Computers may be great number crunchers, but do you know how their processing power is being used in your business? You rely on computer to be there to help you serve customers and make decisions. The information stored in your computers forms a significant asset to your business. All managers are at least in part dependent on computers to help them achieve their goals.
Consequently, every senior manager should be active in managing computers. But how? Computer specialists use their own language, just like every other specialist. It can be hard for non- technicians to communicate with them.
We can bridge this communications gap and help you to manage your risks.
Hackers and viruses are hot news, but did you know that most computer-related losses suffered by business are due to employee errors and flawed processes?
There is no guarantee that a computer system will automatically produce correct information or be protected from unauthorized access. The complexity of the system must be matched by the effort that is expended in controlling it.
At Direction, we understand the risk that computers can bring and how to control them. To find out how we can help you, call us.
Who needs computer risk management?
The risk of implicit trust
Do your ever receive report from a microcomputer or a larger system? How do you know that the information is accurate? Does your organization’s control of computers justify the reliance you place on these reports?
The risk of loss of assets
Information and the systems which process and store information are valuable assets to modern businesses. Do you have an inventory of all your assets? And are you safeguarding them as well as you should?
The risk of unauthorized access
Who can read your electronic mail? Who can change sales or other information in your systems? Don’t just think about hackers- the threat is more likely to come from within your own organization. You simply cannot afford to assume your system is safe.
The risk of unavailability of systems
Would your business survive a computer disaster or your telephone line going down? Many companies would be able to take orders, move stock or bill for sales. A well thought-out and tested plan could mitigate the impact of this loss. Unfortunately, many companies are still confident they will be able to manage the disaster whilst the ceilings are falling down around their ears.
The risks of communication gap
Despite effort on both parts, computer professionals and other managers often do not understand each other. Risks and opportunities may go unrecognized.
Direction can help you to identify and manage all these risks. Let us help you.
The Direction Approach
Understanding your Business
Your business, its goals and key success factors.
How do your computers support your business?
What risks do your computers present to the business?
Understanding your Computer Controls and Processes.
Security reviews
Disaster recovery planning
Application reviews
General control reviews
Baseline controls
Housekeeping controls
Analyzing process flows
Systems development
Access paths
Mitigating controls
Identifying controls
Systems software
Physical access
Alternative sites
Testing controls and processes
Operations
Dial-up access
Business resumption
Security administration
Logical access
Access to systems and data.
Testing your computer controls and processes.
Communicating Results
Relate technical computer issues to the business goals.
