User Account

All Pages

How each domains aligns within your chosen organization

Assignment Help Auditing
Reference no: EM131531488

Assignment: Planning an IT Infrastructure Audit for Compliance

The audit planning process directly affects the quality of the outcome. A proper plan ensures that resources are focused on the right areas and that potential problems are identified early. A successful audit first outlines the objectives of the audit, the procedures that will be followed, and the required resources.

Choose an organization you are familiar with and develop an eight to ten page IT infrastructure audit for compliance in which you:

1. Define the following items for an organization you are familiar with:

a. Scope
b. Goals and objectives
c. Frequency of the audit
d. Duration of the audit

2. Identify the critical requirements of the audit for your chosen organization and explain why you consider them to be critical requirements.

3. Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organization.

4. Develop a plan for assessing IT security for your chosen organization by conducting the following:

a. Risk management
b. Threat analysis
c. Vulnerability analysis
d. Risk assessment analysis

5. Explain how to obtain information, documentation, and resources for the audit.

6. Analyze how each of the seven domains aligns within your chosen organization.

7. Align the appropriate goals and objectives from the audit plan to each domain and provide a rationale for your alignment.

8. Develop a plan that:

a. Examines the existence of relevant and appropriate security policies and procedures.
b. Verifies the existence of controls supporting the policies.
c. Verifies the effective implementation and ongoing monitoring of the controls.

9. Identify the critical security control points that must be verified throughout the IT infrastructure, and develop a plan that includes adequate controls to meet high-level defined control objectives within this organization.

10. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

• Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
• Describe the components and basic requirements for creating an audit plan to support business and system considerations
• Develop IT compliance audit plans
• Use technology and information resources to research issues in security strategy and policy formation.
• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.

Reference no: EM131531488

Questions Cloud

Capitalization weighted stock index on same group of stocks : Standard and Poor’s has introduced both price only and total return versions of a capitalization weighted stock index on the same group of stocks.
Pay for one share of perfereed stock : How much would you be willing to pay for one share of this perfereed stock?
What is the effective interest rate on the loan : What is the effective interest rate on the loan?
Discuss the characteristics of this give type of control bus : Like most microprocessors. the 68000 uses special-purpose control lines to augment the data transfer bus. These control lines include ECU to K2. BR*, etc.
How each domains aligns within your chosen organization : Analyze how each of the seven domains aligns within your chosen organization. Suggest who is responsible for privacy within the organization.
Define vmebus data transfer bus and own data transfer bus : The VMEbus does not employ multiplexing in order to use a single address/data bus. What are the advantages and disadvantages of the VMEbus nonmultiplexed.
The movie in relation to the memory issue of interest : Explain why you chose the movie in relation to the memory issue of interest, and how the movie illustrates the memory effect of interest.
What does daisy-chaining mean in the context of the vmebus : The VMEbus has six address modifier lines, AMO to AM5. What is their significance and how are they used?
What does fairness mean in the context of bus arbitration : How does the VMEbus deal with a 7-level interrupt, since it has only an IACK* line and the IACKOUT*--IACKIN* daisy-chain?

Reviews

Write a Review

Auditing Questions & Answers

  What is the effect of the dividend on total equity

What is the effect of the dividend on total equity and total assets? Refer to previous question. by what amount did re change, if at all? What is the effect of the dividend on the number of shares outstanding?

  Based on peach blossom cologne company - audit case1 what

based on peach blossom cologne company - audit case.1. what are expectations of the board of directors concerning audit

  Evaluate level of sox regulations that applies to for-profit

Evaluate the level of SOX regulations that applies to for-profit and not-for-profit health care organizations, indicating whether or not mandating SOX requirements for non-profits might reduce fraud and increase corporate governance.

  Initial stage of the audit plan and preparation

You are a senior auditor in the firm of EA Partners. The firm has decided to take on a new client and has requested you to compile a risk assessment report on the firm, as part of the initial stage of the audit plan and preparation

  What is the audit importance of each of the given exceptions

What is the audit importance of each of these exceptions? What follow-up procedures would you use to determine more about the nature of each exception?

  What is some capacity measures for each of the following

What is some capacity measures for each of the following

  Explain what the staff should expect the auditors to do

In a one- to two-page paper (not including the title and reference pages), explain what the staff should expect the auditors to do.

  Depending on the results of their tests of control the

depending on the results of their tests of control the auditors may restrict substitutive procedures.bulldiscuss and

  Make journal entries for company abc

These dividends are paid on 7/1/12. For period of 1/1/12 to 12/31/12 Company XYZ has a total loss of $650,000 and the market price of its shares is $12 per share.

  Money laundering-major scandal for the bank

Analyze the money laundering issue that caused a major scandal for the bank. What was the problem with the AML programs? How did the regulators fail at first?

  Selling accounts receivable

When a business sells its accounts receivable to a financial institution, is it called, line of credit,cash equivalent, factoring, or market to market?

  Legal status of company without company secretary

Legal Status of Company without Company Secretary - A company requires a minimum of 2 directors and a company secretary.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd