Professional Documents
Culture Documents
2021-PwC Internal Control recommendations-IT
2021-PwC Internal Control recommendations-IT
No PwC Recommendation Harimic's present configuration Action required to meet recommendations Action Deadline
a) Maximum password age - 90 days or lower
b) Account lockout treshold - 3 invalid logon attempts
2.3 Improvement to IT policies and procedures and communicating them to relevant personnel periodically when updates are needed
No PwC Recommendation Harimic's present practice Action required to meet recommendations Action Deadline
a) User account creation, modification, deletion
b) Password policy As in 2.1
c) Privilege access management procedure
d) Periodic review of user access rights
2.4 No PwC Recommendation Harimic's present situation Action required to meet recommendations Action Deadline
Data restoration practice be established to ensure
a) recoverability/restoration of payroll data