Question

Prepare an FMEA with between five and ten failure modes that is directly relevant to something in your professional life as a senior manager.

Answer 1

PFMEA #:

Process Responsibility:

Mr. Paul

Core Team:

Mr. X

Process Name:

Protection of IT Assets

Prepared by:

S. De

Mr. Y

Affected Products:

Fire wall

Mr. A

FMEA Key Date:

20/12/2019

FMEA Origin date:

13/11/2019

FMEA Rev date:

#

Process Function

Potential Failure Mode

Definition Potential Failure Effects (KPOVs)

SEV

CLASS

Potential Causes of Failure (KPIVs)

OCC

Current Process Controls

DET

R P N

Recommended Actions

Responsible Person & Target date

Taken Actions

SEV

OCC

DET

R P N

1

To block any kind of unauthorized requests

Policies and Practices are not appropriately Implemented and configured

IP Spoofing, various sensitive data diverted and traffic, fraud issue

7

Practices and Procedures are not followed

6

Procedures are planned and Implemented

4

168

audit frequency needs to be increased

Mr. Paul by Jan 2020

Audit frequency increased

4

3

5

60

2

To block any kind of unauthorized requests

Policies and Practices are not appropriately Implemented and configured

attack by External Hackers, Disclosure of various business records; prosecution; bad customer impression and defection

6

Practices and Procedures are not followed

5

Procedures are planned and Implemented and Log are now maintained

5

150

audit frequency needs to be increased

Mr. Paul by Jan 2020

Audit frequency increased

3

4

3

36

3

To block any kind of unauthorized requests

Policies and Practices are not appropriately Implemented and configured

electronic transactions affected and disabled ;DDOS Attack, customer impression defection; bad PR;

8

Practices and Procedures are not followed

6

Procedures are planned and Implemented and Log are now maintained

6

288

audit frequency needs to be increased

Mr. Paul by Jan 2020

Audit frequency increased

4

3

4

48

4

Enable encryption process for Identifying the Trusted Zones

User awareness are not configured

Disclosure of customer Information, database; commercial issues and privacy issues, CIA Compromised,

7

Practices and Procedures are not followed

5

Policies, Procedures are planned and Implemented and Log are now maintained

4

140

audit frequency needs to be increased

Mr. Paul by Jan 2020

Audit frequency increased

3

4

2

24

5

Enable encryption process for Identifying the Trusted Zones

Authentication mechanism using legacy systems having improper configuration

Staff motivation level hampered, so many backlogs; bad Public relations, User not getting requested service

7

Practices and Procedures are not followed

6

Policies, Procedures are planned and Implemented and Log are now maintained

8

336

User awareness program needs to be implemented

Mr. Paul by Jan 2020

User awareness program implemented

4

4

3

48

6

Enable encryption process for Identifying the Trusted Zones

mismatch of Encryption level

Data disclosure as plain text, Disclosure of customer Information, database; commercial issues and privacy issues,

7

Practices and Procedures are not followed

6

Policies, Procedures are planned and Implemented and Log are now maintained

7

294

User awareness program needs to be implemented, audit frequency needs to be increased

Mr. Paul by Jan 2020

User awareness program implemented, Audit frequency increased

4

4

3

48