DRJ Spring 2020

Conference & Exhibit

Attend The #1 BC/DR Event!

Winter Journal

Volume 32, Issue 4

Full Contents Now Available!

Wednesday, 06 April 2016 05:00

Security Controls, Self-Audit, and Testing

Written by  Michael Redmond, Vibhav Agarwal

As the digital ecosystem within enterprises proliferate, so do the cybersecurity risks and vulnerabilities. Before organizations look outside for effective governance, risk and compliance, and business continuity tools to manage this ecosystem, they also need to understand the importance for defining proper organizational security controls and self-audit requirements. The controls and tests can form an effective first line of defense against cyberattacks as well as ensuring the robustness of the IT infrastructure. They allow users to be sensitized on the key policies, controls, and safeguard measures so that these are not considered as an overhead. As the leading and modern enterprises of tomorrow focus more on enabling an IT-enabled value chain for their customers, it’s important that they understand the nomenclature of security controls and need for pro-active security. Security controls are technical or administrative safeguards or counter measures to avoid, counteract, or minimize loss or unavailability due to threats acting on