logo

Report on IT Risk Management for Aztek

   

Added on  2020-04-07

17 Pages4994 Words31 Views
1IT Risk Assessment Case StudyAztek

IT Risk Management for AztekTable of ContentsFinancial Services Review.....................................................................................................................5Security Posture & Review of Aztek.....................................................................................................6Security of the Devices and Information...........................................................................................6Application Specific Security Risks..................................................................................................7Risk Assessment....................................................................................................................................8TVA Analysis (Threat & Vulnerability Assessment)........................................................................8Countermeasures and Security Steps...............................................................................................10Data & Information Security...............................................................................................................12Information Classification & Analysis of Security..........................................................................13Conclusion...........................................................................................................................................15References...........................................................................................................................................162

IT Risk Management for AztekExecutive SummaryThe document is an IT risk assessment report for an Australian firm called Aztek that deals in thedomain of finance. The report covers the review of a project of Aztek from the financial and securityaspects. Bring Your Own Devices (BYOD) is scheme that has been approved and is soon going to beimplemented and the report is based on the same scheme for Aztek. The issues and specific risk areasand their control measures have been specified. The first section of the report explains the government regulations around the financial firms inAustralia and their relevance in case of Aztek. The bodies and acts such as ASIC, NSW, Workplaceprivacy etc. have been explained along with their norms that will be applicable in this case. The second section is the security posture review for Aztek in terms of its BYOD scheme. The currentsecurity policy and the changes required in the current policy have been covered. Risk assessment hasbeen done in the next section along with the inclusion of a risk register. The specific risks in the area of data security along with data classification have been covered in thelast section of the report. Findings & RecommendationsThere are financial and security aspects applied to understand the benefits and issues related withBYOD scheme in Aztek. A feasibility study has been carried out for the project. The main aim of Aztek is to provide its clients with the reliable and good quality financial services.There are several stakeholders associated with the organization that are working to achieve this goal.The BYOD scheme is also an attempt to achieve the same as the employees would be morecomfortable with their personal devices leading to better operational services and efficiencies. Theproject has been evaluated as feasible from the organizational perspective. Currently, there are many operational errors that the employees execute because of the limited timethat they get to spend on the tools and applications that are used. With the implementation of BYOD,this time window will expand as the employees will be able to access the tools at any time of the day.This will lead to better operational abilities and therefore, the project has been evaluated as feasiblefrom the operational perspective. Aztek is making several changes to upgrade its technical excellence and the technical components thatwill be used in the organization will be of latest versions. These tools will therefore be compatiblewith the devices of the employees making the project feasible from the technical perspective. 3

IT Risk Management for AztekThe report covers the several regulations and laws that will be applicable on the organization and theproject. There are no constraints or restrictions that may prevent the implementation of BYOD inAztek and therefore, the project has been evaluated as feasible from the political perspective. The report also highlights numerous risks and disadvantages of the project as it would further enhancethe probability of security attacks. However, there are also controls that can be applied to make surethat such events do not occur. BYOD scheme will have many advantages as well. The reduction of the organizational costs will bethe prime advantage as many of the unnecessary costs will be avoided and reduced. The operationalabilities of the employees will also improve which would lead to better levels of efficiencies andproductivities. This is turn will lead to customer satisfaction and engagement with Aztek. 4

End of preview

Want to access all the pages? Upload your documents or become a member.

Related Documents
Aztek IT Risk Assessment Case Study September 26 2017 Aztek Financial Services
|17
|5482
|245

IT Risk Assessment Case Study
|16
|5118
|65

Aztek Risk Management & Assessment
|18
|5082
|30

ITC596 - IT Risk Management - Case study of Aztek company
|18
|4571
|103

Aztek: Risk Management & Assessment
|18
|4841
|31

IT Risk Assessment Aztek | Case Study
|16
|5483
|42