Appendix A Information Technology Auditing

An application is more than a tool used to conduct business. An application is also an enforcer that makes sure the rules of how to conduct business are strictly followed by everyone within the organization. You see this after logging onto the application when your activities are restricted to your role in the organization. Let’s say you’re a sales representative. You’ll be able to see information about only your accounts. You’ll be able to enter an order but not may not be able to change the price of items purchased. Setting prices may be the job of the marketing manager.

Limiting an employee’s access to only portions of an application they need to conduct business is referred to as a control—it controls ...

Get Need-to-Know Technologies for a Successful Future now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.