« Superstar 9 year old pitcher throws too hard: Opposing team forfeits game, packs gear and bails.
iPhone Passcode Lock Security Flaw »

Separation of Duties and IT Security

Muddied responsibilities create unwanted risk. Kevin Coleman says auditors may start labeling poorly defined IT duties as a material deficiency.

By Kevin Coleman, Technolytics Institute

August 26, 2008CSO — Separation of duties is a key concept of internal controls and is the most difficult and sometimes the most costly one to achieve. This objective is achieved by disseminating the tasks and associated privileges for a specific security process among multiple people.

The term SoD is already well-known in financial accounting systems. Companies in all sizes understand not to combine roles such as receiving checks (payment on account) and approving write-offs, depositing cash and reconciling bank statements, approving time cards and have custody of pay checks, etc. However, SoD is fairly new to the IT organization…

Source

This entry was posted on Tuesday, August 26th, 2008 at 8:29 pm and is filed under Information Security.

No comments yet. Be the first.

Leave a reply

You must be logged in to post a comment.

  • RSS Windows Security

  • RSS Wired Security

  • RSS The Register - Security

  • RSS Security Focus

  • RSS CSO

  • RSS Sans

  • Archives

  • Bloglisting.net - The internets fastest growing blog directory
  • My Zimbio

  • RSS Linux Security

  • Event Calendar

    « Jul iCalendar Sep »
    August 2010
    M T W T F S S
     1
    2345678
    9101112131415
    16171819202122
    23242526272829
    3031EC

  • VincentArnold.com

  • Categories

    Annoucement Attack Vector Book Education Football Forensics Gadgets Gaming General Government InfoSec Information Security Information Systems Information Technology Intellectual Property iPhone 3G Just because it's cool Law Methodologies Metrics Military Mobile Tech Movies News Penetration Testing Politics Privacy Scams Sci-Fi Security Breach Society Sports Technology Tools Travel Uncategorized World News