Security issues in Toyota Motor Corporation

Projection of the security issues is one of the main concern of the business organizations . This is the main concern is now dealt through information technology of all large-scale organization. The report is mainly put its focus to the processing of the security glitches that are present in the functioning of the database management system. Through this report a brief idea will be given about the size of the organization and the roles of the security managers that are present and are concerned with persisting security problems .The security plan is discussed by their consent and is being proposed to mainly focus on the better structuring of the organization.  and in addition suggest   improvements that can be used in the structuring of better security framework. The security personnel’s (Jeong and Ko 2016) will play an important role in managing and creating a security framework. The discussions are made in context about the using of the protocol that helps in better transaction of the data management system. The main instances shown in this context will ensure the fact that the improvising of the ISO security services. Further information that are showcased in the report also discusses about the implementation of the preferred ISO security standard (Baldwin and Lopez?Gonzalez, 2015). Apart from the above theories, there are conceptual sections, which also focus the ISO Standard. The article mainly contexts the process of performing through mitigation with the projection of the security issue mitigation.  The better management of the cyber security problems to check the cyber-attacks. There are future improvement suggestions will build a better system architecture to cross check  the main issue that has been  present in the projection of the data management, this main projection that is to be performed incurs the fact that the commencement of the security issues will be performed with high proficiency (Geller, 2015).  

Toyota is Japanese multinational business organization. This automobile manufacturing company has a huge global audience base for the regular cars. This is the main reason that the more than 360,000 employees who are hired by the automobile organization (Maynard, 2018) perform the projection of the commencement of their project. Toyota has been growing successfully as an organization. the exponential range of growth of this organization is showcased when it was declared when Toyota was name as the 6^th largest country in the world  this  made it as one of the most important organization as in the year 2018.Toyota is now expected to manufacture more than 10 million vehicles per year. These statistics prove the rate of the success of the organization of the organization. The total number of vehicles that Toyota has manufactures yearly can even be estimated up to that of the 200 million. Toyota is considered one of the largest business organization in the processing of the business management system. Toyota is also termed and considered as the largest hybrid electric vehicle manufacturing company. These facts are enough to ensure that Toyota to be a large-scale industry. The organization was found in the year 1937. The company has been thriving ever since.

Plans to mitigate the security issues

Issues that are present in the prosecution of the business management includes the problem regarding the click jacking of the pages and projection.  These sensitive actions are taken into consideration. CSRF vulnerability demonstration is present in the projection of the business management (Penna and Geels 2015) discusses the type of threats that could affect the organization. Another major problem that is present in the course of the functioning includes the processing the security issue prosecution. The main reason that the prosecution of the data management occurs is because of the  the undue usage of the unpatched browsers that affects the business organization in a negative way. The main problem that is present in the course of the projection of the security issue proves that the imposters are present in the course who wants to gain access to the projection of the data, generated by the business organization of the Toyota. There must be security headers that are required in the functioning of the Toyota. These headers that are required for the processing of the business management is missing in case of the Toyota Company. Another issue that is present in the course of the completion of the business terminology incurs due to proper email transaction. Toyota lacks in the prosecution of the email spoofing issue which  lead to the loopholes  that the imposters used to can gain data .    

Plans to mitigate the issue includes the fact that the projection of the website that is created by the testing of the processed website helps in the functioning of the Toyota in a better way. This instigates the fact that the prosecution of the phishing attack proof must be   performed, as it will help in providing robustness in the processing of the business management system. The networks that are being approached from the United States will proceed with the projection of the network manipulation that is done by the imposters (Rustambekov, 2015). The implementation of the criminal law in the projection of the official website of Toyota must be done. This implementation of the data processing will include that any external authority does not access the transaction of the data. In case the terminology that is present in the prosecution of the data management system, the main projection will be performed with the help of the robust infrastructure. The compliance of the HackerOne terminology is important in the course of data management and this is the main reason that the business processing will be performed with the help of this law implementation. Test properties must be included in the functioning of the data assessment. This helps in better prosecution of the security issues.       

