Saturday, November 2, 2019

Asset Assesment and E-Commerce Essay Example | Topics and Well Written Essays - 3250 words

Asset Assesment and E-Commerce - Essay Example early internal audit reports Delineation of Authorities and Responsibilities Roles defined and responsibilities delineated for: Overall fixed asset officer: 1. planning and overseeing of system asset management 2. involving in the implementation of asset management plan 3. taking action of defective or obsolete assets Hardware and software custodians (as related): 1. obtaining resources 2. performing functions 3. documenting and maintaining records 4. deployment and controls 5. managing contract agreements, internal and external customers’ relationships Asset Management manual and strategic plans, roles and responsibilities specified in the job description Organization-wide communication of the specified responsibilities Minutes of meetings, e-mails, posting in bulletin board Policies and Procedures Availability of policy and procedure development, periodic review, approvals, issuance, and control Approved policy and documented implementation Documented policies including: 1. Employees and leadership responsibilities on of software and hardware in use 2. limitations on the use of assets and software for personal use 3. compliance to legal and regulatory requirements, propriety and protection of data 4. asset acquisition 5. approval on installation and use of software 6. consequences of violating the policies Review of policies and documents on implementation Organization-wide communication of policies including: 1. newly joined employees during orientation period 2. continuing annually through in-house trainings 3. signing on acknowledgement 4. accessible to all anytime needed Publications through the e-mails, system database for manuals, adding to the code of conduct, e-mailing and minutes of meeting MANAGEMENT OF ASSETS INVENTORY Identification of Software Asset... This study shows that per audit checklist used, internal audit is not conducted periodically. Hardware changes are not covered in internal audit. Technology resources were not considered in the current year budget plan. Functions in control of assets overlap with overall fixed custodian and software and hardware custodians. Purchasing officer has nothing to do with assets contracts. Computer games are installed in the computer networks. No regular training of employees related to information technology. Positive findings deserve appreciation from the management to the responsible employees. â€Å"Keep up the good work.† On the other hand, all employees should get training on information technology. IT Department should be part of orientation program presenters for new employees. The human Resources yearly training program should include information technology topics. All employees should sign the â€Å"statement of confidentiality†. Storage of software, backup system an d consequences of information system violations should be included in the security policy.Findings from Belarc Advisor system audit recommendation should configure settings on account lockout, passwords, event logs, files permission, security options, user-right assignment and system services. Define policies for password issuance and usage, audit, the Internet, Explorer Seven and local computer. Impose restrictions on local computer administration templates, network, systems, and Windows. Create profiles for Windows firewall, domain, and standard.

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.