Uop cis 349 week 10 term paper planning an it infrastructure audit for compliance
1. UOP CIS 349 Week 10 Term Paper Planning An It Infrastructure
Audit For Compliance (2 Papers) NEW
Check this A+ tutorial guideline at
http://www.uopassignments.com/cis-349-strayer/cis-
349-week-10-term-paper-planning-an-it-infrastructure-
audit-for-compliance-recent
For more classes visit
http://www.uopassignments.com
erm Paper: Planning an IT Infrastructure Audit for Compliance
Due Week 10 and worth 200 points
The audit planning process directly affects the quality of the
outcome. A proper plan ensures that resources are focused on
the right areas and that potential problems are identified early.
A successful audit first outlines what’s supposed to be achieved
as well as what procedures will be followed and the required
resources to carry out the procedures. Considering your
current or previous organization or an organization you are
familiar with, develop an IT infrastructure audit for
compliance. Chapter 5 of the required textbook may be helpful
in the completion of the term paper.
Write a ten to fifteen (10-15) page paper in which you:
Define the following items for an organization in which you are
familiar with:
Scope
2. Goals and objectives
Frequency of the audit
Identify the critical requirements of the audit for your chosen
organization and explain why you consider them to be critical
requirements.
Choose privacy laws that apply to the organization, and suggest
who is responsible for privacy within the organization.
Develop a plan for assessing IT security for your chosen
organization by conducting the following:
Risk management
Threat analysis
Vulnerability analysis
Risk assessment analysis
Explain how to obtain information, documentation, and
resources for the audit.
Analyze how each of the seven (7) domains aligns within your
chosen organization.
Develop a plan that:
Examines the existence of relevant and appropriate security
policies and procedures.
Verifies the existence of controls supporting the policies.
3. Verifies the effective implementation and ongoing monitoring
of the controls.
Identify all critical security control points that must be verified
throughout the IT infrastructure, and develop a plan that
include adequate controls to meet high-level defined control
objectives within this organization.
Use at least three (3) quality resources in this assignment. Note:
Wikipedia and similar Websites do not qualify as quality
resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size
12), with one-inch margins on all sides; citations and
references must follow APA or school-specific format. Check
with your professor for any additional instructions.
Include a cover page containing the title of the assignment, the
student’s name, the professor’s name, the course title, and the
date. The cover page and the reference page are not included in
the required assignment page length.
The specific course learning outcomes associated with this
assignment are:
Explain the use of standards and frameworks in a compliance
audit of an IT infrastructure.
Describe the components and basic requirements for creating
an audit plan to support business and system considerations.
4. Describe the parameters required to conduct and report on IT
infrastructure audit for organizational compliance.
Analyze information security systems compliance
requirements within the User Domain.
Analyze information security systems compliance
requirements within the Workstation and LAN Domains.
Design and implement ISS compliance within the LAN-to-WAN
and WAN domains with an appropriate framework.
Explain information security systems compliance requirements
within the Remote Access Domain.
Explain information security systems compliance requirements
within the System / Application Domain.
Use technology and information resources to research issues in
security strategy and policy formation.
Write clearly and concisely about topics related to information
technology audit and control using proper writing mechanics
and technical style conventions