Roles of security personnel in Toyota Motor Corporation

Roles that are currently employed in the projection of the Toyota group are as follows: –

• Security designer: the main purpose of hiring a security designer is that a security designer will ensure the design the infrastructure of the software that will be used in terminology of the data storage. The main purpose of the security design manager keeps a check on the functioning of the security developers. The security developers are provided with reference and this leads to the fact that the processing of the business management will be performed with highest robustness. Proper monitoring of the business management is one of the most important aspect that confirms the fact that the entire infrastructure that is being built is performed with highest proficiency. This ensures the fact that the projection of the infrastructure is robust in nature as the infrastructure that is present in the projection of the data storage platform. The main projection of this process is because Toyota has been concerned regarding the security of their system. this acts as the reason that the projection of the data insecurity that is present in the course of data storage  
• Security Developer: Security developers works under the commands of security designing manager. This team of developers are mainly responsible for the projection of the data security for the Toyota. This ensures the fact that the entire process of security development revolves around the projection of this developers. This is the main reason that the people who are being hired for this past are highly qualified and the concepts regarding the cyber security is very high. This is the reason that the developers efficiently complete the projection of a secured database.
• Information Technology system manager: Information Technology system manager is mainly concerned with the versions of software that is used on the completion of the project commencement (Rustambekov,  2015).. This incurs the fact that they select the software’s that are used in the database. This ensures that the processing of the infrastructure materials are selected by them as they have a valid and in depth conceptual knowledge regarding the subject. The collaboration of the security design manager and the information technology system manager acts as a wing for the Toyota organization as the data management can be performed with the help of proper knowledge gaining regarding the stuffs that are to be used in the prosecution off the database. The security system designer has been acting as one of the most important part of the job role of the information technology system managers they need to understand the configuration of the objects that are stated by the Information technology system manager. After getting accustomed with the specification of the objects that are suggested by the Information technology system manager, the designer starts designing the data base and this gives high proficiency in the business commencement.
• Initiation manager: the initiation manger involves the processing of the entire business processing. The fact that the initiation manager performs the initiation of the project. The basic planning of the entire project functioning can be performed with the help of the initiating manager. This pre planning of the project insists the fact that the projection of the data management can be performed with the help of the data projection center. This is the reason that this manager will plan the proclamation of risk management. This is the reason that the projection of the data management is performed with the help of the data manager (De Vires 2010). Initiation manager plays an important role in the projection of the data management as the entire business process is commenced with the help of the planning of the project completion.
• Information manager: Main role of the information manager is to gather information regarding the projection of the business completion. This is the main reason that the completion of the business project includes the better performance in the projection of the data management. This is the an reason that  the information that are gathered in the processing of the data management system, the Information Technology system manager gets assisted and this helps in understanding the fact that the processing of the data management. This is the reason that the importance of the information manager is that the Information Technology system manager gets assisted by the Information manager as the data that is generated by the Information manager is used by the Information Technology system manager for better completion of the project.
• Maintenance manager: the monitoring of the entire project is dependent on the processing of the maintenance manager. After completion of the project by the Information Technology system manager and the Information technology incurs the projection of the data commencement and this is the reason that the dependency of the functioning of the data prosecution can be performed with the help of the projection of the data management. In case

In order to be have a better growth and synchronize of the organization, the organization must make sure that there security framework of the organization and make some improvements in the case of management. The security framework must be highly improved and updated according to the technological advancement that created to instruct the framework of the organization.  The organization must have to make improvements regarding the role of security personnel and security framework. There must be proper chain of roles decided as per the work in the organization of the system management. The suggested improvements are given as follows:

1. There must be updated software and recent development on the operating system of all the computer system. The original and licensed software should be used in the each case. The organization must have the licensed software used for improvements and work in each case. The organization must aid the software and the organization to maintain a better interface of the system with the using employees. The upgraded systems will be faster to use and provide better experts to create better experience of the software (Fujimoto, 2018).
2. The system designing must be robust in nature; the system design must not be hard to understand and must be implemented according to the organizational requirements. The system designer must have the total knowledge about the system architecture of the organization. The system designer must design a better user interface of the organization so that employees could be quite acquainted with the new technology and the system. he should have proper knowledge about the security framework according to size of the organization empowers the organization’s security framework. The system designer should decide the framework of the organization.
3. The security framework must be applicable according to the system security developer. The developer must be highly qualified to take the organization’s security as a prime priority. The developer must have the idea of recent developed frameworks to counter the cyber-attacks and must be flexible to the implement models to encounter the further problems.
4. The organizational system architecture and the database management is looked forward by the information system manager. It is mandatory for him to know about the field and the subject that is to be discussed under the organization.
5. There must be a proper cloud storage and the improvisation should be done on the regular backup of the organization. the organization must have upgraded database and firewall security to enhance the better security of the organization(Olovsson, 2016),
6. The organization must have a better organizational surveillance of the system to ensure that there is less data breach through internal sources. The organization must be highly improvised to make sure that there is no loopholes in the system security architecture.

