-
Yulun Song posted a new activity comment 7 years, 11 months ago
Hackers attack those computers that their security of its operating system is low. Hackers use a scanner to see an area’s computers, and target on those low security OS. Internally, employees may leave some sensitive data and information in the browser, emails, etc. that would also bring more threat to the company and personnel.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
Agreed! Other threat or risk may also be internal steals, because lack of logical access control may lead multiple unauthorized steals from multiple points of the company. Sensitive data and information of the company are the most important area, public engineer is one threat, but internal steal is another big threat.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
Great post! other risks may include organizational data leakages, stolen database backups by internal steals, lack of consistency, lack of due care, or lack of segregation of duties within an organization.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
Agreed! In addition, when search queries in relational database, it makes work faster and more accurate. And table records can be easily joined by the indexed values. Establishing one-to-many relationships, relational database can easily solve the problems whereas traditional file system cannot handle.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
Totally agree. another key thing is to protect their own accounts’ security. By understanding the basic IT knowledge would help people improve their IT security awareness, reducing organizational overall IT risks.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
That is definitely a high risk within an organization. if one technician resets a key person’s password, and pretend to not acknowledge, and this account will be a high risk within the organization because this technician is trying to do some steals and illegal things. I would say that within an organization, only few people can reset employees passwords.
-
Yulun Song posted a new activity comment 7 years, 11 months ago
The goals of control environment include to achieve organizational strategic objectives, provide reliable financial reporting to internal and external stakeholders, operate its business efficiently and effectively, comply with all applicable laws and regulations, and safeguard its assets.…[Read more]
-
Yulun Song posted a new activity comment 7 years, 11 months ago
Nice post Annamarie, in my company, everyone has the same issue that they open unsecure emails even including the manager. They use company emails personally as well. That would make data leakage because they person you sent to might not be secure. Another is employees do not lock their drawers and write down the passwords and put it on their walls.
-
Yulun Song wrote a new post on the site Auditing Controls in ERP Systems 7 years, 11 months ago
morgan-stanley-control-failure-yulun-song
-
Yulun Song posted a new activity comment 7 years, 12 months ago
3. When is the cost of implementing a compliance control higher than the benefit obtained? What should an organization do to ensure efficiency and profitability?
Often times, the cost of implementing a compliance control remain a sore point for corporate executives, but consultants say the whirlwind of regulations surrounding businesses means…[Read more] -
Yulun Song posted a new activity comment 7 years, 12 months ago
2. How is independence maintained when working for the company as an internal auditor?
Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve and organization’s operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and i…[Read more] -
Yulun Song posted a new activity comment 8 years ago
In addition to your point Ming. Inaccurate data also negatively influences decision-makings and delayed decision-makings to top management. also, it also wasting time and money to check and find out and correct those inaccurate data.
-
Yulun Song posted a new activity comment 8 years ago
That is Correct, Ab. Inaccurate data may allow top managers make bad and wrong decisions or delayed decisions. and also, it is wasting money and time to check it again and again and companies will lost many opportunities to make better decisions.
-
Yulun Song posted a new activity comment 8 years ago
Daniel, I like the example you made that related to your previous work. Entering inaccurate will influence a chain of work. I don’t think top managers check each invoice numbers cuz he/she may think it is wasting time and also, that is a heavy work to do because a medium sized grocery store may have more than 200 invoice numbers per day. so we…[Read more]
-
Yulun Song posted a new activity comment 8 years ago
Daniel, you are correct. Money related things are always sensitive to all kinds of entities including companies, any sized organizations or even in a family. so people should deal with money related fields very carefully. and segregation of duties must be applies to prevent any fraud and errors.
-
Yulun Song posted a new activity comment 8 years ago
3. Which is more of a risk to a company: inaccurate data or excessive repetitive data? Explain
I think inaccurate data is more of a risk to a company. If a company sends inaccurate and wrong data to the wrong persons, it can have detrimental effects on the company. In addition, inaccurate data is more costly and wasting money. Many companies…[Read more] -
Yulun Song posted a new activity comment 8 years ago
2. Which department or person should play the key role in defining master data and assuring it’s quality?
I think financial department plays the key role in defining master data and assuring its quality. Master data includes customers, products, employees, materials, suppliers, vendors, sales, documents, and aggregated sales, etc. Financial m…[Read more] -
Yulun Song posted a new activity comment 8 years ago
1. Master data in an ERP system is highly integrated with various processes and affects many parts of the organization. How does an organization assure this integration works well for all?
In an organization, master data is very important for operational and analytical business decision-making. Based on the importance of master data, i think…[Read more]
-
Yulun Song posted a new activity comment 8 years ago
The article I read for this week is called “Trend Micro: Fake Apple IOS Apps Are Rampant.” This article talked about that the Apple IOS environment is riddled with malicious fake apps, signed with enterprise certificates and had the same Bundle IDs as their official versions on the App store. For example, Pokemon Go, Facebook, and several oth…[Read more]
-
Yulun Song posted a new activity comment 8 years ago
Yes, I agree with those two abilities that a person needs to have for a company’s security. That a person is skepticism will help company dig small and detailed areas, and something that is really easy to be ignored. And being alert to any conditions will help company investigate any possible misstatement and anyone within the organization that c…[Read more]
- Load More