Professional Documents
Culture Documents
IT 141 A
Assignment
5-25 MailMed Inc. (Control Weaknesses and a Disaster Recovery Plan)
1. Describe at least four computer control weaknesses that existed at MailMed Inc.
Prior to the flood occurrence.
3. Identify at least three factors, other than the plan itself that MailMed Inc.s
management should consider in formulating a formal disaster recovery plan.
5-26 Bad Bad Benny: A True Story (Identifying Controls for a System)
2. Identify any general controls Arthur should have implemented to help protect the
company.
Arthur should have implemented better security policies like the following:
Identifying Threats Arthur should have identified the threats that could
come with his management actions i.e. hiring family. If he knew the risks
that come with that he could have thwarted Benny.
Assigning Responsibilities responsibilities should fit the skills and
capabilities of personnel. His son Arthur Junior was an accountant by
training what was he doing in the management program? If Arthur Junior
was in the accounting department he could have detected such atrocity
earlier and prevented the pilferage.
Assessing Risk the risk that come with non-segregation of duties
Managing the security program Arthur should still manage the security
program himself, being the man who built the company, he is the one who
knows the in and outs of the company, thus protecting his company better.
3. From Chapter 4, identify control activities that Arthur should have considered (or
implemented) that would have thwarted Bennys bad behaviour.
Distribution in implementing these control activities
Approvals
Authorization
Verification
Reconciliations
Segregation of Duties