Security Controls are necessary in protecting data and stopping attacks both before they happen and after they happen. With Controls in place we can help prevent them and detect after a security breach as occurred. For ABC credit union the following security controls would be enforced:
Preventative Control: Separation of duties. Having separation of duties will ensure that not one person will have full access to a database. It can be monitored and overlooked by multiple people so if there is a breach of error of any kind it can be caught be one of those people. This also helps in security of stealing or changing information with other employees having access to something it’s less likely an employee will change or transfer funds illegally without it being caught by another employee. ABC credit union will enforce this with money transfers of over 2500 dollars. The wire transfer will have to be checked and verified by 1 other management personnel before the transfer can occur.
Detective control:
ABC credit union will implement a detective control of Monthly Reviews of wire transfers and transactions. This will ensure there are no discrepancies within accounts or funds being transferred. Each wire transfer will be reviewed at months end to be sure all paperwork and protocols were followed. This can help detect any errors of either human or computer based.
Corrective Control:
Corrective controls can help aide in the understanding and information after an error or attack as occurred. ABC credit union will enforce corrective controls such as backup and recovery and error statistics. Backup will help after an error to be able to backtrack to the point of the error. By backing up data periodically the capability of returning to a prior point can occur. Error statistic will allow us to see what errors are happening and when and by who. By seeing errors in a