Ethics and the digital divide and what should I as a security Research Paper

Ethics and the digital divide and what should I as a security professional be concerned with - Research Paper Example 5). Due to this, information can be easily misused and important ethics breached with little restriction. Thus, there is the need for controls and ethics to reduce challenges to information security. Most businesses attain information security through the institution of controls. Corporate governance rules require that the people running organizations, viz. the board of directors and top managers, institute controls and ensure they are working (Nnolim, 2007, p. 69). Information security is one of the core controls that managers need to employ. As a requirement by law, public companies need to appoint external auditors to undertake a thorough audit of the systems, operations and financial transactions of business and pass an opinion on the truth and fairness of the accounts and systems (Millichamp, 2011, p. 2). Most private companies are required to conduct external audits by important stakeholders such as banks. Information security falls under the core areas of statutory or external audits. This is governed by the Generally Accepted Accountancy Practice (GAAP) rules of the American Institute of Certified Public Accountants. Apparently, there is a strong connection among information security, increment in information security risks which comes with the bridging of the digital divide, corporate governance and statutory audit. This paper will examine the role of information security professionals in controlling risks in a period of fast IT growth and the role of corporate governance and statutory audit in ensuring that those systems are working. In attaining this end, the following objectives will be met: This section will define the core concepts that are being reviewed in this study. This will set the framework for further analysis of the interconnectedness of the different concepts and how they work together to support organizations to keep running. According to Nnolim (2007, p. 4), ISO defines Information