• General Control:  Affect the overall effectiveness and security of computer operations and are not unique to specific computer applications
    • Security Management
    • Configuration Management
    • Operating Process
    • Physical control
    • Access Control
    • Continuity of Operation
    • Network Security
  • Application control: More specific to a computer application
    • Input control
    • Processing control
    • Output control
    • Encryption
  • Deliverables
    • Risk Control Matrix
    • Risk assessment report
  •   Recommendation, corrective action reports or Corrective Action Report (CAP)      
error: Content is protected !!