Develop plan for assessing it security for chosen company

Assignment Help Computer Network Security
Reference no: EM131310431

Term Paper: Planning an IT Infrastructure Audit for Compliance

Note: Chapter 5 of the required textbook may be helpful in the completion of the assignment.

The audit planning process directly affects the quality of the outcome. A proper plan ensures that resources are focused on the right areas and that potential problems are identified early. A successful audit first outlines the objectives of the audit, the procedures that will be followed, and the required resources.

Choose an organization you are familiar with and develop an eight to ten page IT infrastructure audit for compliance in which you:

1. Define the following items for an organization you are familiar with:

a. Scope
b. Goals and objectives
c. Frequency of the audit
d. Duration of the audit

2. Identify the critical requirements of the audit for your chosen organization and explain why you consider them to be critical requirements.

3. Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organization.

4. Develop a plan for assessing IT security for your chosen organization by conducting the following:

a. Risk management
b. Threat analysis
c. Vulnerability analysis
d. Risk assessment analysis

5. Explain how to obtain information, documentation, and resources for the audit.

6. Analyze how each of the seven domains aligns within your chosen organization.

7. Align the appropriate goals and objectives from the audit plan to each domain and provide a rationale for your alignment.

8. Develop a plan that:

a. Examines the existence of relevant and appropriate security policies and procedures.
b. Verifies the existence of controls supporting the policies.
c. Verifies the effective implementation and ongoing monitoring of the controls.

9. Identify the critical security control points that must be verified throughout the IT infrastructure, and develop a plan that includes adequate controls to meet high-level defined control objectives within this organization.

10. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

The specific course learning outcomes associated with this assignment are:

• Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
• Describe the components and basic requirements for creating an audit plan to support business and system considerations
• Develop IT compliance audit plans
• Use technology and information resources to research issues in security strategy and policy formation.
• Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.

Reference no: EM131310431

Questions Cloud

Compute the beta and interpret : Compute the Beta and interpret it.-  Examine different circumstances with analysis of data.
Describe various issues related to network security : Prepare a paper that discusses this issue. The paper should identify and describe various issues related to network security, including (but not limited to) the following:
Pros and cons of e-commerce for the consumer : What are some of the pros and cons of e-commerce for the consumer.
Perform a good strategic risk analysis of the organization : What are the main conclusions and recommendations to perform a good Strategic Risk Analysis of the organization keeping in mind all factors, internal external, competitors, market?
Develop plan for assessing it security for chosen company : CIS 349- Term Paper: Planning an IT Infrastructure Audit for Compliance. Develop a plan for assessing IT security for your chosen organization by conducting Risk management, Threat analysis and Vulnerability analysis.
Develop data input screens for function : Write a JAVA program to automatically track purchases, sells, and inventory for a Herb and Essential Oils retail store. Keep records in files and accept input from the keyboard and from the files you create. Develop data input screens for each fun..
Phases of the system development life cycle model : Hello, Can someone assist me with an example of a project that you have heard of or you can just provide your opinion on what you think might be some of the causes of failed projects. Base your responses on the phases of the System Development Li..
How much will each type of person work : There are two types of people in the economy. All individuals have utility functions over consumption, c, and leisure, l, given by u(c, l ) = cl, How much will each type of person work
Relevant defects in these programs : You are given two Ruby programs that implement the client and server portions of a simplified FTP server. Your job is to find and fix security-relevant defects in these programs (without breaking normal operations).

Reviews

Write a Review

 

Computer Network Security Questions & Answers

  Implement the cipher as a class

Implement the cipher as a class which implements the provided interface.

  What is net neutrality and why is it so important

What is Net Neutrality and why is it so important for organizations today?

  Internet working equipment

Discuss and explain any of the internet working equipment that you have experience with and the advantages and disadvantages of them.

  Federal government regulates labels

The federal government regulates labels, warranties, and consumer products. Without government regulation, what abuses are likely to occur?

  Understanding of cryptography and its role to n/w security

Critical views on the advantages and disadvantages of technical solutions to security.

  Prepare a diagram using rationale

Analyse the article/case study from the perspective of at least two different classical ethical theories and present well reasoned arguments for your assessments and recommendations.

  Secure communication if organization uses symmetric cipher

An organization has 300 members. It is desired that each member of the organization be able to communicate securely with any other member. The organization uses a symmetric cipher.

  List and explain key objectives of information security

Information security is used to describe the tasks of protecting information in a digital form. List and explain three key objectives of information security. Also list and explain at least two additional protections (concepts)to present a complete v..

  Article on wireless hacking

Research via the internet and find an article in the news regarding wireless hacking, hardware hacking, or other security breach. As security and IT change so rapidly, your article should be no older than 2007.

  Analyse security procedures

Analyse security procedures

  Build a computer using a list of unique specifications

Build a computer using a list of unique specifications and troubleshoot any problems that may come up during the building process.

  How vulnerable end-users are leaving themselves

Students must NOT include any audio or video files. The PowerPoint virtual presentation will not be formally presented. As a result students must endeavour to convey their views and research findings whilst adhering to best presentation practices.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd