Kapalı

IT Auditing -- 4

Hi,

Our company is currently seeking and outsourcing option for our IT audit mission. In order to select the best candidate for this role, I would like to welcome the bid around the world.

In your reply (bid), please identify the issue, the risk and the recommended approach to be taken for the following two scenarios. We would like to lower the company's risk posture (by doing this audit might be improving company's risk posture or to bring a distraction to the IT and Business / Security system). How do you manage the below two common scenarios as it is usually seen between auditors and auditees. How do you minimize the impact of the company.

Make sure you Identify the " issue, the risk and the recommended approach " to be taken.

Scenario 1: Cloud vs. On Premises Workloads Audit requirement: Security & Privacy protection and controls

¦ Risk factors: Misuse of sensitive data, legal liability and/or reputation damage, and noncompliance with regulatory requirements.

¦ Challenges:

? Industry Trends;

? Cost;

? Perception vs. Reality; and

? Corporate Change Management.

¦ Recommended approach: (Please provide)

Scenario 2: Standardize Mission-Critical Controls Audit requirement: During a mandated regulatory review, the auditor finds that the IT organization has not fully implemented procedures to enforce standardized system development and change management controls for its mission-critical systems (throughout the life cycle — development, testing, preproduction and production).

¦ Risk factors: If change tracking and change control processes are not implemented and enforced throughout the system development life cycle, changes could be made that inadvertently create a risk of exposure, allowing access to business-critical data or customer data.

¦ Challenges: The auditor's request may seem unreasonable because, for some organizations, changes to applications can occur monthly and for others, weekly, daily or even hourly. The types of changes can vary from simple to complex functional changes that affect multiple systems. Tracking this level of detail without a mature process and automation can be resource- and time-consuming, and can adversely affect performance.

¦ Recommended approach: (Please provide)

The best reply will be selected as the candidate.

Thanks

Anna

Beceriler: Yönetim, Proje Yönetimi, Web Güvenliği

Daha fazlasını görün: importance of information system audit, types of it audits, information system audit pdf, information technology audit objectives, objectives of information system audit, what is information system audit, it audit pdf, information system audit process, IT auditing, write it now 4 review, is it possible to transfer a website host if you dont own the domain, control flow analysis in software testing, need various it help around the office hourly mostly tech projects also project management for outsourcing web stuff, need various it help around the office - hourly - mostly tech projects also project management for outsourcing web stuff, control mouse webcam eye tracking

İşveren Hakkında:
( 0 değerlendirme ) Russian Federation

Proje NO: #15624332

9 freelancer bu iş için ortalamada 386$ teklif veriyor

in 10 gün içinde250$ USD
(28 Değerlendirme)
5.0
1 gün içinde 250$ USD
(30 Değerlendirme)
5.1
in 4 gün içinde250$ USD
(24 Değerlendirme)
4.9
hinahanif15

Greetings,  I am BS-CS graduate having majors in Software Engineering. I have knowledge of IT and its application thus can write excellent report fulfilling the requirements of this report. All work will be done on t Daha fazlası

in 3 gün içinde388$ USD
(6 Değerlendirme)
3.4
in 10 gün içinde250$ USD
(1 Değerlendirme)
2.9
arslanu2

I would like to have a relationship with you regarding this project. Would you like to contact back?

in 15 gün içinde750$ USD
(1 Değerlendirme)
1.2
practice52

i am CISA certified (OCT 2016) Systems Auditor with over 15 years ERP-SCM software solutions project Management experience Worked EXTENSIVELLY ON ERP IMPLEMENTATIONS ERP SECURITY AUDIT FOR BOTH CLOUD AND ON PREMISE SO Daha fazlası

in 10 gün içinde444$ USD
(0 Değerlendirme)
0.0
mkhurramrkhan

I am a seasoned IT Security Auditor with CISA CISM CISSP ITIL SABSA GICSP Certifications. Have done many audits in last 15 years of my career for all industry verticals Relevant Skills and Experience CISA CISM CISSP I Daha fazlası

in 10 gün içinde555$ USD
(0 Değerlendirme)
0.0
engrfarhanali

10 years of IT Audit and IT Risk Assurance experience with Big-4 firm and covered various clients of Telecom, Banking, Oil&Gas and many others. Rich IT Audit methodology concepts & standards. Relevant Skills and Expe Daha fazlası

in 12 gün içinde333$ USD
(0 Değerlendirme)
0.0