Nolls is an online retailer that specializes in connecting local artisans directly to consumers. You work for a public accounting firm as anIT audit consultant and have been staffed on the Nolls cybersecurity engagement. Nolls hired your firm to help implement the NISTCybersecurity Framework. Your team is performing a gap analysis to identify areas where Nolls lacks internal controls, and you havebeen tasked with mapping Nolls' existing internal controls to specific NIST control families.Use the word bank to identify the NIST family in which each of the following internal controls belongs.Word Bank:Physical and Environmental ProtectionAwareness and TrainingPersonnel SecurityAccess ControlIdentification and AuthenticationConfiguration ManagementRisk AssessmentSystem and Communications ProtectionSystem and Information IntegritySecurity Assessment and Authorization Internal controls:The Human Resources and IT departments collaborate to provide annualtraining about phishing emails.Nolls' IT department conducts penetration testing on an annual basis.1.2.3.4.5.6.7.8.System resources are monitored to ensure that sufficient resources exist tosupport unexpected network traffic.Nolls' corporate office requires two forms of identification for visitors to thedata center.System capacity, bandwidth, and redundancy are managed proactively.Malicious code protection mechanisms are employed at access points of theinformation system.Nolls' IT department scans for vulnerabilities randomly.The corporate password requirements include a minimum of eight characters,along with at least one symbol, at least one number, and at least one capitalletter.<<<<<<

Internal controls can be defined as the measures, and processes that are employed with a motive to…

Answered: Nolls is an online retailer that…

Understanding Business

12th Edition

ISBN:9781259929434

Author:William Nickels

Publisher:William Nickels

Chapter1: Taking Risks And Making Profits Within The Dynamic Business Environment

Section: Chapter Questions

Problem 1CE

See similar textbooks

Similar questions

A recent incident involving access control or authentication might be studied as a case study to assist highlight best practises for avoiding similar security breaches. Do you believe that it has altered the method in which the company does business? Can you give me an accurate estimate of how much money the company has lost?
Which analysis of both - PEST or SWOT, will outline the below statement and why? Some cars were created especially for luxury lovers and offered them the level of comfort they desired, thus BMW acquired acceptance and popularity in the market. As a result, by applying pressure and having an impact on business operations, it increased the company's engagement with the external environment, which interfered with the moral relationships between the internal participants.
One of the ways public health will be transformed is through how we are Using Data. While public health practitioners are skilled at the collection and interpretation of population-level information, unfortunately it is still possible for our workforce to suffer from problems with how we are collecting and interpreting data. Name and briefly describe one of the most serious flaws in data collection that can happen , making sure to detail how this flaw can influence the decisions we are making about public health policies and/or interventions .
What is the engagement risk affiliated with the Oscars? What is the information risk? Is there business risk?
Describe an instance in which one of the four potential access control strategies may be used. What sets this choice apart from the competition in its industry?
Analyse the handling of Volkswagen (VW)’s emissions scandal by the senior management and advise if earlieradmission of the fraudulent activities could have reduced the negative impact on the firm.
Discuss business intelligence implementation issues.
You have been hired by your dream company as an Ethics and Compliance Officer. Your job is to ensure compliance with ethical business practices, company policies, and local legal/regulatory requirements. The company provided you with this list of situations that could cause problems in the future if not resolved in the next few months: Employees have been taking office supplies (paper, pens, and ink) home with them when leaving work. A supervisor had been seen outside of work having drinks with an employee that works for them. William has worked for the company for 11 years. Recently he was passed over for a promotion. Co-workers have commented that William has been making negative comments on various social media sites about the company. Bob, a senior buyer with the company, has been participating in a rewards program from one of your main suppliers. Bob has been receiving gifts, under the rewards program, for his personal use based on the amount of merchandise he is buying from the…
I need help with answering the following questions below after reading Reading: Maryland Health Care Provider Sentenced to 10 years in Federal Prison for Health Care Fraud Resulting in Patient Deaths from the United States Attorny's Office. Using the Five Whys to conduct a root cause analysis to determine why the Medicare fraud occurred and Timothy Emeigh’s participation in the case. Writing analysis that identifies and evaluates the root cause for Medicare fraud in this case. I need help aswering the following questions listed below Articulate the “Five Whys” for this case and provide an explanation for each. Speculate how and why Mr. Emeigh participated in the scheme. Explain what you, as an administrator, might have done to prevent this from happening. Recommend risk management strategies the organization can utilize to prevent this and similar types of events from occurring in the future.
Which business initiative is focused on applying zero trust principles to mitigate risks associated with the loss or theft of individual data and ensuring regulatory compliance?
Company: Coca Cola Topics: Sustainability & Community Write a report and make a presentation about a news story relating to a business interacting with the external environment. The story should relate to one of the topics, have occurred within the past 5 years, and must be business-related. Define and describe the two topics covered and there relevancy to that story Summarize the news story you chose and why this is an example of a business interacting with its external environment (what happened / what is happening) What was the outcome, or what is the intended outcome of this interaction between the business and its external environment. Which stakeholders are impacted by this interaction?
The CEO of a fictional pharmaceutical marketing company in India has positioned the company as the ethical alternative to its competitors, going as far as to change the company's tagline from "Health for everyone" to "Health with integrity." The company has a public ethical policy and has been transparent with its operations. So, when he learns that the firm's star salesperson who earned millions of dollars for the company, falsified the numbers on a recent report, the CEO must decide whether to fire him. Sales have been very difficult with the Covid-19 pandemic and people afraid to venture out in public and spend money. The salesman had created a sales matrix that had allowed sales to remain at peak levels during the difficult times however, sales was starting to increase as Covid-19 restrictions were being gradually increased. In fact, the company had gone public and applauded the salesman for his effort and was announcing him as Vice President for Sales and Marketing. a. Is…

SEE MORE QUESTIONS

Recommended textbooks for you

Understanding Business

Management

ISBN:

9781259929434

Author:

William Nickels

Publisher:

McGraw-Hill Education

Management (14th Edition)

Management

ISBN:

9780134527604

Author:

Stephen P. Robbins, Mary A. Coulter

Publisher:

PEARSON

Spreadsheet Modeling & Decision Analysis: A Pract…

Management

ISBN:

9781305947412

Author:

Cliff Ragsdale

Publisher:

Cengage Learning

Understanding Business

Management

ISBN:

9781259929434

Author:

William Nickels

Publisher:

McGraw-Hill Education

Management (14th Edition)

Management

ISBN:

9780134527604

Author:

Stephen P. Robbins, Mary A. Coulter

Publisher:

PEARSON

Spreadsheet Modeling & Decision Analysis: A Pract…

Management

ISBN:

9781305947412

Author:

Cliff Ragsdale

Publisher:

Cengage Learning

Management Information Systems: Managing The Digi…

Management

ISBN:

9780135191798

Author:

Kenneth C. Laudon, Jane P. Laudon

Publisher:

PEARSON

Business Essentials (12th Edition) (What's New in…

Management

ISBN:

9780134728391

Author:

Ronald J. Ebert, Ricky W. Griffin

Publisher:

PEARSON

Fundamentals of Management (10th Edition)

Management

ISBN:

9780134237473

Author:

Stephen P. Robbins, Mary A. Coulter, David A. De Cenzo

Publisher:

PEARSON

SEE MORE TEXTBOOKS