Before we talk about the top 15 IT concerns at small businesses or not for profits, we have to establish that numerous of these issues come about coming from operational and economic things to consider and to what extent THAT plays within their businesses. When it is integral to the success of your business, then you should think twice about following THAT General Settings best practices and make gross annual progress towards that objective.
In my field of expertise I see and listen to many clients that their financial application is a necessary wicked for monetary reporting. They don't see the importance of having it stick to best practices for doing it General Handles. While I don't know in the event financial applications are evil, the applications do need to become updated, controlled and monitored by administration. To that point, most companies acknowledge. However , needing to perform operate around the THIS environment triggers them wonderful distress. Is where the operation, economic or the level of importance comes back within our discussion.
The operational push backs generally go this type of thing:
1 . "Server and economic application updates are utilized so seldom that we apply them right to the machine or computer without 1st testing these people (? ). "
2 . "We include so few financial program users that people see you should not monitor transactional history or logical access controls. "
3. "We run back up copies nightly nevertheless no one investigations the backups for info integrity or perhaps performs a backup restore test annually. "
Financial push shells:
1 . "We have this kind of a small business office staff that people just don't have a chance to perform these kinds of tasks. "
2 . "We just don't have the money to solve these issues with this year's budget and it will consider board approval for following year's finances. "
So , while I sympathize with thes...
... ppens sometimes is that supervision doesn't regularly monitor all their backup operations or know if the data can actually be retrieved from the backup strapping, disc or perhaps external harddrive. Performing a backup restore test at the database level will help to answer those queries in the event you have to do this process to get real. In case the system must be recaptured returning to a certain moment in time, doing this the first time can be a a few man fire drill. It also goes devoid of saying although worth reminding business owners should certainly remove delicate backup info from the typical business area on a revolving basis into a neutral site for secure guarding in the event of a fire, all-natural disaster or perhaps theft.
If you have further concerns or wish to request and IT Risk Assessment you should contact Sandra Johnson, CISA at Baker Tilly Virchow Krause, LLP.