Australian Journal of Wireless Technologies, Mobility and Security

Cybersecurity And Governance, Risk And Compliance (GRC)

2022-12-13T03:06:14+00:00

When it comes to cybersecurity, different frameworks, best practices, and standards are used by organization. And these governance documents are most often chosen in accordance with corporate governance requirements or legislative requirements. Controls, cyber breaches history and finances are typically prescribed in governance documents, including technical controls, administrative controls, and physical controls. There are also a number of documents that describe specific capabilities that businesses must develop to secure their cyberspace.i So, from threats to SQL Injection Attacks to Cloud computing, Load balancing and Internet of things that needs cyber protection and the framework that GRC provides for it are all needs to be included with GRC framework while informing about the GRC business benefit to organisation. Thus, the results in this paper should be understanding and evaluating IT GRC implementation to reduce mismanagement and risk and ensure adherance in organizations and it can be only achieved by mitigating outside risks like cyber and network attacks by using means of Application Security, Internet of Things Security, Network Security, Infrastructure security and limiting access to sensitive information, showing the, interrelation of GRC with Cyber security

COBIT5 FRAMEWORK AND ECOMMERCE

2022-12-12T14:10:05+00:00

Ecommerce business has been rising as one of the most effective means of carrying out online business, where the primary customers act as the business drivers hoping to get the required product delivered at their home through a few simple steps (Tsagkias, 2021). However, there is a primary requirement of managing the governance of the Ecommerce business structure, which will allow with smoother transition of all the business-related operations in specific terms. As a reason to this, the following document has been prepared in particular to ensure a better understanding of a chosen framework integrated into the Ecommerce business that exists in the modern world.

COBIT5 is a framework that has been effectively chosen for the following discussion, which is to primarily allow with a better understanding of the required business structure that needs to be followed to put forward a better service delivered to every individual customer in specific terms. This stands for Control Objectives for Information Technology and is directly aimed at governance procedures that need to be followed at a specific business.

With respect to this, the following discussion has been carried out to ensure a better understanding of the Governance and Management structures to be implemented at the Ecommerce business with the help of COBIT5 management framework (Soni, 2020). The framework has been applied to every individual section of the chosen business and their likely impact upon the daily business operations carried out in specific terms.

IT Governance, Risk and Compliance

2022-12-20T05:27:16+00:00

Computerized technology and the Advent of Technology have a significant role in the way we reside and operate. The corporate world is undergoing enormous massive reforms due to technological advancements, rising separation of business, increasing need for useful techniques, and evolving workforce. Innovation, automation, and robotics aim to develop professionally, raise productive capacity, and produce substantial employment offering substantial solvent and social prospects in the IT industry. A GRC framework is a useful endeavor that enables firms to connect their it and mission statement with company objectives, efficiently mitigate risks, and satisfy legal responsibilities successfully.

Optus Data Breach Australia Year 2022 – Case Study

2022-12-12T14:33:58+00:00

In September 2022, Optus Australia was shaken by cyber-attack which resulted in the disclosure of customer’s valuable personal data and information. This case study will investigate ‘modus of operandi’ of hackers and will suggest mitigation strategies to avoid these kind of attacks in the future. Most probably hackers may have used SQL injection attack and/or Brute force attack to enumerate the Optus users details. This paper will also demonstrate one example of SQL injection attack along with the counter measures. Author has also recommended COBIT5 framework to manage risk in cyber security for companies like Optus in this paper.

Role of GRC In the Information Governance for IT Organizations

2022-12-12T14:02:57+00:00

The focus on Governance, Risk and Compliance (GRC) is steadily increasing as IT companies are facing increased risk and a growing number of legal, regulatory compliances. Big IT giants like Google, Facebook already initiated to ‘emphasise’ the integration of GRC activities in order to efficiently manage data governance. This paper analyses need of GRC and its integration particularly for data governance in IT organization. Even though integrated GRC is potential candidate for storage and safe handling of user data, many companies are unsure about the importance of an integration of GRC. As per recent findings, many organisations in Australia have deployed integrated GRC software that helps underlining the benefits of GRC. Still integration of GRC is having few challenges at the moment as stakeholders are unsatisfied with the present state of integration. In this paper, author recommends few solutions to overcome challenges of integration of GRC particularly for data handling with reference to COBIT 5 framework.