Dissertation Writers: Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
Assessing the Security Controls in Federal Information Systems and Organizations
· Describe the components and basic requirements for creating an audit plan to support business and system considerations.
· Describe the parameters required to conduct and report on IT infrastructure audit for organizational compliance.
Auditing in IT is the monitoring and validation of safeguards that are put in place to protect information. These safeguards are categorized as controls. Controls are sets or groups of safeguards that relate to different areas within IT systems such as the implementation of security features in hardware and software, administrative processes such as written administrative polices and user agreements.
Controls are categorized into families which define the type of control to be complied to and classes. Classes include management, operational and technical.