Premium Essay

Assighnment #2: Ais Attacks and Failures: Who to Blame

In: Business and Management

Submitted By acc564
Words 1552
Pages 7
ASSIGHNMENT #2: AIS ATTACKS AND FAILURES: WHO TO BLAME
Introduction
In this paper, I am going to present about an accounting information system attacks and failures: who to blame. I am also going to discuss the following related topics in the following order:
Firstly, I will take a position on whether a firm and its management team should or should not be held liable for losses sustained in a successful attack made on their AIS by outside source. Secondly, I will suggest who should pay for the losses, to whom, and state why. Thirdly, I will give my opinion regarding the role, if any; the federal government should have deciding and enforcing remedies and punishment. Finally, I will evaluate how AIS can contribute or not to contribute to the losses.
A Firm and its Management Team Should Be Held Liable for the Losses According to the Control Objectives for Information and Related Technology (COBIT) framework and the Trust Services framework, achieving organization’s business and governance objective require adequate control over IT resources. IT processes must be properly managed and controlled in order to produce information that satisfies the seven criteria: effectiveness, efficiency, confidentiality, integrity, availability, compliance and reliability. These IT processes are grouped into the following four management activities or domains (Romney & Steinbart, 2012). 1. Plan and Organize (PO), 2. Acquire and Implement (AI), 3. Deliver and Support (DS), and 4. Monitor and Evaluate (ME).
First of all management develops plan to organize information resources to provide the information it needs. It then authorizes and oversees efforts to acquire the desired functionality or technology solutions. Management also performs a number of activities to insure that the resulting system actually delivers the desired information. Finally, there is

Similar Documents