IT Audit Policy and Plans

IT Audit Policy and Plans

Order 100% Plagiarism Free Essay Now

As a staff member supporting the CISO, you have been asked to research
this issue (auditing IT security policy compliance) and then prepare an
“approval draft” for a compliance policy. You must also research and
draft two separate audit plans (a) employee compliance and (b) policy
system audit. The audit policy should not exceed two typed pages in
length so you will need to be concise in your writing and only include
the most important elements for the policy. Make sure that you include a
requirement for an assessment report to be provided to company
management and the corporate board of directors.
• For the employee compliance assessment, you must use an interview
strategy which includes 10 or more multiple choice questions that can be
used to construct a web-based survey of all employees. The questions
should be split between (a) awareness of key policies and (b) awareness
of personal responsibilities in regards to compliance.
• For the policy system audit, you should use a documentation assessment
strategy which reviews the contents of the individual policies to
determine when the policy was last updated, who “owns” the policy, who
reviewed the policy, and who approved the policy for implementation.

 

IT Audit Policy and Plans

Order 100% Plagiarism Free Essay Now

As a staff member supporting the CISO, you have been asked to research
this issue (auditing IT security policy compliance) and then prepare an
“approval draft” for a compliance policy. You must also research and
draft two separate audit plans (a) employee compliance and (b) policy
system audit. The audit policy should not exceed two typed pages in
length so you will need to be concise in your writing and only include
the most important elements for the policy. Make sure that you include a
requirement for an assessment report to be provided to company
management and the corporate board of directors.
• For the employee compliance assessment, you must use an interview
strategy which includes 10 or more multiple choice questions that can be
used to construct a web-based survey of all employees. The questions
should be split between (a) awareness of key policies and (b) awareness
of personal responsibilities in regards to compliance.
• For the policy system audit, you should use a documentation assessment
strategy which reviews the contents of the individual policies to
determine when the policy was last updated, who “owns” the policy, who
reviewed the policy, and who approved the policy for implementation.

IT Audit Policy and Plans

Order 100% Plagiarism Free Essay Now

Get a 20 % discount on an
order above $ 120
Use the following coupon code :
today2015

error: Content is protected !!