Develop a policy for conducting it audits

Assignment Help Computer Engineering

Reference no: EM133499424

Question: You are an information security manager for a large national retailer responsible for planning and overseeing IT audits. At the request of the board of directors, the CEO has tasked you with developing a plan for conducting regular audits of the IT infrastructure. The planning and management aspects of IT audit are critical to the overall success of the audit and, consequently, the overall success of the systems implemented in the organization.

You must develop a policy for conducting IT audits and develop a project plan for two-week IT audits.

In addition to the typical networking and Internetworking infrastructure of a medium-sized organization, the organization has the following characteristics:

They have a main office and 268 stores in the United States.
They use a cloud computing environment for storage and applications.
Their IT infrastructure includes Cisco workgroup and core switches, Cisco routers, Cisco firewalls and intrusion prevention systems, and servers running Microsoft Windows Server 2012.
The main headquarters have over 1,000 desktops and approximately 500 organization-owned laptops
They allow employees to bring their own devices into the organization; however, they are subject to search upon entry and exit from the building.
They enable remote access to corporate information assets for employees and limited access to extranet resources for contractors and other business partners.
They enable wireless access at the main office and the stores.
They process an average of 67.2 credit card transactions per hour, every day, at each location and via their corporate website.

Develop a disaster recovery plan (DRP) for recovering from a major incident or disaster affecting the organization.
1. The organization must have no data loss.
2. The organization must have immediate access to organizational data in the event of a disaster.
3. The organization must have critical systems operational within 48 hours.

Reference no: EM133499424

Questions Cloud

Explain two specific impacts on the organization : Explain two specific impacts on the organization. Why is it essential that organizations have a robust governance system

How long did the process take : How long did the process take and Was the outcome what you were hoping for, or did it result in something unexpected?

Discuss some key features and capabilities of css3 : Discuss some key features and capabilities of CSS3 that can be utilized in HTML web pages to enhance the visual appeal and styling, such as animations

How can cryptography be used to secure the lines : How can cryptography be used to secure the lines of network communications between a remote worker and the corporate servers

Develop a policy for conducting it audits : Develop a policy for conducting IT audits and develop a project plan for two-week IT audits

What ia scripting and programming : What ia scripting and programming? What distinguishes a script from a program? How would an IT professional use scripting and programming in their work?

How can we reduce this delay and make clear : How can we reduce this delay and make clear that our tactics need to can meet the growing threat trends

What have we learned in this course regarding flood myths : What have we learned in this course regarding flood myths of the ancient river valley civilizations? How were the stories of Noah and Gilgamesh that we read

Critical thinking is the most important step : Critical Thinking is the most important step in the process of Technical Communication." Explain the reasoning and justification for the position you take

User Account

All Pages