Wednesday, July 24, 2019
Cybersecurity Coursework Example | Topics and Well Written Essays - 750 words - 1
Cybersecurity - Coursework Example According Setton and Girod (2008), most organizations choose to handle their malicious insider attacks privately without seeking recourse in courts or public opinion courts. The editors give the example of the Carlifornia Law of Data Breach Notification which requires that whenever someoneââ¬â¢s personal information gets compromised, organizations have to notify individuals. Such laws limit the distinction between outsider attacks and insider threats. Therefore, organizations need to distinguish between private action employed when detecting an insider threat and public action which includes criminal prosecution. Publicizing such action creates awareness among the employees on the seriousness of these crimes. Training employees adequately on security and dividing critical functions among them limits frauds or sabotage committed solely (Cappelli, Moore, Shimeall & Trzeciak, 2006). In this separation of duties, the principle of least privilege ensures that one would be authorized fo r resources needed only. Topic 2 Modern organizations strive to retain the best performers so as to sustain their competitiveness. But even so, business administrators look at ways of motivating their workforce without necessarily using any additional money. Cohan (2012) estimates less than 2% of total payrolls, equivalent to $ 38 billion as employee incentives in the US. Companies give low value but meaningful gifts to their employees like t-shirts and mugs. Social rewards where workersââ¬â¢ rewards come in terms of verbal recognition and non-monetary points have been successfully used in companies like Achievers. Fisher also cites provision of better training as another appropriate incentive (2005). The controversies regarding incentives make this issue complex for there to be a valid universal conclusion on what to use. Muller (2010) cites various researchers who propose money as a key incentive because it enables satisfaction of employee needs. While this opinion could be pop ular, researchers concur that the resultant motivation would only be short term (Cohan 2012). But from my experience, giving better training to top performers would be the most appropriate incentive. The findings of Fisher (2005) which suggest that most staff value the acquisition of new skills supports a need which if met would boost staff motivation. In as much as all staff need new skills, top performers could be given more elaborate trainings which would impart greater capabilities that would enable them take up greater responsibilities in an organization. Since responsibility comes with proportionate employee compensation, most of the other incentives fall in place simultaneously. This form of incentive propagates sustainability of the other accompanying incentives which when solely given would not be sustainable in the long run. Topic 3 Auditing entails comparison of evidence gathered to criteria set out for conformity (Pinero, 2012). Syracuse University Audit and Management A dvisory Services (2012) provides five common types of audits in organizations. Operational audit aims at understanding the businesses of the organization then evaluating the effectiveness of its internal control environment. Organizations also undertake compliance as a type of auditing aimed at
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.