SEC 578- Practices Administration Physical and Operation Security
Paper 1
Professor : Dr.Jude Lamour
Submitted by: Otis McCall

Contents

Topic:
1. How do Administrative Controls demonstrate "due care?" 2
2. How does the absence of Administrative Controls impact corporate liability? 4
3. How do Administrative Controls influence the choice of Technical and Physical Controls? 6
4. How would the absence of Administrative Controls affect projects in the IT department? 7

1. How do Administrative Controls demonstrate "due care?" Administrative controls demonstrate due care by putting in place the necessary policies , procedures, and practices to reinforce policies of the organization. These controls are divided up into various elements from access list to control spaces, password and user identification for employees, separation of duties to ensure you mitigate the possibility of theft or take steps directed by management to limit incidents that can be perpetuated by employees. Thus, you cannot guard against collusion but you can have policies and procedures that limit the actual ability to carry out such incidents.
The administrative controls that we will look at provide assurance of confidentiality, integrity, and availability of information assets through guidelines, standards, and best practices and make senior management responsible for providing that direct to employees and customers of and organization, to illustrate management takes administrative controls seriously. Administrative controls fall into two categories