It is increasingly important to have an IT department with proper internal controls built into its
Operations. Also need information resource planning in order to achieve business objectives of the company. Senior management need to take a closer look at the IT controls in their organizations because of following reasons.
Regulatory Compliance:
New laws like Sarbanes-Oxley (SOX) specify that select senior officers will attest to the state of the internal controls of the company and the reliability of the financial statement released. Since almost all company transactions involve use of a computer system, it is important that there are adequate systems controls in place to assure regulators that the attestation by management is reliable.
IT expenditure:
It is also important that IT expenditure is associated with the company’s business strategy. As the reliance on technology systems to perform and report on transactions increases, technology cost is one significant internal expense. It is important that this cost is aligned with business strategy. There should be a documented IT process that integrates business participation in the creation of an IT strategy plan.
Evacuate from cyber crimes and social engineering attacks:
Organization required evacuating from Common Security Threats in the E-commerce Environment like
Malicious code,Viruses, Worms, Trojan horses, Bots, botnets, Unwanted programs , Browser parasites, Adware, Spyware, Social engineering, Phishing, Hacking, Cyber vandalism and Data breach..etc
Increase productivity:
By preventing misuse of the information systems and improving the Improve productivity through efficient and responsible staff behavior ... Policy for acceptable use of Internet and email services specifically.
And many more ………….
