Question

Some experts encourage organizations to include internal and external parties in a security audit. This means...

Some experts encourage organizations to include internal and external parties in a security audit. This means it might include all end users, which would involve all staff and the customers or client base. There are risks for including both of those groups that are not associated with a standard IT Audit.

Provide your reasons for what group you might exclude from the security audit and what are your reasoning for excluding them? Are there regulatory or other reasons why they might not be able to be excluded?

Engineering   Computer-Science   
0 0
Add a commentTranscribed image text
Next >

Homework Answers

Answer #1

Yes, it is always a good practice to include both internal and external audit teams to perform the audit for your company. If the external team is a well reputed auditing organisation, then it can be a wise decision to undergo an security audit with that external team. But there is something you need to exclude while undergoing an external audit as you don't want your data to be exposed to outsiders. Internal user group should be excluded from that security audit.

The internal user group having access to all the internal data of the organisation and this group should not undergo the external audit. Though there is a very very negligible chance of data breaching yet no chance should be taken as data always remains an integral part of the organisation.

0 0
Know the answer?
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Log In

Sign Up

Not the answer you're looking for?
Ask your own homework help question
Similar Questions
What tools could AA leaders have used to increase their awareness of internal and external issues?...
What tools could AA leaders have used to increase their awareness of internal and external issues? ???ALASKA AIRLINES: NAVIGATING CHANGE In the autumn of 2007, Alaska Airlines executives adjourned at the end of a long and stressful day in the midst of a multi-day strategic planning session. Most headed outside to relax, unwind and enjoy a bonfire on the shore of Semiahmoo Spit, outside the meeting venue in Blaine, a seaport town in northwest Washington state. Meanwhile, several members of...
Review the Robatelli's Pizzeria Case Study. Develop another internal controls system, but this time, in the...
Review the Robatelli's Pizzeria Case Study. Develop another internal controls system, but this time, in the purchases and fixed assets business areas. Prepare a 12- to 16-slide presentation describing the purchases and fixed assets business areas. Be sure to incorporate speaker notes as well as appropriate visuals, graphics, fonts, etc. Include any associated risk in these areas. Describe specific internal controls that include authorization of transactions, segregation of duties, adequate records and documentation, security of assets, and independent checks and...
Lebanon’s infrastructurewas extremelydamaged by the 1975-1990 civil war. The quality of public utilities decayedfurther after the...
Lebanon’s infrastructurewas extremelydamaged by the 1975-1990 civil war. The quality of public utilities decayedfurther after the war in 2006 and the Syrian war in 2011.Since then, Lebanonhas lacked sustainableelectricity, education, health, transport and other basic networksdue to the chronic inability of successive governments to manage and plan them.As a result, the growth of the economy has been severely constrained.The public company Electricite du Liban (EdL) weighs heavily on the government’s expenditures. Subsidies to EdL stood at an average of $1.85B...
Case Abstract: Company ABC, an AE, constructor and construction management firm, recently assigned Bob Ironside to...
Case Abstract: Company ABC, an AE, constructor and construction management firm, recently assigned Bob Ironside to turn a major coal fired generating station project around. Currently at 36 percent construction completion, the project is shifting from an emphasis on civil and structural work to bulk production. Cooperation of the owner, the multi-prime contractors, and strong labor unions is cach vital for performance improvement. The analysis of this project involves: 1) identification of significant external influences on the project organization, 2)...
QUESTION: Why do governments typically take an unsupportive stance on countertrade arrangements? Article Below: The Bell...
QUESTION: Why do governments typically take an unsupportive stance on countertrade arrangements? Article Below: The Bell Boeing V-22 Program, a strategic alliance between Bell Helicopter, a Textron Company, and the Boeing Company,1,2 announced the V-22 Osprey tiltrotor will be featured at the Dubai International Air Show in the United Arab Emirates (UAE) from November 13 to 17, 2011. The Air Show, held biennially, is organized in cooperation with the government of Dubai, the Department of Civil Aviation, and Dubai International...
Team 5 answer the questions What are 4 key things you learned about the topic from...
Team 5 answer the questions What are 4 key things you learned about the topic from reading their paper? How does the topic relate to you and your current or past job? Critique the paper in terms of the organization and quality. Incentive Systems             In this paper, we will focus primarily on financial rewards that companies use to attract, retain and motivate the brightest and most talented candidates in the labor market. By providing a reward system that...
read Seasons of Love chapter:measuring a child's life after suicide. please answer the questions : reflect...
read Seasons of Love chapter:measuring a child's life after suicide. please answer the questions : reflect on what happens to the families when there is a suicide in the family, based on the Seasons of Love chapter...how should people be told? What details are best left unshared? below is the story These theories may have a certain face-validity, but they often neglect environmental or contextual factors that are innate to answering the question of “why” a person might engage in...
Using the model proposed by Lafley and Charan, analyze how Apigee was able to drive innovation....
Using the model proposed by Lafley and Charan, analyze how Apigee was able to drive innovation. case:    W17400 APIGEE: PEOPLE MANAGEMENT PRACTICES AND THE CHALLENGE OF GROWTH Ranjeet Nambudiri, S. Ramnarayan, and Catherine Xavier wrote this case solely to provide material for class discussion. The authors do not intend to illustrate either effective or ineffective handling of a managerial situation. The authors may have disguised certain names and other identifying information to protect confidentiality. This publication may not be...
Please read the article and answear about questions. Determining the Value of the Business After you...
Please read the article and answear about questions. Determining the Value of the Business After you have completed a thorough and exacting investigation, you need to analyze all the infor- mation you have gathered. This is the time to consult with your business, financial, and legal advis- ers to arrive at an estimate of the value of the business. Outside advisers are impartial and are more likely to see the bad things about the business than are you. You should...
2. SECURING THE WORKFORCE Diversity management in X-tech, a Japanese organisation This case is intended to...
2. SECURING THE WORKFORCE Diversity management in X-tech, a Japanese organisation This case is intended to be used as a basis for class discussion rather than as an illustration of the effective or ineffective handling of an administrative situation. The name of the company is disguised. INTRODUCTION In light of demographic concerns, in 2012, the Japanese government initiated an effort to change the work environment in order to secure the workforce of the future. Japan is world renowned for its...
ADVERTISEMENT
Need Online Homework Help?

Get Answers For Free
Most questions answered within 1 hours.

Ask a Question
ADVERTISEMENT