Nolls is an online retailer that specializes in connecting local artisans directly to consumers. You work for a public accounting firm as anIT audit consultant and have been staffed on the Nolls cybersecurity engagement. Nolls hired your firm to help implement the NISTCybersecurity Framework. Your team is performing a gap analysis to identify areas where Nolls lacks internal controls, and you havebeen tasked with mapping Nolls' existing internal controls to specific NIST control families.Use the word bank to identify the NIST family in which each of the following internal controls belongs.Word Bank:Physical and Environmental ProtectionAwareness and TrainingPersonnel SecurityAccess ControlIdentification and AuthenticationConfiguration ManagementRisk AssessmentSystem and Communications ProtectionSystem and Information IntegritySecurity Assessment and Authorization Internal controls:The Human Resources and IT departments collaborate to provide annualtraining about phishing emails.Nolls' IT department conducts penetration testing on an annual basis.1.2.3.4.5.6.7.8.System resources are monitored to ensure that sufficient resources exist tosupport unexpected network traffic.Nolls' corporate office requires two forms of identification for visitors to thedata center.System capacity, bandwidth, and redundancy are managed proactively.Malicious code protection mechanisms are employed at access points of theinformation system.Nolls' IT department scans for vulnerabilities randomly.The corporate password requirements include a minimum of eight characters,along with at least one symbol, at least one number, and at least one capitalletter.<<<<<<

Internal controls can be defined as the measures, and processes that are employed with a motive to…

Answered: Nolls is an online retailer that…

Understanding Business

12th Edition

ISBN:9781259929434

Author:William Nickels

Publisher:William Nickels

Chapter1: Taking Risks And Making Profits Within The Dynamic Business Environment

