SOCI 419 Study Guide - Final Guide: Cobit, Public Key Infrastructure, Data Control Language
Document Summary
Information processing risks are associated with incomplete, inaccurate or unauthorized data about a business event. Internal environment: most important component of erm and internal control frameworks ii. Human resources standards such as hiring, compensating, training, evaluating, promoting, discharging, etc. should include rotating duties, disgruntled employee management and confidentiality agreements: objective setting, event identification, risk assessment and response, estimate likelihood and impact ii. Identify controls: estimate costs and benefits, determine effectiveness v. Implement control: reduce, accept, share, avoid, control activities, authorization of transactions and activities, segregation of systems and accounting duties, change management controls, checks on performance f. Information and communication: monitoring, monitor system activities, tracking and detection software, conduct periodic audits, fraud hotline. Internet: demilitarized zone is a separate network that permits controlled access from the internet to selected resources, transmission control protocol (tcp) specifies the procedures for dividing files and documents into packets to be sent over the internet e.