Reference no: EM131433926
Assignment: Planning an IT Infrastructure Audit for Compliance
The audit planning process directly affects the quality of the outcome. A proper plan ensures that resources are focused on the right areas and that potential problems are identified early. A successful audit first outlines the objectives of the audit, the procedures that will be followed, and the required resources.
Choose an organization you are familiar with and develop an eight to ten page IT infrastructure audit for compliance in which you:
1. Define the following items for an organization you are familiar with:
a. Scope
b. Goals and objectives
c. Frequency of the audit
d. Duration of the audit
2. Identify the critical requirements of the audit for your chosen organization and explain why you consider them to be critical requirements.
3. Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organization.
4. Develop a plan for assessing IT security for your chosen organization by conducting the following:
a. Risk management
b. Threat analysis
c. Vulnerability analysis
d. Risk assessment analysis
5. Explain how to obtain information, documentation, and resources for the audit.
6. Analyze how each of the seven domains aligns within your chosen organization.
7. Align the appropriate goals and objectives from the audit plan to each domain and provide a rationale for your alignment.
8. Develop a plan that:
a. Examines the existence of relevant and appropriate security policies and procedures.
b. Verifies the existence of controls supporting the policies.
c. Verifies the effective implementation and ongoing monitoring of the controls.
9. Identify the critical security control points that must be verified throughout the IT infrastructure, and develop a plan that includes adequate controls to meet high-level defined control objectives within this organization.
10. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
• Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
• Describe the components and basic requirements for creating an audit plan to support business and system considerations
• Develop IT compliance audit plans
• Use technology and information resources to research issues in security strategy and policy formation.
• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.
|
The toy industry is very fickle and innovation is critical
: The toy industry is very fickle and innovation is critical. Sales for January 2017 showed only a 3% rise over January 2016 leaving the company managers concerned about meeting projected sales targets for 2017. increase sales unrelated to NASA toys b..
|
|
Briefly introduce the company you have chosen to research
: Briefly introduce the company you have chosen to research. Summarize the two articles you found in the CSU Online Library. Describe how these companies are using electronic media and e-mail
|
|
Discuss about the cost of the prevention strategy
: You have been working at the Wayne County probation office for approximately 6 months now. Your supervisor has given you your 6-month employment evaluation, which was excellent. As a result, your supervisor has informed you that he is to choose on..
|
|
How elastic the demand for a product is
: Characteristics that Determine Elasticity, presents 4 characteristics that determine how elastic the demand for a product is. List each of these. For each one explain and write a separate paragraph for each.
|
|
Explain critical requirements of audit for your organization
: Identify critical requirements of audit for your chosen organization and explain why you consider them to be critical requirements. Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organizatio..
|
|
Transform an organization from batch-and-queue material
: Apply this method as an analog to the methods that the authors of The Lean Turnaround present to transform an organization from batch-and-queue material and information processing (conventional management) to flow (TPS/Lean management)
|
|
Discuss about the internship job offer
: CRJU-4999-Assuming that you did an internship in a local Group Home facility, Diversion Center, Transitional facility or a Crime Lab, Police Department, Sheriff Department, etc and after your internship, you are offered a temporary position where ..
|
|
My current thoughts about jobs and careers
: My current thoughts about jobs and careers: What can you see yourself doing or not doing? What aspects of a job or profession are interesting or important to you (e.g. location, working alone or part of a group, working with people/numbers/things, nu..
|
|
Separate markets in the united states and england
: A monopolist has a constant marginal cost of $2 per unit and no fixed costs. He faces separate markets in the United States and England. He can set one price p1 for the U.S market and another price p2 for the English market. If demand in the United..
|