Reference no: EM131317929
Term Paper: Planning an IT Infrastructure Audit for Compliance
The audit planning process directly affects the quality of the outcome. A proper plan ensures that resources are focused on the right areas and that potential problems are identified early. A successful audit first outlines the objectives of the audit, the procedures that will be followed, and the required resources.
Choose an organization you are familiar with and develop an eight to ten (8-10) page IT infrastructure audit for compliance in which you:
1. Define the following items for an organization you are familiar with:
a. Scope
b. Goals and objectives
c. Frequency of the audit
d. Duration of the audit
2. Identify the critical requirements of the audit for your chosen organization and explain why you consider them to be critical requirements.
3. Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organization.
4. Develop a plan for assessing IT security for your chosen organization by conducting the following:
a. Risk management
b. Threat analysis
c. Vulnerability analysis
d. Risk assessment analysis
5. Explain how to obtain information, documentation, and resources for the audit.
6. Analyze how each of the seven domains aligns within your chosen organization.
7. Align the appropriate goals and objectives from the audit plan to each domain and provide a rationale for your alignment.
8. Develop a plan that:
a. Examines the existence of relevant and appropriate security policies and procedures.
b. Verifies the existence of controls supporting the policies.
c. Verifies the effective implementation and ongoing monitoring of the controls.
9. Identify the critical security control points that must be verified throughout the IT infrastructure, and develop a plan that includes adequate controls to meet high-level defined control objectives within this organization.
10. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
• Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
• Describe the components and basic requirements for creating an audit plan to support business and system considerations
• Develop IT compliance audit plans
• Use technology and information resources to research issues in security strategy and policy formation.
• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.
Prepare statement of retained earning-income statement
: You are thinking of investing in one of two corporations, both in the same industry, the Bill Gate Corporation. Prepare a statement of Retained Earning. Prepare Income Statement including EPS. Prepare multiple step Balance Sheet.Capital Stock must be..
|
Push for year end sales ethical
: In early December the Boyer Company embarks on a sales promotion giving a special 10% discount for orders received by December 15. Comment on the ethics of this promotion.
|
Investor lose on the purchase of the bond
: An investor buys a $1,000, 20 year 7 percent (interest paid semiannually) bond at par. After five years have passed, interest rates are 10 percent. How much did the investor lose on the purchase of the bond?
|
Why would writing off in process research
: "Big Bath"-Comment on how a "Big Bath" would have enabled WorldCom to cover up its fraud.- Why would writing off "in-process" Research and Development be similar to a "Big Bath"?
|
How each of seven domains aligns within your organization
: Explain how to obtain information, documentation, and resources for the audit. Analyze how each of the seven domains aligns within your chosen organization.
|
Three-year treasury security rate
: Suppose we observe the three-year Treasury security rate to be 12%, the expected one-year rate next year - E(2r1) - to be 8% and the expected one-year rate the following year - E(3r1) - to be 9%.
|
How it would make a difference in the lives of youth
: Explain with statistical data found in authoritative sources how and why that type of program is effective, andexplain in detail the role a police, probation or corrections officer could play in such a program and how it would make a difference in t..
|
Dividend increases at average rate-market rate of return
: Northern Gas recently paid a $2.80 annual dividend on its common stock. This dividend increases at an average rate of 3.8 percent per year. The stock is currently selling for $26.91 a share. What is the market rate of return?
|
Percent growth rate in its dividends indefinitely
: The Absolute Zero Co. just issued a dividend of $2.70 per share on its common stock. The company is expected to maintain a constant 5.6 percent growth rate in its dividends indefinitely.
|