Revisit the four issues identified in Problem and Exercise 9. What risk, if any, do each of them pose to the firm?
The Solution to the Problem
a. Five database administrators having a system administrator account
In this issue, the five database administrators can access every detail in the database.
Risk Factor: Any of the five database administrators can make any changes in the database when only one database administrator should be in charge of the whole changes.
b. Without the approval of management, made several changes in the structure of the database
In this issue, a person made several changes in the database structure without any management approval.
Risk Factor: Unauthorized persons can make unauthorized access to the database. This process leads to the possibility of accessing illegal programs. This causes danger to the data used in the organization and the activities performed in the organization.
c. Users having access after termination
In this issue, the users can access the database even they are terminated from the organization.
Risk Factor: The data in the database and the organization's process can be altered by the people who are not having any rights with the organization (i.e., the person who left the organization).
d. Database regularly backed up by the automated system
In this issue, an automated system regularly backed up the data in the database.
Risk Factor: If the automated system using in the organization crashes or is misused by someone, then the organization's data assets are in danger.
See Also: MDM Chapter 11 Problem and Excercise 10
إرسال تعليق