Internal Controls for Infromation Security
Internal Controls for Information Technology
ACC 544
September 2, 2013
Miriam Shealy
Internal Controls for Information Technology
Internal controls for Information Technology are important as they help protect the company’s assets. Internal controls are necessary to comply with the security of the company’s information. Internal controls will be reviewed in this document as well as how can the company review its security over their internal controls.
The assets of the company need to be protected. In order to do so, the company needs to review for risks. The company needs to develop a plan for what internal control measures they would want to put into place. Internal controls will help guide how we protect our assets against threats and vulnerabilities.
Threats to a company’s assets can be known or unknown. A hacker of the system can bring parts of a system down or lose some data. It also can completely take down the system. A company should have a threat agent that would help identify such a task. The IT team will need to correct and fix this quickly. It is necessary to have firewalls in the system that will help protect against vulnerabilities. Vulnerabilities for the system would be not protecting the system. If there is not a firewall or security agent assigned to the system the information can be stolen and damaged by any type of threat.
The company should take steps of system control with monitoring, managing, and having back up plans for any type of disaster. The company must monitor their information systems. There can be threats from inside the company as well as outside the company. Insiders should have user names that link their jobs with what they are able to do in the system. This will minimize what an angry person from within side can do to hurt the whole system. The management team will also need to monitor and manage their teams to validate that the personnel is doing what is anticipated of them. Management
ACC 544
September 2, 2013
Miriam Shealy
Internal Controls for Information Technology
Internal controls for Information Technology are important as they help protect the company’s assets. Internal controls are necessary to comply with the security of the company’s information. Internal controls will be reviewed in this document as well as how can the company review its security over their internal controls.
The assets of the company need to be protected. In order to do so, the company needs to review for risks. The company needs to develop a plan for what internal control measures they would want to put into place. Internal controls will help guide how we protect our assets against threats and vulnerabilities.
Threats to a company’s assets can be known or unknown. A hacker of the system can bring parts of a system down or lose some data. It also can completely take down the system. A company should have a threat agent that would help identify such a task. The IT team will need to correct and fix this quickly. It is necessary to have firewalls in the system that will help protect against vulnerabilities. Vulnerabilities for the system would be not protecting the system. If there is not a firewall or security agent assigned to the system the information can be stolen and damaged by any type of threat.
The company should take steps of system control with monitoring, managing, and having back up plans for any type of disaster. The company must monitor their information systems. There can be threats from inside the company as well as outside the company. Insiders should have user names that link their jobs with what they are able to do in the system. This will minimize what an angry person from within side can do to hurt the whole system. The management team will also need to monitor and manage their teams to validate that the personnel is doing what is anticipated of them. Management