Security, maintain database and make synchronization of work much easier. This report discuss the security plan that fulfils all the loopholes of the system architecture of Toyota. It also focuses on the type of organization, the problems that has been faced by the organization and other problems the training requirements are the most essential part of the organization. The training provides the beforehand idea of each and every project that is being implemented in the new system(McNeil,  and Embrechts 2015). The implementation of the training regarding cyber security to the stakeholders is mentioned in order to make them acquaint that what threats they could face while accessing the computer system. The proper training makes them ready to encounter the further attacks that are occurring in the system

The training session must be done under the highly qualified professional to ensure that there is a proper knowledge given to each and every stakeholders of the organization (Mesquida and Mas 2015).

There are some of the most widely acclaimed ISO security standards .they that can be implemented in Toyota. The ISO 26000 standard can be implemented within its organizational structure. There are different areas of improvement or amendment within this security standard some of which can be addressed by the organization (Revankar and Pai 2017.). There are issues in the different segments of the standards such as organizational governance, human rights, labor practice, community envelopment, environmental issues as well as consumer’s issues etc.

Some of the steps that are be taken by Toyota to develop these segments within the standard. It has come up with more flexible management policies to ensure optimum employee satisfaction within the workplace. Human rights that are more organized as well as management of business risk strategies are being developed by the organization. Innovative plans of coming up with newer vehicles are coming up which will aim in reducing emission of harmful gases like carbon monoxide in the environment. The ISO 26000 also aims to come up with more strategies in contributing to the welfare of the society and ensuring better customer satisfaction, thereby ensuring repeat business from the existing customers all across the world. Most importantly, this ISO standard will also ensure that the customers will also be able to be happier with the Toyota products and develop their trust in a brand that is having the ISO 26000 certification (Stojanovi?, B. and Ivanovi? , 2015).

Improvement suggestions for the security framework

There are different threats that are associated with the ISO 26000 standard that has to be considered by the organization in order to ensure a smooth work operation. Some of the threats that are associated with the ISO 26000 standards are described below:

• Unauthorized access to the information networks within Toyota: This can occur when there are illegal breaches into the Toyota network by the hackers thereby resulting in data theft and security breach.
• Destruction of the records within the company: This occurs when there is purposeful destruction of the important data records within the organization thereby resulting in security compromise of the data within the organization. This is usually caused by employee vandalism when the employees can purposely cause the data records to be corrupted or damaged for their own personal as well as professional interests.
• Misuse of audit tools: This can happen when the system administrators of the organization are dishonest and participate in acts of modifying the different audit trail items as well as the history of the information about which employee accessed what information and at what point of time (Whitman and Mattord, 2011). This in turn can make it difficult or impossible for the administrators to determine or track the culprits behind any acts of misconduct within the organization (Yoshida and Kojima 2015).

The threats that are persisting in the company can be ensured by the Toyota Motor Corporation is mentioned according to the threats that have been mentioned in the above section. The justification will show the reason and the result of the vulnerability that was later fulfilled by implementation of the security plan and assigning roles to the security personnel.

1. Lack of network ethics- the lack of network ethics in the organization disorient the growth rate of the organization. Without the presences of any firewall or the security framework, the open network might be the reason of many cyber-attacks. The proper network ethics will ensure the secure usage of the networks in the organization.
2. Lack of audit tools- the lack of the audit tools can create internal data breach anytime within the organization. The security tools make sure that there is a proper surveillance of the searched and the access data of the system.
3. Unauthorized access to information networks- there have been cases of using the proxy networks to access the social website. The proxy networks are storehouse of malware and Dos attacks. There must be a proper firewall installed to check the proxy networks from being accessed from the computers that are the part of the systems.

