CIS 349 Week 10 Term Paper Planning An It Infrastructure Audit For Compliance (2 Papers)
This Tutorial was purchased 11 times & rated A by student like you.
This Tutorial contains following Attachments
- CIS 349 Nn Week 10 Term PP An It Infra Audit For Compliance 1.docx
- CIS 349 Nn Week 10 Term PP An It Infra Audit For Compliance.docx
This Tutorial contains 2 Papers on the Below Mentioned Topic
CIS 349 Week 10 Term Paper Planning An It Infrastructure Audit For Compliance
erm Paper: Planning an IT Infrastructure Audit for Compliance
Due Week 10 and worth 200 points
The audit planning process directly affects the quality of the outcome. A proper plan ensures that resources are focused on the right areas and that potential problems are identified early. A successful audit first outlines what’s supposed to be achieved as well as what procedures will be followed and the required resources to carry out the procedures. Considering your current or previous organization or an organization you are familiar with, develop an IT infrastructure audit for compliance. Chapter 5 of the required textbook may be helpful in the completion of the term paper.
Write a ten to fifteen (10-15) page paper in which you:
Define the following items for an organization in which you are familiar with:
Goals and objectives
Frequency of the audit
Identify the critical requirements of the audit for your chosen organization and explain why you consider them to be critical requirements.
Choose privacy laws that apply to the organization, and suggest who is responsible for privacy within the organization.
Develop a plan for assessing IT security for your chosen organization by conducting the following:
Risk assessment analysis
Explain how to obtain information, documentation, and resources for the audit.
Analyze how each of the seven (7) domains aligns within your chosen organization.
Develop a plan that:
Examines the existence of relevant and appropriate security policies and procedures.
Verifies the existence of controls supporting the policies.
Verifies the effective implementation and ongoing monitoring of the controls.
Identify all critical security control points that must be verified throughout the IT infrastructure, and develop a plan that include adequate controls to meet high-level defined control objectives within this organization.
Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
Explain the use of standards and frameworks in a compliance audit of an IT infrastructure.
Describe the components and basic requirements for creating an audit plan to support business and system considerations.
Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
Analyze information security systems compliance requirements within the User Domain.
Analyze information security systems compliance requirements within the Workstation and LAN Domains.
Design and implement ISS compliance within the LAN-to-WAN and WAN domains with an appropriate framework.
Explain information security systems compliance requirements within the Remote Access Domain.
Explain information security systems compliance requirements within the System / Application Domain.
Use technology and information resources to research issues in security strategy and policy formation.
Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions
Write a reviewOrder Id
Order Id will be kept Confidential
Rating: A B C D F
Enter the code in the box below:
This Tutorial contains 2 Papers on the Below Mentioned Topic CIS 349 Week 10 Term Paper Planning An It Infrastructure Audit For Compliance erm Paper: Planning an IT Infrastructure Audit for Compliance Due Week 10 and worth 200 points ..
This Tutorial contains 2 Papers on the Below Mentioned Topic CIS 349 Week 8 Assignment 4 Designing Compliance Within The Lan-To-Wan Domain Assignment 4: Designing Compliance within the LAN-to-WAN Domain Note: Review the page requireme..
This Tutorial contains 2 Papers on the Below Mentioned Topic CIS 349 Week 6 Assignment 3 Evaluating Access Control Methods Imagine you are an Information Systems Security Specialist for a medium-sized federal government contractor. The Chief Securit..
This Tutorial contains 2 Papers on the Below Mentioned Topic Assignment 2: Organizational Risk Appetite and Risk Assessment Due Week 4 and worth 100 points Imagine that a software development company has just appointed you to lead a risk assessment project..
This Tutorial contains 2 Papers on the Below Mentioned Topic Imagine you are an Information Security consultant for a small college registrar’s office consisting of the registrar and two (2) assistant registrars, two (2) student workers, and one (1) receptionist. The office ..
CIS 349 Final Exam Guide Set 2 1) Which type of access control defines permissions based on roles, or groups, and allows object owners and administrators to grant access rights at their discretion? &n..
CIS 349 Final Exam Guide Set 1 1) ___________ are the components, including people, information, and conditions, that support business objectives.  ..
"IT Auditor" Please respond to the following: Take a position on whether or not you would want to pursue a career as an IT auditor. Explain the key reasons why or why not. Determine if you would recommend this job to your family and friends. Provide a rationale for your response. ..
Data Center Management" Please respond to the following: Imagine you are an IT security specialist of a large organization which is opening a new data center. Recommend a minimum of three (3) controls, other than door locks, you would utilize to secure the new data center physically. Support ..
Remote access to corporate resources is becoming commonplace. From an auditing perspective, suggest two (2) or more controls that should be in place to prevent the loss or theft of confidential information. Give your opinion on what you believe are the essential elements of a..
Many companies, large and small, have implemented Bring Your Own Device (BYOD) policies allowing employees to use their personal smartphones and tablets to conduct business while at work. Debate the major pros and cons of implementing such a policy. Identify three (3) risks that mi..
"Monitoring the User Domain" Please respond to the following: It is common knowledge that employees are a necessary part of any business. Identify three (3) best practices in the user domain and suggest the control type(s) (technical or manual) that are best suited to monitor each best practi..
Select an organization with which you are familiar. Identify the compliance laws that you believe would be most relevant to this organization. Justify your response. Define the scope of an IT compliance audit that would verify whether or not this organization is in compliance w..