Many businesses struggle with access control because their IT department is ofte

Question

Many businesses struggle with access control because their IT department is often not in on the discussions of company directions, goals, and missions. The result is that the IT staff often reacts instead of plans for business expansion, changes in policies, etc.

If you were hired to manage an IT department and had to manage access control, how would you do it? What would you need to consider? How would you view your role in the organization? What will you do to ensure that you are planning access control and not reacting to sudden organizational changes?

Explanation / Answer

To handel these type of scenarios, vaious access control methods are available in the market. if I had given an opportunity to manage the IT department, I would choose to implement GRC method in the ongoing projects. This software can be customized based on our team.

If a new emploee is joined in the team, firstly he has to give access to work. This access management is done by figuring out roles and responsibilites. Once responsibilites of the new employee are defined, he willl be given access to the servers with roles which reflects his responsibility. These roles are get approved by me. By doing this I can maintain checklist regarding roles of an employee.

My role in the organisation is the one which is responsible for approving roles of an employee there by ensuring smooth work flow. Access control is the one method which mitigates the risk by implementing governance principles. All these maintains work flow in the project. By implementing GRC, all the business strategies will be in order and change in policies can be updated within the team by giving ecah individual their own roles and responsibilites

Related Questions

Navigate

• Browse (All)
• Browse M
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.