Conclusion

This report mainly concludes the overall security plan for Toyota Motor Corporation. The new security framework and security personnel were assigned to implement a new framework to the company. The security framework is an essential part of the organizational system. The system management helps the organization to control cyber.  The report suggest the improvement measures according to the plan that has been discussed in the organization, the necessity of the organizational learning and training. It also discusses the benefits of the ISO standard and how it implementation can cover the threats that are persisting in the organization. The report mainly focuses on the management of the information system and also the organization growth through new security framework.

References

An, H., Yang, W.M. and Li, J., 2015. Numerical modeling on a diesel engine fueled by biodiesel–methanol blends. Energy Conversion and Management, 93, pp.100-108.

Baldwin, R. and Lopez?Gonzalez, J., 2015. Supply?chain trade: A portrait of global patterns and several testable hypotheses. The World Economy, 38(11), pp.1682-1721.

Debnath, S.C., 2015. Environmental regulations become restriction or a cause for innovation–a case study of Toyota Prius and Nissan Leaf. Procedia-Social and Behavioral Sciences, 195, pp.324-333.

Geller, T., 2015. Car talk. Communications of the ACM, 58(3), pp.16-18.

Jeong, H.J. and Ko, Y., 2016. Configuring an alliance portfolio for eco-friendly innovation in the car industry: Hyundai and Toyota. Journal of Open Innovation: Technology, Market, and Complexity2(1),p.24.

Kinsella, S., 2015. Adult manga: Culture and power in contemporary Japanese society. Routledge.

Maynard, M., 2018. Issue: Global Manufacturing Short Article: After ‘the Learning Period’at Toyota.

Penna, C.C. and Geels, F.W., 2015. Climate change and the slow reorientation of the American car industry (1979–2012): An application and extension of the Dialectic Issue LifeCycle (DILC) model. Research Policy, 44(5), pp.1029-1048.

Basin, D., Cremers, C., Miyazaki, K., Radomirovic, S. and Watanabe, D., 2015. Improving the security of cryptographic protocol standards. IEEE Security & Privacy, 13(3), pp.24-31.

Bromiley, P., McShane, M., Nair, A. and Rustambekov, E., 2015. Enterprise risk management: Review, critique, and research directions. Long range planning, 48(4), pp.265-276.

De Vires, M., 2010. A framework for understanding and comparing enterprise architecture models. Management Dynamics: Journal of the Southern African Institute for Management Scientists, 19(2), pp.17-29.

Fujimoto, T., 2018. Evolution of Organizational Capabilities in Manufacturing: The Case of the Toyota Motor Corporation. In Industrial Competitiveness and Design Evolution (pp. 191-221). Springer, Tokyo.

Hillson, D. and Murray-Webster, R., 2017. Understanding and managing risk attitude. Routledge.

Islam, M.M., Lautenbach, A., Sandberg, C. and Olovsson, T., 2016, May. A risk assessment framework for automotive embedded systems. In Proceedings of the 2nd ACM International Workshop on Cyber-Physical System Security(pp. 3-14). ACM.

Jayanthi, M.K., 2017, March. Strategic Planning for Information Security-DID Mechanism to befriend the Cyber Criminals to Assure Cyber Freedom. In Anti-Cyber Crimes (ICACC), 2017 2nd International Conference on (pp. 142-147). IEEE.

McNeil, A.J., Frey, R. and Embrechts, P., 2015. Quantitative Risk Management: Concepts, Techniques and Tools-revised edition. Princeton university press.

Mesquida, A.L. and Mas, A., 2015. Implementing information security best practices on software lifecycle processes: The ISO/IEC 15504 Security Extension. Computers & Security, 48, pp.19-34.

Revankar, B. and Pai, R.H., 2017. Sales promotion of Toyota brand into car owners in north-west Karnataka Cities. Asian Journal of Research in Marketing, 6(3), pp.20-30.

Stojanovi?, B. and Ivanovi?, L., 2015. Application of aluminium hybrid composites in automotive industry. Tehni?ki vjesnik, 22(1), pp.247-251

Romney, M.B., Steinbart, P.J. and Cushing, B.E., 2000. Accounting information systems (Vol. 2). Upper Saddle River, NJ: Prentice Hall.

Whitman, M.E. and Mattord, H.J., 2011. Principles of information security. Cengage Learning.

Yoshida, T. and Kojima, K., 2015. Toyota MIRAI fuel cell vehicle and progress toward a future hydrogen society. The Electrochemical Society Interface, 24(2), pp.45-49.