Expert Consensus on Top IT controls for Small Business

A recent worldwide survey conducted by a group of acedemics from St. Cloud State University, USA, has indentified the most important IT controls required for Small Business as (1) network security (2) Viruses Protection (3) Back up procedures. Minimizing intrusions by external parties is critical. However, FBI reports show that 60% of computer abuse is caused by insiders and 85% of computer break-ins occur internally. 6 Insider intrusions can be mitigated by using file access privilege .

Figure 2

The 11 Most Important IT Controls as Determined by the IT Experts

Round 3 Group Ranking

GOLD GROUP:

19. Network Security

1

20. Viruses Protection

2

16. Back-up Procedures

3

SILVER GROUP:

18. File Access Privilege Controls

4

1. IT as Part of the Organization's Long- and Short-Range Plan

5

15. IT Continuity and Recovery Plan

6

17. Identification and Authentication Procedures

7

A. Management Support/Buy-In

8

BRONZE GROUP:

7. Risk Evaluation Program

9

4. General Employee IT Security Training Program

10

24. Data Input Controls

11

Critical questions for the Small Business Owner -

Do I understand my IT environment and can I keep it private ?

Do I have someone I can trust to setup, maintain, and backup my system ?

Does my setup and security protect me for any internal fraud or destruction ?

If you unsure about any of these questions you should be calling Computer Troubleshooter now to keep you business safe and fuctioning!

NIck Roche

National DIrector Australia

read more on the link below;

http://web.stcloudstate.edu/babusta/Small%20Bus%20IT%20Controls-IS%20Control%20Journal%20-40.pdf