Planning and Audits
The learning outcome for this unit involves the process of developing an information system (IS) compliance audit plan for an organization. There are many factors involved in this process including examining the requirements, developing a plan, creating documentation and anticipating corrective measures. All these considerations are brought together and addressed in this assignment. Assume you are in charge of an anticipated IT compliance audit for the system/application domain. The chief information officer (CIO) wants to be prepared and asks you to create a plan. Address the following in your plan: Explain the information security systems requirements for securing the system/application domain. Evaluate the controls needed for securing the system/application domain. Develop the compliance requirements for the system/application domain. Describe the general procedures and best practices for system/application domain compliance. Summarize potential corrective measures for audit findings in the system/application domain.