MEMORANDUM
TO:
CHIEF EXECUTIVE, ANNE ARUNDEL COUNTY
FROM:
RE:
RISK MEMO
DATE:
12/5/2023
Risk Assessment Summary
It has come to my attention that processing payments for services at Odenton information system does not follow guidelines. The company is at risk of cyber-attack. It is recommended that I inform you of some basic security needs that need to be applied to the payment process for services in the office. This will protect sensitive information and data throughout the system. Background
To protect counties data , it is extremely important to keep updating passwords regularly. This will prevent unauthorized access to any computer system. Also, when employees are dealing with their credit card info, payment over the phone can be easy to give up but anyone can steal the customer's info. Concerns, Standards, Best Practices
The main concerns are data security and developing safe payment methods. If employees get annual training regarding data security and how to handle private information such as password or email phishing. Also limiting visitors can help protect against physical threats. installing antivirus software which is considered the best practice to protect payment system.
Action Steps
In conclusion, the following steps need to be taken to protect residents from threats. The first step is to protect payment terminals. When you provide card details to third party make sure to ask security question that identified that this is the right person you are authorizing to. Another action is to install antivirus and give employees annual training on data security and how to handle sensitive information.
