Server administrator question regarding internal controls
Posted on 2008-10-06
In a large business or corporate environment where employees have internet access through the business' servers, what is to prevent someone in the computer systems department from deleting internet access records for a selected number of employees? We are suspicious of a low-level employee in the computer department possibly attempting in the near future to delete all internet access records for his friends who work in different departments throughout the company. They are known to surf the web extensively during work hours and we are afraid that someone in the computer department will attempt to delete their internet access records so there will be no trace of them having surfed the web. I'm just trying to find out in general, what sort of internal controls are pretty much standard throughout the industry to prevent such things from happening. For example, in the computer systems department, if a deletion of records is made, will information on who made the deletions be recorded? Is there a way to cover one's tracks so no one can tell a deletion was made or who did it? Is authority for deletion generally only given to one person? etc etc. If you feel uncomfortable answering the question, I understand. But I'm just trying to get a general idea of what some of the standards of the industry. Thanks.