Question

1. Provide examples of business concerns describing the Preventive, Detective and Corrective Action with reference to Internal Control.
2. A disaster recovery plan (DRP) is a documented process or set of procedures to execute an organization's disaster recovery processes and recover and protect a business IT infrastructure in the event of a disaster. It is "a comprehensive statement of consistent actions to be taken before, during and after a disaster". Describe a Disaster Recovery Plan (DRP) for Information Technology of a Saudi Business Concern.               
3. Personal information about customers is collected, used, disclosed, and maintained only in compliance with internal policies and external regulatory requirements and is protected from unauthorized disclosure. With reference to Privacy Concern how would you deal with SPAM and Identify Theft problem of your business organization?                 

Answer 1

Preventive actions attempt to deter or prevent undesirable events from occurring. They are proactive actions that help to prevent a loss. Examples of preventive actions are separation of duties, proper authorization, adequate documentation, and physical control over assets. Detective action is a type of internal control that seeks to uncover problems in a company's processes once they have occurred. Examples of detective actions include physical inventory checks, reviews of account reports and reconciliations, as well as assessments of current controls. Corrective actions are designed to correct errors or irregularities that have been detected.

DRP for Information technology of a Saudi Business Concern:

There are multiple options available as per the requirements of the organization. Data backup is used for keeping a copy of the entire data stored on the computers so that in case of disasters the company may not be left empty-handed but could have options to recover the data to the best possible extent and to minimize the loss. Firewall solutions are offered to companies so that the traffic could be monitored and any unfortunate situations can be avoided. Data backup and recovery services provided by Absolute Solutions protect the network of the organizations from any kind of malware threat or virus attack. These are necessary and if ignored can costs large sums of money to the company for overcoming the damages.

Preventing Viruses & Malware

The endpoint devices are prone to viruses due to data transfer using portable devices like USBs or CDs. These are more commonly infected and can cause the computer in the network to fell prey of the virus and the viruses can replicate over the entire network so the companies should incorporate the Data Backup and Recovery Systems in order to overcome certain scenarios.

Absolute Solutions are offering enterprise services in an unmatched quality to make the customers satisfied with the products of HR Management and Time attendance Systems along with Data Backup & Recovery. We are a team of qualified researchers who are well aware of the techniques of making the best solutions which can outperform in all aspects.

As the organisation collects the personal information and stores it. it should be very careful to deal with SPAM and also from theft by placing effective internal controls in the organisation. Cross verifying the customer details while collecting can decrease the chance of spam and placing a strong internal control like entry only to authorised personnel to access the  data collected can decrease the chances of theft.