Aztek Risk Management & Assessment
18 Pages5082 Words30 Views
Added on 2020-04-07
Aztek Risk Management & Assessment
Added on 2020-04-07
ShareRelated Documents
AZTEKAztek: IT RiskManagementBring Your Own Devices (BYOD)
Aztek: Risk Management & AssessmentExecutive SummaryAztek is an Australian company that provides financial solutions and services to the clients. There arecertain issues that are being observed in Aztek with its growth and expansion in terms of infrastructureand operations. The management has suggested various projects for the elimination of these issues andBring Your Own Devices (BYOD) is a suggestion that will be implemented. The report covers theassessment of the risks for the project and discusses it viability from the feasibility and security aspects.The types of the risks that may come up and their management have been covered in the report along withthe elaboration on the aspect of data security. Findings and RecommendationsThe risk register has been prepared for the BYOD project that lists the risks that are identified (Cioupdate,2016). These risks include information, device and network security risks and insider threats that may beexecuted. The recommendations have been provided to ensure that the risks that are identified are avoided ormitigated and the root cause of the risk is eliminated so that their likelihood drops to zero. There areseveral management level employees that work in Aztek and also there are various departments that havebeen set up for the security management. Some of these dedicated management and departments includesecurity department and IT department along with Project Managers of every project that contribute in thesecurity management. These resources would have the authority to implement the enhanced controls andadministrative checks so that security vulnerabilities are highlighted and are avoided. These resourcesmust work on the security updates in the policies and administrative plans along with the increase in thefrequency of the security audits, reviews and inspections. The security reports that are prepared in theseactivities must also be reviewed so that the areas of improvement are worked upon. The technical sets of controls are the security measures that must be taken so that the technology is put touse in the avoidance and prevention of the security attacks. For the information security attacks, the firstmeasure shall be encryption of all the data sets so that the misuse is avoided and controlled. There shallalso be use of automated anti-malware and anti-denial tools to avoid the risks. The network security risksshall be avoided by using network based intrusion prevention and detection application, network scanningtools and network audit tools. The devices of the employees must be installed with security tags andtrackers.2
Aztek: Risk Management & AssessmentAccess control, identity management, firewalls and authentication systems are some of the basic stepstowards the security. These shall be made stronger by using combination of administrative and technicalcontrols. There shall be use of biometric systems, role based access control systems, resourcemanagement systems etc. for avoiding the unauthorized access in the office or the applications. The employees may also be the carriers of the risk and the risks associated with employee mistake ordeliberate action shall be avoided by explaining them the implications of the security risks on theemployees. They may be held responsible for the risk if it is caused through their device and there may belegal obligations on them as a result. The employees must also be made aware of the best securitypractices that they may follow for the avoidance of the risks. They must be provided with the knowledgeand information on the ethical practices to follow along with professional codes of conduct. 3
Aztek: Risk Management & AssessmentIntroduction.................................................................................................................................................5Aztek – Overview of the Organization....................................................................................................5BYOD: Project Details & Overview........................................................................................................5Project Review from Finance Service Sector...............................................................................................6BYOD Description: Financial Aspects....................................................................................................6Aztek IT Security Policies & Procedures....................................................................................................8BYOD Scheme: Risk Assessment...............................................................................................................9Process for Risk Management.................................................................................................................9Risk Register.........................................................................................................................................10Data Security for the BYOD Scheme........................................................................................................14Conclusion.................................................................................................................................................15References.................................................................................................................................................164
End of preview
Want to access all the pages? Upload your documents or become a member.
Related Documents
Aztek: Risk Management & Assessmentlg...
|18
|4841
|31
Aztek: IT Risk Management Bring Your Own Devices (BYOD)lg...
|20
|5080
|285
ITC596 - IT Risk Management - Case study of Aztek companylg...
|18
|4571
|103
Aztek IT Risk Assessment Case Study September 26 2017 Aztek Financial Serviceslg...
|17
|5482
|245
Aztek IT Risk Assessment (DOC)lg...
|17
|4326
|45
Report on IT Risk Management for Azteklg...
|17
|4994
|31