Question

What are application controls?   Pick a few of these and discuss a few examples of what might be a good IT control for a company to put in place.

Answer 1

Application control:-

Application control is a security practice that blocks or restricts unauthorized applications from executing in ways that put data at risk. The control functions vary based on the business purpose of the specific application, but the main objective is to help ensure the privacy and security of data used by and transmitted between applications.

Application control includes completeness and validity checks, identification, authentication, authorization, input controls, and forensic controls, among others.

1) Completeness checks – controls ensure records processing from initiation to completion. checks – controls ensure only valid data is input or processed.

2) Identification – controls ensure unique, irrefutable identification of all users.

3) Authentication – controls provide an application system authentication mechanism.

4) Authorization– controls ensure access to the application system by approved business users only.

5) Inputcontrols – controls ensure data integrity feeds into the application system from upstream sources.

6) Forensic controls – controls ensure scientifically and mathematically correct data, based on inputs and outputs.