Scribd
Upload
6 views

Ais Assignment

Uploaded by

tadiwanashenicola
Copyright
© © All Rights Reserved
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
6 views

Ais Assignment

Uploaded by

tadiwanashenicola
Copyright
© © All Rights Reserved
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 4

Name :Nicola Tadiwanashe Takundwa

THREAT
1.Lack of adequate physical security measures  The premises has inadequate survilliance
cameras.

2.unauthorised access of the data  Sensitive data is being handled by non-


security cleared personnel for instance
the destruction or shredding of paper
containing confidential and sensitive data
is assigned to cleaners thus becomes a
risk to the accounting information
system.

 This also allows


altering,deleting ,corrupting ,destroying
or stealing of data.
3.Computer viruses  This is a type of malware that spreads
between computers and damages data
and software.Such viruses could be
attached to e-mails and other files during
the process of electronic transactions.

 Viruses can lead to a potential dollar loss


to companies if not prevented.For
instance the ‘’wannacry ’’ virus that
caused world’s biggest companies to lose
huge sums of money in 2017
4.Creation of fictitious or incorrect invoices
5.identity theft
6.failure to maintain backup files or other This will lead to potentially devastating loss of
retrieval techniques data.
7.

In order to mitigate the above mentioned threats l recommend that Mukuru should adopt the
following control measures:

Control measure
1.  Servers that contain financial information
must be kept in a physically safe space
with proper physical acess control
implemented .The premises should have
surveillance cameras at all ends of the
building both in the inside and
outside.Also the premises should have
backup security guards in case of a
demise like the one which occurred in
2021 where the company was robbed
leading to the loss of $100000
2.Establish strict access management policies  The company should restrict data acess
only to employees who really need it and
keep some priviledges strictly for the
admin who will use it in proper
discretion.

 In order to acess special areas to where


company data is kept the company
should make use of biometrics.Biometrics
depend on a person’s retina
scans,thumbprints or facial
parameters.This feature is useful as it is
difficult to circumvent and can deter a lot
of hackers.
3.Install antivirus or anti-::malware softwares  The company should install antivirus
softwares such as Avast and
Kaspersky.These will help to scan your
computer for viruses and other malicious
software which are hidden in your files.
4. Segregation of duties  The principle of segregation of duties is
based on shared responsibilities of a key
process that disperses the critical
functions of that process to more than
one person or department.For instance
the person who maintains and reconciles
the accounting records should not be
able to obtain custody of checks
5.
6.Back up your files  Backing upball your files is the best form
of protection.Ideally,keep your files in
three places:where you work on
them(your computer);an external storage
device and somewhere else.
st

You might also like