Section: Chapter Questions

Problem 1CE

See similar textbooks

Similar questions

According to a recent study of approximately 347 financial statement frauds by the law enforcement agencies, senior management is the group most likely to commit financial statement fraud. The CEO was involved in 72% of these frauds, and the CFO’s involvement was 65%. Either the CEO or the CFO was involved in 89% of the cases. Motives for senior managers to commit financial statement fraud are varied. Following are questions which might help to better understanding the reasoning behind. (a) Appraise the reasons senior management would overstate or understate business performance. Elaborate. (b) Why would CFOs cook the books even though they know that it is against the law? Elaborate.
Explain Auditing in times of social distancing: the effect of COVID-19 on auditing quality proposed byAustralian Securities and Investment Commission (ASIC) in the following situations:1. What should be the focus areas for auditors under COVID-19 conditions?2. Should audit fees be reduced when reviewing other cost saving initiatives?3. Should an auditor delay their opinion until a limitation or uncertainty is resolved?4. What should be influence of COVID-19 and going concern assessment?
Perform research to find a recent or historic fraud case using the Securities and Exchange Commission (SEC) site: LitigationLinks to an external site. or WhistleblowerLinks to an external site.. Choose ONE of the questions to discuss: Identify how each element of the fraud triangle was present in the fraud. Discuss internal controls that could have been in place to prevent the fraud from occurring. Include a link to the fraud case. Work to demonstrate your understanding of the material from this module and, where necessary, include your sources.
In case there is an external source of funding, explain the ethical standards between the researcher and the sponsor. Examine the behavior of the sponsor in relation to ethical standards.
1. What is Corporate Social Responsibility (CSR)? 2. Research for a company that has Corporate social responsibility (CSR). What are their CSR activities and how it helps the company?
Faiza, a fundraising manager at a non-profit organization, her responsibility is to: approach businesses, local authorities, trusts and individuals to secure funding. Moreover, organizing and helping with fundraising activities such as sponsored or promotional events. She has a Conscientiousness personality and had experienced a bad incident last year with the public relations manager of a banking company who had committed to sponsor a charity event and then backed out at the last minute. This year, when a renowned international bank’s manager showed interest in sponsoring the Organization’s upcoming annual event, Faiza rejected their participation. She felt that banks have a casual approach toward charity events and it is risky to involve them in the event. Do you think Faiza's attitude and behavior will or will not change over time? Explain Does personality have any influence on Faiza's decision? Relate it to Big Five Model of Personality Dimension and explain how it predicts…
How do you think we should balance privacy with security and data analysis?
Your charitable organization is working to strengthen its capacity to solicit financial support from donors. What specific kind of information are required in order to accomplish this objective? What kinds of analyses may be performed on this data using the tools provided by business intelligence technologies?
A large hotel is experiencing conflict and organizational politics among its managers. The hotel's customer service ratings are suffering, so managers are pointing to other departments as the cause of the problem. The conflicts and politics are further contributing to the customer service problems. The CEO of this hotel wants to apply the appreciative inquiry process to improve this situation. Describe the four stages of appreciative Inquiry and describe what should happen in each stage. Be sure that your answer describes the appreciative inquiry process in the context of this hotel.
Ayesha, a fundraising manager at a non-profit organization, her responsibility is to: approach businesses, local authorities, trusts and individuals to secure funding. Moreover, organizing and helping with fundraising activities such as sponsored or promotional events. She has a Conscientiousness personality and had experienced a bad incident last year with the public relations manager of a banking company who had committed to sponsor a charity event and then backed out at the last minute. This year, when a renowned international bank’s manager showed interest in sponsoring the Organization’s upcoming annual event, Ayesha rejected their participation. She felt that banks have a casual approach toward charity events and it is risky to involve them in the event.a. Do you think Ayesha’s attitude and behavior will or will not change over time? Explainb. Does personality have any influence on Ayesha’s decision? Relate it to Big Five Model of Personality Dimension and explain how it predicts…
Ayesha, a fundraising manager at a non-profit organization, her responsibility is to: approach businesses, local authorities, trusts and individuals to secure funding. Moreover, organizing and helping with fundraising activities such as sponsored or promotional events. She has a Conscientiousness personality and had experienced a bad incident last year with the public relations manager of a banking company who had committed to sponsor a charity event and then backed out at the last minute. This year, when a renowned international bank’s manager showed interest in sponsoring the Organization’s upcoming annual event, Ayesha rejected their participation. She felt that banks have a casual approach toward charity events and it is risky to involve them in the event. What changed Ayesha’s attitude? Support your answer with a theory or an example. Does personality have any influence on Ayesha’s decision? Relate it to Big Five Model of Personality Dimension and explain how it predicts…
Which ONE of the following is not a management responsibility as per Corporate Governance Code? a) Set policies on internal control b) Identify and evaluate risks c) Assists compliance with laws and regulations d) Design, operate and monitor the system of internal control e) Obtain understanding of the business and the risks it faces Only c) Only c) and e) Only b) and e) Only c) , d) and e)

SEE MORE QUESTIONS

Recommended textbooks for you

Understanding Business

Management

ISBN:

9781259929434

Author:

William Nickels

Publisher:

McGraw-Hill Education

Management (14th Edition)

Management

ISBN:

9780134527604

Author:

Stephen P. Robbins, Mary A. Coulter

Publisher:

PEARSON

Spreadsheet Modeling & Decision Analysis: A Pract…

Management

ISBN:

9781305947412

Author:

Cliff Ragsdale

Publisher:

Cengage Learning

Understanding Business

Management

ISBN:

9781259929434

Author:

William Nickels

Publisher:

McGraw-Hill Education

Management (14th Edition)

Management

ISBN:

9780134527604

Author:

Stephen P. Robbins, Mary A. Coulter

Publisher:

PEARSON

Spreadsheet Modeling & Decision Analysis: A Pract…

Management

ISBN:

9781305947412

Author:

Cliff Ragsdale

Publisher:

Cengage Learning

Management Information Systems: Managing The Digi…

Management

ISBN:

9780135191798

Author:

Kenneth C. Laudon, Jane P. Laudon

Publisher:

PEARSON

Business Essentials (12th Edition) (What's New in…

Management

ISBN:

9780134728391

Author:

Ronald J. Ebert, Ricky W. Griffin

Publisher:

PEARSON

Fundamentals of Management (10th Edition)

Management

ISBN:

9780134237473

Author:

Stephen P. Robbins, Mary A. Coulter, David A. De Cenzo

Publisher:

PEARSON

SEE MORE TEXTBOOKS