Security and Control Issues in information Systems
Download as PPTX, PDF101 likes1,958 views
The document discusses controlling information systems vulnerabilities through various technologies and security policies. It emphasizes the importance of general and specific controls, including access measures and procedures to ensure data security and prevent unauthorized access. The text also highlights the significance of procedures for daily operations and backup to safeguard data integrity.
Security and Control Issues in information Systems
- 3. Demonstrate that Information Systems vulnerabilities can be controlled. Demonstrate some of the technologies that can be used to control Information Systems vulnerabilities
- 4. Information Systems Security is a function whose mission is to establish security policies and their associated procedures
- 6. allows trustful operations by guaranteeing that the handler of information is whoever she or he claims to be.
- 17. Hardware failures Software failures Upgrade issues Disasters Malicious intent
- 18. Manually control environment of Information Systems Automatically add controls to Information Systems
- 22. The most important general controls are the measures that control access to computer systems and the information stored there or transmitted over telecommunications networks.
- 23. Specific controls for each application; User functionality specific;
- 26. Authorized access to systems Secure from any kind of attacks
- 28. Day-to-day operations of Information Systems Procedures System set-up Job processing Backup and recovery procedures
- 29. Prevent unauthorized access, change or destruction When data is in use or being stored Physical access to terminals Password protection Data level access controls
Editor's Notes
- #3: Information system is an integrated set of components for collecting, storing, and processing data and for delivering information, knowledge, and digital products. Information Systems therefore undoubtedly play an important role in today's society and are ever-increasingly at the heart of critical infrastructures, and this is widely accepted in security research literature 2. The potential losses that are confronted by businesses and organizations that rely on all these hardware and software systems have therefore led to a situation in which it is crucial for information systems to be properly secured from the outset.