Question

In: Accounting

Give 1 example of each : SoD issue with respect to logical access SoD  issue with respect...

Give 1 example of each :

SoD issue with respect to logical access

SoD  issue with respect to change management

Solutions

Expert Solution

SOD : Separation of Duties

Separation of duties (SoD; also known as Segregation of Duties) is the concept of having more than one person required to complete a task. In business the separation by sharing of more than one individual in one single task is an internal control intended to prevent fraud and error.

1. SOD issue with respect to logical access

Effective internal controls are a key element in protecting the integrity of operational and financial data. Making sure that proper access rights are given to users or that accounts of employees that left the company are locked on time, are just small examples of the IT controls that should be operating in your organization.

Logical access controls are those controls that either prevent or allow access to resources once a user's identity already has been established. Once a user is logged in, they should have access only to those resources required to perform their duties

Example of SOD with respect to logical access control:

Different individuals are assigned access control for recording of a Cash transaction in the system, approval of transaction in the system and collection and deposition of Cash to bank.

2. SOD issue with respect to change management

Segregation of Duties (SOD) is a basic building block of sustainable risk management and internal controls for a business. The principle of SOD is based on shared responsibilities of a key process that disperses the critical functions of that process to more than one person or department.

The main risk factor of any change process is that the new systems and procedures will not work and leave the company worse off than before.

· Resistance. Resistance to change is a common risk factor. ...

· Leadership. Organizational change management requires leadership. ...

· Disruption. ...

· Forcing Change.

Example of SOD issue with respect to change management

Effective management of change provides a structured, consistent, and measurable change environment to be utilized across an organization and is a critical component in the success of its daily business. Its goal is to increase awareness and understanding of proposed changes across the organization and ensure that all changes are made in a thoughtful way that minimize negative impacts to services and customers. An organization should have a document that defines the implementation of Change Management procedures. The computing systems, networks, peripherals, and associated facilities are subject to continuous changes driven by new technology, evolving business requirements, changing contractual requirements, and growing regulatory policies. Effective change management applies to both systems and supporting infrastructure, and is a necessary component for the continuous success and growth of the organization.


Related Solutions

What is the difference between logical access to the computer and physical access to the computer?...
What is the difference between logical access to the computer and physical access to the computer? Why is the security of both important?
Common logical fallacies: ● Explain and give an example of the causal slippery slope fallacy that...
Common logical fallacies: ● Explain and give an example of the causal slippery slope fallacy that Hamilton makes ● Which fallacy do you believe is used the most in everyday life, and what is the reasoning for its usage? ● Suppose that a football quarterback has been throwing 5 touchdowns a game. All of a sudden, he starts playing average. What explains his fall? ● How do common everyday fallacies effect our everyday communications ● How will a small sample...
Give an example of a logical fallacy that you've seen in the news today. Explain why...
Give an example of a logical fallacy that you've seen in the news today. Explain why it is a fallacy and how would you systematically argue it. Please at least 250 words. Thank you.
What is compatibility, with respect to infrastructure? Give an example of compatible civil infrastructure and an...
What is compatibility, with respect to infrastructure? Give an example of compatible civil infrastructure and an example of non-compatible civil infrastructure with justification.
Give an example of a communicable disease that is of an issue today and apply the...
Give an example of a communicable disease that is of an issue today and apply the Model of Disease Causation to its disease process (one page typed please or more and references if available)
how the palliative care team can show respect for the carer and give an example of...
how the palliative care team can show respect for the carer and give an example of how a care worker can demonstrate this.
1. What are the three types of risk? Give an example for each.
1. What are the three types of risk? Give an example for each. 2. List the four steps in planning for your insurance program. 3. Outline a personal insurance plan with the following phases: a) Identify personal, financial and property risks; b) Set goals you might achieve when obtaining needed insurance coverages; and c) Describe actions you might take to achieve these insurance goals.
What are 1:1, 1:M, and M:N relationships? Give an example for each.
What are 1:1, 1:M, and M:N relationships? Give an example for each.
1. Strategy to overcome/control the issue on 'Sustaining Competitive Advantage'. Explain and give an appropriate example.
1. Strategy to overcome/control the issue on 'Sustaining Competitive Advantage'. Explain and give an appropriate example.
Give an example of each of the following and how they are used in the example...
Give an example of each of the following and how they are used in the example you gave: 1. Enterprise Information Security Policy (EISP) 2. Issue-Specific Security Policy (ISSP) 3. System-Specific Security Policy (SysSP)
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT