Buka

IT Auditing

Hi,

Our company is currently seeking and outsourcing option for our IT audit mission. In order to select the best candidate for this role, I would like to welcome the bid around the world.

In your reply (bid), please identify the issue, the risk and the recommended approach to be taken for the following two scenarios. We would like to lower the company's risk posture (by doing this audit might be improving company's risk posture or to bring a distraction to the IT and Business / Security system). How do you manage the below two common scenarios as it is usually seen between auditors and auditees. How do you minimize the impact of the company.

Make sure you Identify the " issue, the risk and the recommended approach " to be taken.

Scenario 1: Cloud vs. On Premises Workloads Audit requirement: Security & Privacy protection and controls

¦ Risk factors: Misuse of sensitive data, legal liability and/or reputation damage, and noncompliance with regulatory requirements.

¦ Challenges:

? Industry Trends;

? Cost;

? Perception vs. Reality; and

? Corporate Change Management.

¦ Recommended approach: (Please provide)

Scenario 2: Standardize Mission-Critical Controls Audit requirement: During a mandated regulatory review, the auditor finds that the IT organization has not fully implemented procedures to enforce standardized system development and change management controls for its mission-critical systems (throughout the life cycle — development, testing, preproduction and production).

¦ Risk factors: If change tracking and change control processes are not implemented and enforced throughout the system development life cycle, changes could be made that inadvertently create a risk of exposure, allowing access to business-critical data or customer data.

¦ Challenges: The auditor's request may seem unreasonable because, for some organizations, changes to applications can occur monthly and for others, weekly, daily or even hourly. The types of changes can vary from simple to complex functional changes that affect multiple systems. Tracking this level of detail without a mature process and automation can be resource- and time-consuming, and can adversely affect performance.

¦ Recommended approach: (Please provide)

The best reply will be selected as the candidate.

Thanks

Anna

Kemahiran: Pengurusan, Pengurusan Projek, Sekuriti Web

Lihat lebih lanjut: IT auditing, i need an accountant or a auditor to help me my accounting written report about auditing as internal control and reporting, control flow analysis in software testing, is it possible to get a job if you studied mechanical engineering when you had n4 from college, document control tracking access, infection control tracking microsoft access, quality control production presentation ppt, production stock control spreadsheet, production control software, antenna tracking control uav, production tracking system linux, rem profile control keys sap production planning, excel production tracking, free production tracking database, stock control production spreadsheet

Tentang Majikan:
( 0 ulasan ) Russian Federation

ID Projek: #15618682

5 pekerja bebas membida secara purata $608 untuk pekerjaan ini

juhiravikant

Hi, I am certified ISO 27001:2013 lead auditor. Please go through below project: [url removed, login to view] Please ping me for further discussion Relevant Skills and Lagi

$777 USD dalam 10 hari
(37 Ulasan)
5.5
$555 USD dalam 10 hari
(3 Ulasan)
3.3
d1mf13

Hello, you described the situation in great detail. I understand that you are doing prediction of damage and security costs. Right now I can not give an answer to all the task Relevant Skills and Experience Linux Serv Lagi

$600 USD dalam 10 hari
(1 Ulasan)
0.8
sprakriti

hey Anna, I offer services in Research and Academic Writing. I have been offering my services for more than 3 years in the areas of Research and Academic writing. I have done numbers of assignments for UK, Australia Lagi

$666 USD dalam 7 hari
(1 Ulasan)
0.6
anilveerakumar

Hi, I have over 7 years of Information Security and working as Information Security Auditor.. My recommendation is as below for each of the scenarios. Kindly review and provide me this opportunity. Relevant Skills and Lagi

$444 USD dalam 10 hari
(0 Ulasan)
0.0