From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
Management review
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Management review
- [Instructor] Information technology and security managers have some key responsibilities when it comes to operational security controls. Managers serve as a critical check and balance in many organizations, and should routinely review the work with both their own teams and others. Management reviews play two important roles in the security process. First, they provide an important double check on the work performed by employees and verify that the work was performed accurately and completely. Second, they reduce fraud and malfeasance by creating a culture of oversight. If employees, particularly privileged users, know that someone is checking their work, they will be far less likely to engage in unscrupulous activity. Privileged user actions are one of the most important tasks requiring management review. System engineers, application administrators, and other trusted employees often have the ability to override…