Reference no: EM131316083
OBJECTIVES
This assignment is designed to assess students' ability to:
- Produce a concise detailed report about the importance of information security audit policy and its components
- To have excellent understanding relating to information security audit policy and its components
- To develop skills in manipulating and performing an information security audit
- To be able to define components of information security audit policy according to corporate requirements
- To be able to manage metrics, statistics, and facts about security audit policy effectively.
- Use of CU Harvard referencing system to cite and reference academic resources
Tasks:
These days, most of organizations are considering information security audit as a high priority due to the above said reasons. Hence, An information security audit is an audit on the level of information security in an organization. The organization's IT environment has to be controlled to meet the business requirements. For that purpose, an effective risk-based Information Security audit program with generally accepted audit standards and guidelines should be developed. Critically analyze and provide your findings on the following four aspects of information security audit
Task 1:
Assignment work proposal submission
Task 2:
The auditor should have a sufficient knowledge about the company and its critical business activities before starting an audit review. Critically analyze the part of an Information Security auditor towards audit planning and preparation.
Task 3:
The auditor should consider various criteria the auditing approach. Analyze one of information security auditing frameworks or approaches that an auditor should establish over starting the auditing process.
Task 4:
The technical auditing is consider main phase of IS auditing. Therefore, as IS auditor evaluate the different types of controls and their use in Information Security audit.
Task 5:
As an Information Security Auditor, conduct an audit on network security tools of any organization (of your choice) and provide a comprehensive report to its senior management. The auditing report should include the auditor's (in this case your) inquiries and procedures followed during audit in detail.
What are the generally accepted accounting principles
: What is the ethical issue? What should you, the controller, do? What are the generally accepted accounting principles (GAAP) for reporting a lease as a capital lease?
|
What would be the primary benefits and the primary detriment
: Ban the Box" is a movement to prohibit employers from requiring disclosure of past criminal convictions on employment applications. As we have discussed in this course, recidivism risk is much higher for offenders who are unable to obtain employme..
|
Create a new product that would appeal to your market
: Create a new product that would appeal to your market. Develop at least one question for each characteristic of the target market that will be important for you as you determine the marketing strategy for this new product.
|
What is a poynting vector
: Discuss how the fields far from a physical antenna vary inversely proportional to the distance from the antenna.
|
Conduct an audit on network security tools
: Information Security Audit (COMP 0392) - The auditor should have a sufficient knowledge about the company and its critical business activities before starting an audit review. Critically analyze the part of an Information Security auditor towards ..
|
What was most recent dividend per share paid on stock
: Secolo Corporation stock currently sells for $53 per share. The market requires a return of 8.6 percent on the firm’s stock. If the company maintains a constant 2.3 percent growth rate in dividends, what was the most recent dividend per share paid on..
|
Construct a syntax directed translation scheme
: Construct a syntax-directed translation scheme that trans-lates arithmetic expressions from infix notation into prefix notation in which an operator appears before its operands; e.g., -xy is the prefix notation for x -y
|
Discuss polarization of sinusoidally time-varying fields
: Discuss the propagation of uniform plane waves arising from an infinite plane current sheet of nonsinusoidally time-varying surface current density.
|
What is the role of committees and task forces
: What is the role of committees, task forces, and councils in the organization, and who is invited to join? Consider how this relates to formal and informal leadership
|