Академический Документы
Профессиональный Документы
Культура Документы
Executive
Management
Company Level Controls
Company-level controls over the IT
Business Process
Business Process
Business Process
Business Process
Control Environment set the tone for
Manufacturing
the organization.
Finance
Logistic
Examples include:
Etc..
Operating Style
Enterprise policies
Governance
Collaboration
Application Controls
Controls embedded in business
Information Sharing
process applications, such as large
IT Services
ERP system and smaller best-of-
OS/Data/Telecom/Networks/Continuity
breed systems, are commonly
referred to as application controls.
Examples include:
Completeness
General Controls Accuracy
Controls embedded in IT Services form Validity
General Controls. Authorization
Examples include: Segregation of Duties
Program Development
Program Changes
Computer Operations
Access to Programs and Data
Definition
Risk assessment of the risks related to the IT organization, security,
acquisition, development and maintenance, computer operations.
Objectives
To provide a comprehensive framework of internal controls for IT
activities and to provide a certain level of assurance that the
overall internal control objectives can be achieved.
Test and
Development Production
acceptance
Software library
Read access for librarian
Definition
Logical Access Security covers the controls to restrict access
to information systems and data to authorized users.
Security Policy
Confidentially Policy
Data Definition Policy
Policy Awareness Programs
Etc