Controls Mitigating the Risk of Confidential Information Disclosure by Facebook: Essential Concern in Auditing Information Security
Journal Title: TEM JOURNAL - Year 2014, Vol 3, Issue 2
Abstract
Facebook allows people to easily share information about themselves which in some cases could be classified as confidential or sensitive in the organisation they’re working for. In this paper we discuss the type of data stored by Facebook and the scope of the terms “confidential” and “sensitive data”. The intersection of these areas shows that there is high possibility for confidential data disclosure in organisations with none or ineffective security policy. This paper proposes a strategy for managing the risks of information leakage. We define five levels of controls against posting non-public data on Facebook - security policy, applications installed on employees’ workstations, specific router software or firmware, software in the cloud, Facebook itself. Advantages and disadvantages of every level are evaluated. As a result we propose developing of new control integrated in the social media.
Authors and Affiliations
Ivan Ognyanov Kuyumdzhiev
Keywords
Related Articles
- EP ID EP162805
- DOI -
- Views 173
- Downloads 0
Study of Power Loss Reduction in SEPR Converters for Induction Heating through Implementation of SiC Based Semiconductor Switches
This paper presents a power loss analysis for a Single Ended Parallel Resonance (SEPR) Converter used for induction heating. The analysis includes a comparison of the losses in the electronic switch when the circui...
The Position of Local Governance Units in the Process of Introducing and Legal Standardization of the e-Business
When it comes to electronic business on the level of local governance units, primarily is referedon their position in the process, responsibilities and barriers for development of the e-business. Since the municipa...
Impact of Turquality Model on Branding and International Marketing
A brand consists of name, symbol, concept, design, standard, quality or several of them which are used to distinguish a product from its competitors. Without a brand, all products have the same qualities in the eye...
Capacity for Acceptance and use of Pre-accession Funds in the Republic of Macedonia
The integration process of the Republic of Macedonia towards European Union is clear and unambiguous interest and priority goal. Republic of Macedonia within the integration processes from 16.05.2007, has the statu...
Management’s Awareness for Implementation of Contemporary Accounting Concepts in Republic of Macedonia
Realization of the determined targets in drastically changed working conditions requires development of new approaches, new business models and ideas of management. As a consequence, managerial practice and methods...