Managing An IT Infrastructure Audit Computer Science Homework Help

This assignment consists of four (4) sections: an internal IT auditpolicy, a management plan, a project plan, and a disaster recovery plan.You must submit all four (4) sections as separate files for the completion of this assignment.Label each file name according to the section of the assignment it iswritten for. Additionally, you may create and /or assume all necessaryassumptions needed for the completion of this assignment.

Imagine you are an Information Security Manager for a large nationalretailer. You have been hired to be directly responsible for theplanning and oversight of IT audits. At the request of the Board ofDirectors, the CEO has tasked you with developing a plan for conductingregular audits of the IT infrastructure. The planning and managementaspects of IT audit are critical to the overall success of the audit,and as a result, the overall success of the systems implemented withinthe organization. You must develop a policy for conducting IT audits anddevelop a project plan for conducting two week IT audits.
Inaddition to the typical networking and Internetworking infrastructure ofa medium-sized organization, the organization has the followingcharacteristics:

  • They have a main office and 268 stores in the U.S.
  • They utilize a cloud computing environment for storage and applications.
  • TheirIT infrastructure includes Cisco workgroup and core switches, Ciscorouters, Cisco firewalls and intrusion prevention systems, and serversrunning Microsoft Windows Server 2012.
  • They have over 1000 desktops and approximately 500 organization-owned laptops in the main headquarters.
  • Theyallow employees to bring their own devices into the organization;however, they are subject to being searched upon entry and exit from thebuilding.
  • They enable remote access to corporate informationassets for employees and limited access to extranet resources forcontractors and other business partners.
  • They enable wireless access at the main office and the stores.
  • They process an average of 67.2 credit card transactions per hour every day at each location and via their corporate Website.

Section 1: Internal IT Audit Policy
Write a three to four (3-4) page paper in which you:

1.  Develop an Internal IT Audit Policy, which includes at a minimum:

a.  Overview
b.  Scope
c.  Goals and objectives
d.  Compliance with applicable laws and regulations
e.  Management oversight and responsibility
f.  Areas covered in the IT audits
g.  Frequency of the audits
h.  Use at least two (2) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Section 2: Management Plan
Write a four to six (4-6) page paper in which you:

2.  Explain the management plan for conducting IT audits, including:

a.  Risk management
b.  System Software and Applications
c.  Wireless Networking
d.  Cloud Computing
e.  Virtualization
f.  Cybersecurity and Privacy
g.  BCP and DRP
h.  Network Security
i.  Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Section 3: Project Plan
Use Microsoft Project or an Open Source alternative, such as Open Project to:

3. Develop a project plan which includes the applicable tasks for each ofthe major areas listed below for each element of the IT audit mentionedabove; plan for the audit to be a two (2) week audit.

a.  Risk management
b.  System software and applications
c.  Wireless networking
d.  Cloud computing
e.  Virtualization
f.  Cybersecurity and privacy
g.  Network security

Section 4: Disaster Recovery Plan
Write a five to seven (5-7) page paper in which you:

4.  Develop a disaster recovery plan (DRP) for recovering from a major incident or disaster affecting the organization.

a.  The organization must have no data loss.
b.  The organization must have immediate access to organizational data in the event of a disaster.
c.  The organization must have critical systems operational within 48 hours.
d.  Include within the DRP the audit activities needed to ensurethat the organization has an effective DRP and will be able to meet therequirements stated above.
e.  Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

  • Betyped, double spaced, using Times New Roman font (size 12), withone-inch margins on all sides; citations and references must follow APAor school-specific format. Check with your professor for any additionalinstructions.
  • Include a cover page containing the title of theassignment, the student’s name, the professor’s name, the course title,and the date. The cover page and the reference page are not included inthe required assignment page length.

The specific course learning outcomes associated with this assignment are:

  • Describe the Sarbanes-Oxley (SOX) act and Committee of Sponsoring Organizations (COSO) framework.
  • Describe the process of performing effective information technology audits and general controls.
  • Describethe various general controls and audit approaches for software andarchitecture to include operating systems, telecommunication networks,cloud computing, service-oriented architecture and virtualization.
  • Explain the role of cybersecurity privacy controls in the review of system processes.
  • Discuss and develop strategies that detect and prevent fraudulent business practices.
  • Describe and create an information technology disaster recovery plan.
  • Develop an audit plan and control framework that addresses and solves a proposed business problem.
  • Use technology and information resources to research issues in information technology audit and control.
  • Writeclearly and concisely about topics related to information technologyaudit and control using proper writing mechanics and technical styleconventions.

No matter what kind of paper writing service you need, we’ll get it written. Place Your Order Now!
× How can I help you?