User Account

All Pages

Controls by management while taking a risk, Other Subject

Assignment Help:

Controls 

When Management chooses to moderate a risk, they will do so by execute one or more of three dissimilar types of controls.

Administrative

Administrative controls (also called procedural controls) consist of accepted written, procedures, standards, policies and strategy. Administrative controls form the framework for running the business and organization people. They notify people on how the business is to be run and how day to day operations are to be conducted. Regulation and rules created by government bodies are also a type of managerial control because they notify the business. Some industry sectors have policies, events, standards and guidelines that must be followed - the Payment Card Industry (PCI) Data Security Standard required by master card and visa is such an instance. Other examples of administrative controls consist of the corporate password policy, security policy, hiring policies and disciplinary policies.

Administrative manage form the basis for the selection and implementation of logical and physical controls. Physical and Logical controls are manifestations of administrative controls. Administrative controls are of principal importance.

Logical

Logical controls (also called technical controls) use software and data to control and monitor access to information and computing systems. For instance: network, passwords and host based network intrusion detection systems, firewalls, data encryption and access control lists,are rational controls.

An significant logical control that is often overlooked is the principle of least privilege. The standard of least license requires that an entity, system or program process is not arranged any more access privileges than are necessary to execute the assignment. A blatant example of the failure to adhere to the principle of least opportunity is logging into Windows as user manager to examine Email and surf the Web. Contravention of this principle can also occur when an individual collects additional access privileges over time. This occurs when employees' job duties change, or they are promoted to a new position, or they transfer to one more section. The access rights required by their new duties are frequently added onto their previously existing access rights which may no longer be necessary or suitable.

Physical

Physical controls check and control the environment of the work place and computing conveniences. They also control and monitor access to and from such services. For instance: locks, doors, heating and air conditioning, smoke and fire alarms, fire cameras, barricades ,suppression systems,  fencing,  cable locks, security guards, etc. Separating the network and work place into functional areas are also physical controls.

An significant physical control that is often overlooked is the separation of duties. division of duties make sure that an individual can not entire a serious task by himself. For instance: an employee who submits a request for repayment should not also be able to approve payment or produce the ensure An applications programmer should not also be the server manager or the database administrator - these roles and responsibilities must be estranged from one another.

Related Discussions:- Controls by management while taking a risk

Orthodontic practice, Dr. Tamera Haines is an orthodontist in Lithia Spring...

Dr. Tamera Haines is an orthodontist in Lithia Springs, Georgia, who specializes in providing superior care for adults and children.  She received her Bachelor of Science degree in

Organizational behaviour, Whom do you think Rajender will eat with? Why?

Whom do you think Rajender will eat with? Why?

Economic factors - pest analysis of hotels, There are two ways to classify ...

There are two ways to classify the economic factors they can be either put in the microeconomic criteria or macroeconomic criteria. Switzerland is the 5th strongest country globall

Health cares in rural areas, Health cares in rural areas should be well equ...

Health cares in rural areas should be well equipped with machineries such as x-rays and CT in order to be able to meet the patient's expectations. At the same time, there should be

Parties involved in credit cards, PARTIES INVOLVED Cardholder: Th...

PARTIES INVOLVED Cardholder: The owner of the card used to create a purchase; the customer. Card-issuing bank: The financial organization or other organization that

Health and saftey, do you have writing uk style

do you have writing uk style

Religion, i want the big introduction to islam

i want the big introduction to islam

Explain grading techniques along with its advantages, Question 1 Explain g...

Question 1 Explain grading techniques along with its advantages and disadvantages Question 2 What is Block movement method? Explain the process of block movement method

Visual art of the united states, Visual art of the United States: Visual a...

Visual art of the United States: Visual arts of the United States refer to the history of painting and visual art in the United States. In the late eighteenth and early nineteenth

Implementation of data encryption standard, Implementation of this standard...

Implementation of this standard- This standard became efficient July 1977. It was reaffirmed in 1983, 1988, and 1993. It applies to all Federal agencies, contractors of Federal

Write Your Message!

Captcha
Order Assignment

Featured Services

Order Now

Popular Subjects

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd