User Account

All Pages

Explain the management plan for conducting it audits

Assignment Help Management Information Sys
Reference no: EM132188379

Question: Term Paper: Managing an IT Infrastructure Audit

This assignment consists of four (4) sections: an internal IT audit policy, a management plan, a project plan, and a disaster recovery plan. You must submit all four (4) sections as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for. Additionally, you may create and /or assume all necessary assumptions needed for the completion of this assignment.

Imagine you are an Information Security Manager for a large national retailer. You have been hired to be directly responsible for the planning and oversight of IT audits. At the request of the Board of Directors, the CEO has tasked you with developing a plan for conducting regular audits of the IT infrastructure. The planning and management aspects of IT audit are critical to the overall success of the audit, and as a result, the overall success of the systems implemented within the organization. You must develop a policy for conducting IT audits and develop a project plan for conducting two week IT audits.

In addition to the typical networking and Internetworking infrastructure of a medium-sized organization, the organization has the following characteristics:

• They have a main office and 268 stores in the U.S.

• They utilize a cloud computing environment for storage and applications.

• Their IT infrastructure includes Cisco workgroup and core switches, Cisco routers, Cisco firewalls and intrusion prevention systems, and servers running Microsoft Windows Server 2012.

• They have over 1000 desktops and approximately 500 organization-owned laptops in the main headquarters.

• They allow employees to bring their own devices into the organization; however, they are subject to being searched upon entry and exit from the building.

• They enable remote access to corporate information assets for employees and limited access to extranet resources for contractors and other business partners.

• They enable wireless access at the main office and the stores.

• They process an average of 67.2 credit card transactions per hour every day at each location and via their corporate Website.

Section 1: Internal IT Audit Policy

Write a three to four (3-4) page paper in which you:

1. Develop an Internal IT Audit Policy, which includes at a minimum:

a. Overview

b. Scope

c. Goals and objectives

d. Compliance with applicable laws and regulations

e. Management oversight and responsibility

f. Areas covered in the IT audits

g. Frequency of the audits

h. Use at least two (2) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Section 2: Management Plan

Write a four to six (4-6) page paper in which you:

2. Explain the management plan for conducting IT audits, including:

a. Risk management

b. System Software and Applications

c. Wireless Networking

d. Cloud Computing

e. Virtualization

f. Cybersecurity and Privacy

g. BCP and DRP

h. Network Security

i. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Section 3: Project Plan

Use Microsoft Project or an Open Source alternative, such as Open Project to:

3. Develop a project plan which includes the applicable tasks for each of the major areas listed below for each element of the IT audit mentioned above; plan for the audit to be a two (2) week audit.

a. Risk management

b. System software and applications

c. Wireless networking

d. Cloud computing

e. Virtualization

f. Cybersecurity and privacy

g. Network security

Section 4: Disaster Recovery Plan

Write a five to seven (5-7) page paper in which you:

4. Develop a disaster recovery plan (DRP) for recovering from a major incident or disaster affecting the organization.

a. The organization must have no data loss.

b. The organization must have immediate access to organizational data in the event of a disaster.

c. The organization must have critical systems operational within 48 hours.

d. Include within the DRP the audit activities needed to ensure that the organization has an effective DRP and will be able to meet the requirements stated above.

e. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

• Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.

• Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.

Reference no: EM132188379

Questions Cloud

Create a sequential pay structure of two classes : Create a WAC IO and PO tranche to give a 5.75% deal coupon. Assume that these two classes are paid first.
Which model would best serve the stakeholders : Paper MUST be a proposal to increase the use of IT resources for policy-making in developing countries. Explain which scenario you have chosen.
Relative ratings of fish caught : In a certain lake, the trout average 12 inches in length with a standard deviation of 2.75 inches.The bass average 4 pounds in weight with a standard deviation
Describe the different organizational structures : Describe the different organizational structures as it relates to project management (i.e., functional, project-based, matrix).
Explain the management plan for conducting it audits : This assignment consists of four (4) sections: an internal IT audit policy, a management plan, a project plan, and a disaster recovery plan.
Demonstrate knowledge gained from the course readings : Writing assignment is to answer any two of the three questions below, in about 500-800 words for each essay, or approximately 2-4 pages each.
Describe your strategic position in the market : Describe your strategic position in the market and what differentiates the products or services you sell.
What will be the tax depreciation each year : To supplement the production process, the company will need to purchase $1 million worth of inventory. What will be the tax depreciation each year
Identifying particular process of agile : Statement is all about identifying particular process of agile and its factors need to be taken into consideration of expecting valid outcome results.

Reviews

Write a Review

Management Information Sys Questions & Answers

  What are the types of risks to trusted networks

What are the types of risks to trusted networks that must be mitigated by security professionals with the goal of securing internal information assets?

  What is the importance of getting certified in it

What is the importance of getting certified in Information Technology? What are the pros and cons of obtaining various industry certifications?

  What difficulties might you encounter in this process

What are some of the key factors to consider when gathering requirements for a network?

  Develop the best possible e-portfolio at graduation

You will want to keep an archive of all your academic work so you can develop the best possible e-portfolio at graduation.

  Analyze it change management and patch management processes

Analyze IT change management and patch management processes needed within organizations. Identify three (3) challenges organizations face when implementing change and patch management processes for the first time. Make suggestions to address these..

  Prepare a brief report comparing the sales volumes

You are employed as a statistician for a company that makes household products, which are sold by part-time salespersons who work during their spare time. The company has four salespersons employed in a small town.

  Review the training needs analyses conducted

Review the training needs analyses conducted and state the learning outcomes proposed for this training programme.

  What is the estimated amount of time for implementation

Determine the medium through which the office staff prefers to communicate, wether it is a presentation, e-mail or a printed presentation. Knowing my audience will help me to understand their specific needs and not just the message that I want to ..

  Name and brief description of the organization

Discuss the hacker group known as 'Anonymous' and based on open source research, post a one paragraph summary of each below: (a) name and brief description of the organization (b) estimated level of sophistication

  Determining the competitive value of information technology

Identify three factors to consider in determining the competitive value of information technology. Justify the selected factors.

  Explain policies and standards that govern health it

Explain policies and standards that govern health IT. Evaluate the policies that aim to improve health through the use of health information management.Evaluate the issues that surround system design and development. Discuss the importance of data st..

  Identify and prioritize critical it systems and components

Create a business impact analysis on SanGrafix a video game design company. The BIA should include a descriptive list of the organization's key business areas. The BIA helps to identify and prioritize critical IT systems and components. A template..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd