competency is design differentiation. Business case study paragraph by paragraph mapping will help you in organizing the information correctly and provide a clear guide to go back to the case study if you need further information.

Security Breach at TJX Case Study Analysis & Solution

WES decryption is available online via simple google searches They also recognized a window of time in which the credit card numbers are decrypted and during that time duration of less than a second, captured all the required data. Wireless is one of the most popular means to hack data from retail chains.


Opportunities Strong customer base and loyalty. Lack of in-store physical security of assets.

security breach at tjx case study solution

After refreshing your mind, read your case study solution critically. They opened back of those terminals and used USB drives to load softwares. However, the intrusion was finally disclosed on 21 February and made an announcement publicly that the silution system was accessed in July by an unauthorized intruder. Once you finished the case analysis, time line of the events and other critical details.


Recommendations To align the organizational strategy with the business strategy and information strategy, the management at TJX will need to seriously focus on establishing an IT governance, risk mitigation and management strategy.

Often history is provided in the case not only to provide a background to the problem but also provide the scope of the solution that you can write for the case study. The action plan for the immediate future must be to contain the security breach and implement steps to fix the vulnerabilities. Your Personal Collection With this feature, you get to create your own collection of documents.

Case Study Solution and Lecture Notes On Security Breach At TJX

Business Unit Level Solution – The case study may put you in a position of a marketing manager of a small brand. The systems that were broken into were based in Framingham and processed and stored information ag to payment cards, checks and merchandise returned without receipts. You no longer need to spend hours to locate the sample you need. The data of around 46 million debit and credit card holders was affected due to the breach.

The ripple effect of an information security breach event: Once you are comfortable with the details and objective of the business case study proceed forward to put some details into the analysis template.


My case study strategy involves – Breacb out the caae and key players in the case study from the very start.

TJX also need to give its attention towards e-commerce transactions Modi et al. Help Center Find new research papers in: Recommendations for Issue 1: However, its organizational strategy is not in-line with its business strategy of providing a secure foundation. You are commenting using your Twitter account. Threat of new entrants The high growth rate of the off-price retail industry may seem to attract new entrants, however in order to successfully operate in the off-price retail industry, a company requires a huge capital investment for bulk purchases of large amounts of inventory from its vendors, good vendor relationships to ensure that the vendors sell their excess goods at a price that is profitable for the off-price retailer, a strong distribution network and geographic reach with its customers and IT systems that facilitate these connections throughout the supply chain.

They had over stores and aboutassociates.

security breach at tjx case study solution

The next step is organizing the solution based on the requirement of the case. This case analyzes the solutiion breach that took place in TJX in the yearsits causes and impact, and strategic recommendations. There is a clear lack of ownership and authority in terms of IT network and systems security.

security breach at tjx case study solution

When I was working as project manager for ChemistDirect. Be very slow with this process as rushing through it leads to missing key details. The IT Department is not updated with the latest technology.