User Account

All Pages

Control objectives for information and related technology

Assignment Help Basic Computer Science
Reference no: EM132369132

Introduction

Ask any IT manager about the challenges in conveying IT risks in terms of business risks, or about translating business goals into IT goals. It's a common difficulty, as the worlds of business and IT do not inherently align. This lack of alignment was unresolved until ISACA developed a framework called COBIT, first released in 1996. ISACA is an IT professionals' association centered on auditing and IT governance. This lab will focus on the COBIT framework. The lab uses the latest two versions: COBIT 4.1, which is currently the most implemented version, and COBIT 5, which is the latest version released in June 2012.

Because COBIT 4.1 is freely available at the time of this writing, the lab uses this version to present handling of risk management. Presentation is done making use of a set of COBIT control objectives called P09. COBIT P09's purpose is to guide the scope of risk management for an IT infrastructure. The COBIT P09 risk management controls help organize the identified risks, threats, and vulnerabilities, enabling you to manage and remediate them. This lab will also present how COBIT shifts from the term "control objectives" to a set of principles and enablers in version 5.

In this lab, you will define COBIT P09, you will describe COBIT P09's six control objectives, you will explain how the threats and vulnerabilities align to the definition for the assessment and management of risks, and you will use COBIT P09 to determine the scope of risk management for an IT infrastructure.

Learning Objectives

Upon completing this lab, you will be able to:

Define what COBIT (Control Objectives for Information and related Technology) P09 risk management is for an IT infrastructure.

Describe COBIT P09's six control objectives that are used as benchmarks for IT risk assessment and risk management.

Explain how threats and vulnerabilities align to the COBIT P09 risk management definition for the assessment and management of IT risks.

Use the COBIT P09 controls as a guide to define the scope of risk management for an IT infrastructure.

Apply the COBIT P09 controls to help organize the identified IT risks, threats, and vulnerabilities.

Deliverables

Upon completion of this lab, you are required to provide the following deliverables to your instructor:

1. Lab Report file;

2. Lab Assessments file.

Attachment:- Threats and Vulnerabilities in IT Infrastructure.rar

Reference no: EM132369132

Questions Cloud

Describe the OSI Network Model layers : List and describe the OSI Network Model layers. Describe what is SQL injection and what is/are the countermeasure to prevent SQL injection?
Any similarities or common traits with snowden or manning : Human threats are the most difficult to control and/or predict. Any similarities or common traits with Snowden or Manning. When this occurred.
How would you go about determining accuracy : How would you ensure the highest level of accuracy with your simulation and how would you go about determining accuracy?
Essence of formulating your brief : The essence of "Formulating Your Brief" is to "identify the context in which your work will be undertaken and then define its aims.
Control objectives for information and related technology : Define what COBIT (Control Objectives for Information and related Technology) P09 risk management is for an IT infrastructure.
How e-commerce companies address privacy in its policies : How e-commerce companies address privacy in its policies? The dissertation process by creating sentence outline for a research paper.
Discuss and identify specific project management techniques : Discuss and identify specific project management techniques. Evaluate testing, reliability, and protect quality data to ensure project success.
Human threats are the most difficult to control and predict : Human Threats Are The Most Difficult To Control And/Or Predict. Role and history of the person with the compromised organization
Influence the selection of access control software-hardware : What are the factors that influence the selection of access control software and/ or hardware? Discuss all aspects of access control systems.

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Identifies the cost of computer

identifies the cost of computer components to configure a computer system (including all peripheral devices where needed) for use in one of the following four situations:

  Input devices

Compare how the gestures data is generated and represented for interpretation in each of the following input devices. In your comparison, consider the data formats (radio waves, electrical signal, sound, etc.), device drivers, operating systems suppo..

  Cores on computer systems

Assignment : Cores on Computer Systems:  Differentiate between multiprocessor systems and many-core systems in terms of power efficiency, cost benefit analysis, instructions processing efficiency, and packaging form factors.

  Prepare an annual budget in an excel spreadsheet

Prepare working solutions in Excel that will manage the annual budget

  Write a research paper in relation to a software design

Research paper in relation to a Software Design related topic

  Describe the forest, domain, ou, and trust configuration

Describe the forest, domain, OU, and trust configuration for Bluesky. Include a chart or diagram of the current configuration. Currently Bluesky has a single domain and default OU structure.

  Construct a truth table for the boolean expression

Construct a truth table for the Boolean expressions ABC + A'B'C' ABC + AB'C' + A'B'C' A(BC' + B'C)

  Evaluate the cost of materials

Evaluate the cost of materials

  The marie simulator

Depending on how comfortable you are with using the MARIE simulator after reading

  What is the main advantage of using master pages

What is the main advantage of using master pages. Explain the purpose and advantage of using styles.

  Describe the three fundamental models of distributed systems

Explain the two approaches to packet delivery by the network layer in Distributed Systems. Describe the three fundamental models of Distributed Systems

  Distinguish between caching and buffering

Distinguish between caching and buffering The failure model defines the ways in which failure may occur in order to provide an understanding of the effects of failure. Give one type of failure with a brief description of the failure

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd