Write a paper arguing for or against the following statement: “Companies should not be held liable for losses sustained in a successful attack made on their AIS by outside sources.” You are required to support your arguments.
The layout of the paper must follow one of the styles (APA, etc.) that are listed in the syllabus. The body of the paper must be at least 750 words, not including the cover page, page/section headings, or the reference page. It must also include several in-text citations from outside sources.
In this paper, I am going to present about an accounting information system attacks and failures: who to blame. I am also going to discuss the following related topics in the following order:
Firstly, I will take a position on whether a firm and its management team should or should not be held liable for losses sustained in a successful attack made on their AIS by outside source. Secondly, I will suggest who should pay for the losses, to whom, and state why. Thirdly, I will give my opinion regarding the role, if any; the federal government should have deciding and enforcing remedies and punishment. Finally, I will evaluate how AIS can contribute or not to contribute to the losses.
A Firm and its Management Team Should Be Held Liable for the Losses
According to the Control Objectives for Information and Related Technology (COBIT) framework and the Trust Services framework, achieving organization’s business and governance objective require adequate control over IT resources. IT processes must be properly managed and controlled in order to produce information that satisfies the seven criteria: effectiveness, efficiency, confidentiality, integrity, availability, compliance and reliability. These IT processes are grouped into the following four management activities or domains (Romney & Steinbart, 2012).
- Plan and Organize (PO),
- Acquire and Implement (AI),
- Deliver and Support (DS), and
- Monitor and Evaluate (ME).
To get the answer for the above tutorial, please click on the below link to purchase