Critical Incident:
Case Security Analysis and Lessons Learned
This session you will be required to discuss and analyze a critical incident. You will be required to
analyze, critique, and provide solutions to prevent and/or mitigate similar incidents from happening.
Critical Incidents:
Washington Navy Yard Shooting – 2013
Mumbai Terrorist Attack – 2008
Columbine High School – 1999
Sandy Hook Shooting – 2012
Virginia Tech Shooting – 2007
Chattanooga Military Recruiting Station Shooting – 2015
Yahoo Data Breach – 2013–2014
Home Depot Hacking Incident – 2014
Target Stores – 2013
Note: You are allowed to select a different incident that is not illustrated above. However, you must
submit the name of the incident (via email) for my review and approval.
Some of the aforementioned incidents have more available information than others. In addition, the
complexity of these incidents also varies, which will obviously make a difference in the scope and detail
of your recommendations.
Minimum requirements:
• Discuss the incident in detail.
• Identify possible issues that could have prevented the incident or identify problems within
the security architecture that facilitated the incident.
• List and discuss at least 3 security initiatives, actions or lessons learned that could have
been prevented or mitigated the incident.
• You must argue why you believe the selected recommendations will be effective in
mitigating or preventing the selected incident, if the incident were to happen again.
• Your analysis, ideas, suggestions must be actionable and credible. Think outside the box.
Use research, the textbook and any other resource to identify initiatives and to validate
your opinions.