Chapter 2 - organisational structure and governance Flashcards
What is the chain of command and span of control in a tall organisational structure?
Business has several layers of management and the manager has a narrow span of control
What is the chain of command and span of control in a flat organisational structure?
Wider span of control and less layers of management
What is the definition of governance?
“A system that provides a framework for managing organisations”
What is meant by corporate governance?
The systems that direct and control the way a business is operated
What is meant by financial governance?
Systems in place to ensure money is paid in correctly and amounts owed to suppliers are paid
What is meant by legal governance?
Systems in place to ensure legal requirements are met
What are strategic risks?
Risks that arise from the decisions the directors make about the business objectives and strategies
What are financial risks?
Risks that occur when there are changes in the financial conditions
What are operational risks?
Risks that arise from the way an organisation operates its business functions
What is phishing?
An attacker sends a message which tricks the person into opening an email or an attachment, once opened this releases malware
What is malware
Software that finds weaknesses in the system and leads to more cyber attacks
What is ransomware?
Malware that locks a user out of their system and demands money in return
What is a DDoS
Bombards a server with huge amounts of data requests that causes a server to freeze up
What is the difference between a risk matrix and the TARA framework?
The risk matrix evaluates risk as 1-16 based off impact and likelihood. The TARA framework evaluates treating risk as transfer, avoid, reduce, accept
