Which preventive, detective, and or corrective controls would best mitigate the follow ing threats An employees laptop was stolen at the airport The laptop contained personal in formation about the companys customers that could potentially be used to commit identity theft A salesperson successfully logged into the payroll system by guessing the payroll supervisors password Acriminalremotelyaccessedasensitivedatabaseusingtheauthenticationcredentials (user ID and strong password) of an IT manager At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters An employee received an e mail purporting to be from her boss informing her of an important new attendance policy When she clicked on a link embedded in the e mail to view the new policy, she infected her laptop with a keystroke logger A companys programming staff wrote custom code for the shopping cart feature on its website The code contained a buffer overflow vulnerability that could be ex ploited when the customer typed in the ship to address A company purchased the leading off the shelf e commerce software for linking its electronic storefront to its inventory database A customer discovered a way to directly access the back end database by entering appropriate SQL code Attackers broke into the companys information system through a wireless access point located in one of its retail stores The wireless access point had been purchased and installed by the store manager without informing central IT or security An employee picked up a USB drive in the parking lot and plugged it into his laptop to see what was on it As a result, a keystroke logger was installed on that laptop Once an attack on the companys website was discovered, it took more than 30 min utes to determine who to contact to initiate response actions To facilitate working from home, an employee installed a modem on his office work station An attacker successfully penetrated the companys system by dialing into that modem An attacker gained access to the companys internal network by installing a wireless access point in a wiring closet located next to the elevators on the fourth floor of a high rise office building that the company shared with seven other companies The need to be 270 word

The Answer is in the image, click to view ...

Question: Which preventive, detective, and/or corrective controls would best mitigate the follow- ing threats? An employees laptop was stolen at the airport. The laptop contained personal

Which preventive, detective, and/or corrective controls would best mitigate the follow- ing threats?

An employees laptop was stolen at the airport. The laptop contained personal in- formation about the companys customers that could potentially be used to commit identity theft.
A salesperson successfully logged into the payroll system by guessing the payroll supervisors password.
Acriminalremotelyaccessedasensitivedatabaseusingtheauthenticationcredentials (user ID and strong password) of an IT manager. At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters.
An employee received an e-mail purporting to be from her boss informing her of an important new attendance policy. When she clicked on a link embedded in the e-mail to view the new policy, she infected her laptop with a keystroke logger.
A companys programming staff wrote custom code for the shopping cart feature on its website. The code contained a buffer overflow vulnerability that could be ex- ploited when the customer typed in the ship-to address.
A company purchased the leading off-the-shelf e-commerce software for linking its electronic storefront to its inventory database. A customer discovered a way to directly access the back-end database by entering appropriate SQL code.
Attackers broke into the companys information system through a wireless access point located in one of its retail stores. The wireless access point had been purchased and installed by the store manager without informing central IT or security.
An employee picked up a USB drive in the parking lot and plugged it into his laptop to see what was on it. As a result, a keystroke logger was installed on that laptop.
Once an attack on the companys website was discovered, it took more than 30 min- utes to determine who to contact to initiate response actions.
To facilitate working from home, an employee installed a modem on his office work- station. An attacker successfully penetrated the companys system by dialing into that modem.
An attacker gained access to the companys internal network by installing a wireless access point in a wiring closet located next to the elevators on the fourth floor of a high-rise office building that the company shared with seven other companies.

The need to be 270 word

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Accounting Questions!

Ellen ar drie Which preventive, detective, and/or corrective controls would best mitigate the follow ing threats? 3. An employee's laptop was stolen at the airport. The laptop contained personal in...

Ellen 84 Which preventive, detective, and/or corrective controls would best mitigate the follow- ing threats? a. An employee's laptop was stolen at the airport. The laptop contained personal in-...

Question from Accounting Information Systems 13 th Edition by Marshall B. Romney and Paul John Steinbart Chapter 8, Problem 8-4 (pages 281-282) Which preventive, detective, and/or corrective controls...

Week Six Workshop Question -- Information Security Which preventive, detective, and/or corrective controls would best mitigate the following threats? a. An employee's laptop was stolen at the...

11.4 Which preventive, detective, and/or corrective controls would best mitigate the following threats? a. An employee's laptop was stolen at the airport. The laptop contained personal information...

11.2 Your school is thinking about requiring the use of a biometric, in addition to a password, to access resources such as email and the learning management system. The administration has asked for...

3 (03-a): For the following scenarios. describe the recommendations the internal auditors should make to prevent these problems in the future. (5 mark). Scenario 1: After working together at a local...

Which preventive, detective, and/or corrective controls would best mitigate the following threats? a. An employees laptop was stolen at the airport. The laptop contained personally identifying...

Answer the following questions in WORD and upload and submit your answers in good form. (1) What is the relationship between cosO, COBITS, and the AICPA's Trust Services frameworks? (2) What privacy...

The accountant for Alpine Hobby Stores prepared the following selected information for the year ended December 31, 2008: Equipment with a book value of $20,000 was sold for $17,000 cash. The original...

What are the methods that could be used to estimate a cost function assuming that no historical data exists?

What is the difference in time and space complexity between the above recursive and iterative functions?

Choose appropriate evaluation design and training outcomes based on the training objectives and evaluation purpose. page 297

Evaluate employees readiness for training. page 275

Identify the major parts of an effective performance management process. page 322