Question

An audit client is creating a​ Web-based sales ordering system for customers to purchase products using personal credit cards for payment. Identify three risks related to an online sales system that management should consider. For each​ risk, identify an internal control that could be implemented to reduce that risk.

Answer 1

Answer and Explanation:

The three risks related to an online sales system that management should consider are:

1.Customer data is susceptible to interception by an unauthorized third parties because this authorized third parties can use any form of internet trick to gain access to customer data.

2.The client company’s data, programs, and hardware are as well susceptible to potential interception by external or third parties.

3.An unauthorized third party may attempt and try to transact business with the client company without the company knowing.

Therefore these risks can be addressed by the use of firewalls, encryption techniques, and digital signatures.

A firewall can be defined as a system of hardware and software that help to monitors and controls the flow of e-commerce communications by making sure that all network connections are been channel through a control gateway.

Encryption techniques are techniques which are based on computer programs that help to transform a standard message into a coded (encrypted) form in which one key which is the public key is used for encoding the message and the other key which is the private key is used to decode the message which enables

the Encryption to protect the security of electronic communication during the transmission process.

Digital signatures help to enhance internal controls over the online sales order system by authenticating the validity of all customers and other trading partners who conduct business with the client company on a daily basis.