User Account

All Pages

Describe audit findings related to it governance

Assignment Help Auditing
Reference no: EM132676721 , Length: word count:2500

SBM4302 IT Audit and Controls - Asia Pacific International College

Assessment: Report An individual work pertaining to a real world IT audit report

Assessment : Report

Assessment Details:

This assessment is designed to assess students' ability to apply theoretical learning to practical, real world situations. In this assessment students are given an IT audit report conducted by the office of the New South Wales Auditor General and asked to do the followings:
• Identify the audit focus and scope
• Describe high risk IT issues in the NSW city councils
• Describe audit findings related to IT governance in the NSW city councils
• Describe audit findings related to IT general controls in the NSW city councils
• Describe audit findings related to cyber security management in the NSW city councils
• Highlight the professional, legal, and ethical responsibilities of an IT auditor.
In completing this assessment successfully, you will be able to learn how to analyse an IT audit report, learn relevant legislation, generally accepted auditing standards and ISACA's CORBIT framework, which will help in achieving ULO1, ULO-2, ULO-3, ULO-4, ULO-5, ULO-6, and ULO-7.

Assessment: Case Study

Assessment Details:
This assessment is designed to assess students' ability to apply theoretical learning to practical, real world situations. In this assessment students are given a sample case study and asked to design an IT audit based on it. In particular, emphasis on the reason(s) behind the situation that unfolded and actions that could have been taken to prevent such incidents from occurring.

Case Study: Service NSW Data Breach

On September 7th 2020, media reports showed that the Service NSW, the New South Wales state's biggest data collection agency, suffered a massive data breach through a cyber attack. Personal data of 186,000 customers and staff were leaked after a cyber attack occurred through phishing emails earlier this year, in which 47 employees had their email accounts compromised. A four-month investigation, which began in April, concluded that roughly 3.8 million documents had to be analysed to assess the severity of any possible breaches.

"This rigorous first step surfaced about 500,000 documents which referenced personal information," Service NSW chief executive Damon Rees said. "The data is made up of documents such as handwritten notes and forms, scans, and records of transaction applications."

The total size of the breach was 738 gigabytes of data, but not all of that was personal information, a spokesperson for Service NSW said. There is no evidence that individual MyServiceNSW account data or Service NSW databases were compromised.

Customers who have been identified as "at-risk" will be notified by mail, which will include instructions on how to get support. The department said it "will never call or email a customer out of the blue requesting customer information about this or any other data breach".

Based on the above case study, you have to prepare a report and then a subsequent presentation to answer the followings:
- objectify your audit focus and scope
- which IT resources of Service NSW, are you planning to audit? And how can you detect regularities, abnormalities in them?
- what suggestions, recommendations do you want to provide to Service NSW based on your findings?
- As IT auditor, what are the rules and regulations that you plan to adhere to?

Attachment:- IT Audit and Controls.rar

Reference no: EM132676721

Questions Cloud

What is an annotated bibliography and how do i do one : Transferable Skill: Information Literacy: Discovering information reflectively, understanding how information is produced and valued, and using information.
What best describes residual risk : What best describes residual risk? Risks that, if properly managed, will make the organization successful in the achievement of its objectives or, if not well
What is the hourly capacity of the production line : A production line has three stations. The third station can process a unit in 8 minutes. What is the hourly capacity of this production line?
What is the minimum number of drive-through to achieve : Determine What is the minimum number of drive-through needed to achieve an anticipated servicing of 500 cars per 9-hour a day?
Describe audit findings related to it governance : Describe audit findings related to IT governance in the NSW city councils and Describe audit findings related to cyber security management in the NSW city
Develop a nursing care plan for an older adult at risk : Develop a nursing CARE PLAN for an older adult at risk for pressure injury using wellness and North American Nursing Diagnosis Association (NANDA) diagnoses.
Which best describes the definition of the audit universe : Which best describes the definition of the audit universe? All auditable components of an entity. / That which is documented. / All Account balances
How would the amount of patient fluid loss be determined : You are a nurse who frequently cares for post-surgical patients in your hospital unit. Most of the medical-surgical patients have IV fluids infusing during.
Which is an advantage of skimming to the fraudst : Which is an advantage of skimming to the fraudst? It provides the fraudster with cash. / It results in large dollar amounts. / It is not considered a crime.

Reviews

Write a Review

Auditing Questions & Answers

  Internal audit

Describe and evaluate this type of internal audit. What types of organisation would it be most useful for?

  Accounting professional and ethical standards

Code of Ethics for Professional Accountants

  Prepare swag''s consolidated balance sheet

Prepare Swag's consolidated balance sheet

  Auditing and assurance

Notable operational challenges for 4X Heavy Ltd faced in 2012/2013 were but not limited to

  State of the company’s industry and associated risk factors

Audit partner is concerned about his lack of knowledge of the industry the company is operating in, state of the company's industry and associated risk factors

  Prepare a memo to the audit partner

Prepare a memo to the audit partner on the ‘state of the company's industry' and associated risk factors.

  Adjusting or non- adjusting events

State whether Event is adjusting or non-adjusting event.

  Audit financial data

As a consequence an accounts payable clerk and financial accountant were made redundant from the business during the year.

  Identify principal audit risk

To identify principal audit risk and corresponding audit procedures

  Auditing and assurance

Show the audit inherent risk and rate the risk as low, medium or high.

  National health reform

Explain the role of the following three 'bodies' in National Health Reform

  Prepare a memo on the state of the company''s industry

Prepare a memo on the 'state of the company's industry' and associated risk factors.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd