Ebook Business information systems: Analysis, design and practice - Part 2
➤ Gửi thông báo lỗi ⚠️ Báo cáo tài liệu vi phạmNội dung chi tiết: Ebook Business information systems: Analysis, design and practice - Part 2
Ebook Business information systems: Analysis, design and practice - Part 2
Chapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 ng effect of feedback and feedforward in an information systemEvaluate the preventive measures necessary to effect control in an information system■Describe controls that can be applied to data in transmission■Evaluate a range of organizational controls that should be considered in the design and op Ebook Business information systems: Analysis, design and practice - Part 2 eration of an information systemDiscuss the rights and responsibilities of individuals, organizations and society in the development, implementation aEbook Business information systems: Analysis, design and practice - Part 2
nd use of information systems■Apply principles of data protection legislation.IntroductionThis chapter introduces the general principles behind controChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 e and accurate processing of data by computers, often without manual checks, indicates that controls must be planned and designed. This occurs before rhe development of computer systems and their surrounding manual procedures. Security and control should therefore be considered prior to systems desi Ebook Business information systems: Analysis, design and practice - Part 2 gn and certainly feature in rhe design process itself, nor as afterthoughts. The increasing use of computers in the processing and transmission of conEbook Business information systems: Analysis, design and practice - Part 2
fidential data and funds has also made computer systems attractive targets for fraud, rhe need to take steps to guard against this possibility has beeChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 f control systems are developed by considering the general ideas behind feedback, feedforward and preventive controls. These are explained and applied to manual business systems. Controls over computerized information systems are introduced by identifying the various goals and levels of control that Ebook Business information systems: Analysis, design and practice - Part 2 are applicable. Controls over data movement into, through and our of rhe computer system are covered, together with controls over rhe transmission ofEbook Business information systems: Analysis, design and practice - Part 2
data339Chapter 9 • Information systems: control and responsibilitybetween computers or through the public telecommunications network. Some of the wayChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 nsmission so that it is useless to any unauthorized person. The methods of achieving these ends arc also explained.Computer systems always lie within and interface with a surrounding manual system. Not only should computer aspects of this combined socio-tcchnical system be the subject of control but Ebook Business information systems: Analysis, design and practice - Part 2 also the organizational and personnel elements. To aid security, it is important that the system be structured in a way that facilitates this. The waEbook Business information systems: Analysis, design and practice - Part 2
y that functions are separated as a means of control is developed in later sections of this chapter. The reliability of controls and security procedurChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 in itself, the overall strategy adopted and the aid given by computer-assisted tools in the auditing of computer-based systems is outlined. The chapter also considers the relationship between information systems, organizations and individuals. Issues such as crime, privacy and acceptability5 of beha Ebook Business information systems: Analysis, design and practice - Part 2 viour raise questions of responsibility. Who should ensure that certain practices or activities are restrained or even prevented? Is it the duty of anEbook Business information systems: Analysis, design and practice - Part 2
individual, an organization or society as a whole? There may be a collective belief amongst members of a community that there is a social responsibilChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 rate governance and how the organization manages its own affairs. Also, the form of action taken may vary greatly. Checks, controls and balances take many forms. They can be imposed by legislation, they can be adopted voluntarily by individuals or organizations or they can just become custom and pra Ebook Business information systems: Analysis, design and practice - Part 2 ctice with no formal agreement. Judgments of rhe courses of actions taken are ethical considerations. Once a framework of policies, rules and legislatEbook Business information systems: Analysis, design and practice - Part 2
ion is in place, the ethics of actions taken can be considered. One example given extended treatment is that of privacy, in particular as enshrined byChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 n of systems holding data on persons. The reasons for rhe rise of this legislation and rhe general principles behind the Data Protection Act in rhe UK are explained, together with the effects of the legislation on personal data security5 and access.1 inally, the need for a methodology for the identi Ebook Business information systems: Analysis, design and practice - Part 2 fication of risk and the design of controls is stressed. Controls arc an integral part of systems design, which is covered in Chapter 14 on systems deEbook Business information systems: Analysis, design and practice - Part 2
sign and Chapter 15 on detailed design.Control systemsControls, if they are to be effective, must operate in a systematic way. This section considers Chapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 stem, comparing that stare with a desired standard and then carrying our some correcting action if the state docs not meet favourably with the standard. Other controls prevent (or attempt to prevent) a system moving away from a desired state. They do this by preventing abnormal but possible occurren Ebook Business information systems: Analysis, design and practice - Part 2 ces that would have this effect.Feedback and feedforward are examples of the first type of control. Preventive controls are examples of rhe second. FeEbook Business information systems: Analysis, design and practice - Part 2
edback and feedforward controls involve rhe340Control systemscollection and processing of data and so operate within the business information system. Chapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 are within this environment.It is one of the responsibilities of management to ensure that adequate and effective controls are present at all levels in a business organization. There is always a cost-benefit dimension to the existence of any control - it is insufficient to consider rhe control outs Ebook Business information systems: Analysis, design and practice - Part 2 ide this context. All controls have some cost associated with their installation and also a probability/possibility that they will fail in their contrEbook Business information systems: Analysis, design and practice - Part 2
ol function. On rhe benefit side, there is rhe prevention or correction of rhe undesired stare of affairs. It may be possible to assign a money value Chapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 is particularly true with preventive controls), so probability factors also have to lie taken into account here. Cost-benefit considerations surrounding a strategy for control in a business are covered in a later section of this chapter, bur ir should be made clear from the outset that the major que Ebook Business information systems: Analysis, design and practice - Part 2 stion surrounding a control is not ‘docs it work?’ but ‘is it cost-benefit effective?’9.1.1Feedback control systemsThe general nature of a feedback coEbook Business information systems: Analysis, design and practice - Part 2
ntrol system is shown in Figure 9.1. ĩr consists of:■A process, which accepts inputs and converts these into outputs.■A sensor, which monitors the staChapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllin Ebook Business information systems: Analysis, design and practice - Part 2 or decisions, which are fed into and affect the process.Figure 9.1 Feedback controlStandardsController— EffectorI __________'I Comparator r -Chapter 9Information systems: control and responsibilityLearning outcomesOn completion of this chapter, you should be able to:■Describe the controllinGọi ngay
Chat zalo
Facebook