Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Governance, Risk, and Compliance Handbook for Oracle Applications

You're reading from   Governance, Risk, and Compliance Handbook for Oracle Applications Written by industry experts with more than 30 years combined experience, this handbook covers all the major aspects of Governance, Risk, and Compliance management in your organization with this book and ebook.

Arrow left icon
Product type Paperback
Published in Aug 2012
Publisher Packt
ISBN-13 9781849681704
Length 488 pages
Edition 1st Edition
Arrow right icon
Toc

Table of Contents (22) Chapters Close

Governance, Risk, and Compliance Handbook for Oracle Applications
Credits
1. Foreword
About the Authors
Acknowledgement
About the Authors
Acknowledgement
About the Reviewers
2. www.PacktPub.com
3. Preface
1. Introduction 2. Corporate Governance FREE CHAPTER 3. Information Technology Governance 4. Security Governance 5. Risk Assessment and Control Verification 6. Documenting Your Controls 7. Managing Your Testing Phase: Management Testing and Certifying Controls 8. Managing Your Audit Function 9. IT Audit 10. Cross Industry Cross Compliance 11. Industry-focused Compliance 12. Regional-focused Compliance

Security balanced scorecard


The following figure shows an illustrative scorecard of security objectives arranged with relationships between them:

The first thing that we will do when working with the Chief Security Officer is to work on a balanced scorecard for the security function. We will help him come up with metrics that show, how well he is doing in addressing both the objectives of the company as well as the information risks. In this example the objectives are as follows:

  • Customer perspective:

    • Guarantee good custodianship of customer data

    • Maintain a good reputation with regard to security

  • Financial perspective:

    • Minimize the cost of security breaches

    • Minimize cost of fraud

    • Minimize cost of disaster recovery

  • Process perspective:

    • Maintain confidentiality

    • Minimize the time between a job change and authorization changes

    • Minimize time between End of Employment and Revocation of Accounts

    • Segregation of Duties required or authorize and dispense funds

    • Align security with corporate strategy

    • Appropriately...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at AU $24.99/month. Cancel anytime