Control Structures: Auditing

Information Assurance audit plans involve planning and a structured approach. The Information Assurance audit plan will identify the most meaningful areas, events, and activities within an organization, critical to firm performance, to be audited.

Case Assignment

read the articles listed as required in the Background page about the auditing process.

When you've read the required articles and conducted additional research on the optional readings and other readings you find interesting, compose a 4- to 5-page (not counting the references)

Discuss how to conduct an Information Assurance Audit using the Cobit framework, demonstrating how COBIT is used in the audit. In this case context, you are a consultant and you have been asked to develop the information security incident response plan for the Raising Dough Baking Company (fictitious company), a statewide business that employees over three hundred people. Raising Dough collects online orders from homes and small businesses and delivers its products via a company-owned fleet of trucks (think Amazon on a small scale).

The company does not currently have a security incident response plan. Discuss how to develop such a plan using the principles of Cobit. Explain how this process will be audited. Show how your Incident Response Plan and Audit Plan map to the principles of Cobit.

Background Info:

Acronis Global Cybersummit 2019 Keynote Eric O’Neill
https://www.youtube.com/watch?v=6Oh9HvUTeps

Moeller, R. R. (2013). Executive’s guide to IT governance: Improving system processes with service management, COBIT and ITIL. John Wiley & Sons, ISBN:9781118138618, Cht 1 – 8, bookid=52724. Available in the Trident Online Library.

COBIT 2019 use cases: Tailoring governance of your enterprise IT
https://www.youtube.com/watch?v=aMb7XTsSe9I

Webinar – Cobit 2019 Use Cases: Tailoring Governance of Your Enterprise IT.https://www.youtube.com/watch?v=aMb7XTsSe9I

When you've read the required articles and conducted additional research on the optional readings and other readings you find interesting, compose a 4- to 5-page (not counting the cover and references) paper on the topic:

Discuss how to conduct an Information Assurance Audit using the Cobit framework, demonstrating how COBIT is used in the audit. In this case context, you are a consultant and you have been asked to develop the information security incident response plan for the Raising Dough Baking Company (fictitious company), a statewide business that employees over three hundred people. Raising Dough collects online orders from homes and small businesses and delivers its products via a company-owned fleet of trucks (think Amazon on a small scale).

The company does not currently have a security incident response plan. Discuss how to develop such a plan using the principles of Cobit. Explain how this process will be audited. Show how your Incident Response Plan and Audit Plan map to the principles of Cobit.