Administrative Control Paper
Administrative Control Paper
Name
Practices for Administration of Physical & Operations Security
SE578ON_L
Professor:
January 13, 2012
Administrative Control Paper
How do Administrative Controls demonstrate "Due Care? To better answer this question lets define “Administrative Controls” and “Due Care.” Administrative Controls can be the defined as direction or exercise of authority over subordinate or other organizations in respect to administration and support, including control of resources and equipment, personnel management, unit logistics, individual and unit training, readiness, mobilization, demobilization, discipline, and other matters, while Due Care is the degree of care that a person of ordinary prudence and reason (a reasonable man) would exercise under given circumstances. With this understanding we can see that Administrative Controls establish the ground work for an employee to understand and be able to do their job in accordance to the company’s policies and procedures. It is these policies and procedures that enforce the Due Care process. One example of how Administrative Controls demonstrates Due Care is training, by providing proper training to the employees a company is reinforcing due care process. According to the NIST Handbook “Training employees may also be necessary to show that a standard of due care has been taken in protecting information. Simply issuing policy, with no follow-up to implement that policy, may not suffice.” (“Am introduction to,” P. 146)
How does the absence of Administrative Controls impact corporate liability? As we have stated in the previous question administrative controls demonstrate that the due care process is being applied responsibly by an employee in accordance organizations Administrative Controls. In the other hand as stated by the lecture notes a lack of administrative controls suggests that management is negligent in understanding its responsibility. If management fails the due
Name
Practices for Administration of Physical & Operations Security
SE578ON_L
Professor:
January 13, 2012
Administrative Control Paper
How do Administrative Controls demonstrate "Due Care? To better answer this question lets define “Administrative Controls” and “Due Care.” Administrative Controls can be the defined as direction or exercise of authority over subordinate or other organizations in respect to administration and support, including control of resources and equipment, personnel management, unit logistics, individual and unit training, readiness, mobilization, demobilization, discipline, and other matters, while Due Care is the degree of care that a person of ordinary prudence and reason (a reasonable man) would exercise under given circumstances. With this understanding we can see that Administrative Controls establish the ground work for an employee to understand and be able to do their job in accordance to the company’s policies and procedures. It is these policies and procedures that enforce the Due Care process. One example of how Administrative Controls demonstrates Due Care is training, by providing proper training to the employees a company is reinforcing due care process. According to the NIST Handbook “Training employees may also be necessary to show that a standard of due care has been taken in protecting information. Simply issuing policy, with no follow-up to implement that policy, may not suffice.” (“Am introduction to,” P. 146)
How does the absence of Administrative Controls impact corporate liability? As we have stated in the previous question administrative controls demonstrate that the due care process is being applied responsibly by an employee in accordance organizations Administrative Controls. In the other hand as stated by the lecture notes a lack of administrative controls suggests that management is negligent in understanding its responsibility. If management fails the due