Question

In: Computer Science

Case- IT Auditing The SSO Server is a single purpose server solely designed for SSO and...

Case- IT Auditing

The SSO Server is a single purpose server solely designed for SSO and resides in the internal network. Using a batch process, the vendor provides quarterly updates which are downloaded directly to the server and automatically installed by the server’s single purpose operating system. Access to the SSO application is restricted to the security administration staff. The vendor maintains an active account on the server in the event maintenance is required. The vendor accesses the system periodically to review status and log activity to determine the server’s capacity and to proactively look for concerns prior to problems arising. A replication copy of the SSO Server exists as a backup and automatically assumes primary role if the main server stops functioning.

Question: What are the Controls and what are the GAPS

Solutions

Expert Solution

The gap analysis is focused on what is missing in the processes compared to a set of requirements while an internal audit is centered on verifying that the process conforms to the requirements .

A control gap occurs when a control does not exist,Control gaps can relate to the design effectiveness of operating effectiveness of the control.

Process gap means an error in one of the steps but the process can still produce some of the planned output.

Internal control by auditing, is a process for assuring of an organization's objectives in operational effectiveness and efficiency, regulations and policies.

Audit Test of controls is a type of audit examination on the internal control of an entity.Quality of financial statements is significantly depending the control over financial reporting.

Internal controls are procedures implemented by a company to ensure the integrity of financial and accounting information, prevent fraud.


Related Solutions

what is the purpose of DHCP server. what is the purpose of DNS server. what command...
what is the purpose of DHCP server. what is the purpose of DNS server. what command do we use to troubleshoot connectivity between Hosts. what command do we use to lookup ip address. what is the purpose of VPN server. what is the purpose of PROXY server. what is the purpose of FIREWALL server.
Case- IT Auditing Windows servers are used for all server types (application, web and database delivery)....
Case- IT Auditing Windows servers are used for all server types (application, web and database delivery). Windows patch updates comply with the change management policy. Windows patches are downloaded to a central patch server. All patches are reviewed and tested prior to deployment to production servers. All approved patches are first deployed to the development servers, then to the test servers and finally to production servers. Although patches occur on Wednesday evening, if a system reboot is required these are...
Will is single and owns the following: House, solely owned, FMV of $3,200,000 Auto, solely owned,...
Will is single and owns the following: House, solely owned, FMV of $3,200,000 Auto, solely owned, FMV of $25,000 Stock Portfolio, solely owned, FMV $6,000,000 Bank account, JTWROS with his daughter, FMV $1.5 Million 401k vested account balance of $3.5 million, with his son being the beneficiary. If Will died today what would be the value of his probate estate? What about the value of his gross estate? Please show your work.
Will is single and owns the following: House, solely owned, FMV of $3,200,000 Auto, solely owned,...
Will is single and owns the following: House, solely owned, FMV of $3,200,000 Auto, solely owned, FMV of $25,000 Stock Portfolio, solely owned, FMV $6,000,000 Bank account, JTWROS with his daughter, FMV $1.5 Million 401k vested account balance of $3.5 million, with his son being the beneficiary If Will's Last Will had called for a $500,000 charitable contrubution to the Red Cross, how much would it have saved the estate in estate taxes?
In the provided client and server code, the server can serve to single client at a...
In the provided client and server code, the server can serve to single client at a time. You have to change server.java code so that it can connect and serve multiple clients at the same time. Use multithreading. =============================================================================== import java.io.*; import java.net.*; public class Client { public static void main(String[] args) throws IOException { String serverHostname = new String ("127.0.0.1"); if (args.length > 0) { //pass the hsotname through cmd argument serverHostname = args[0]; } System.out.println ("Attemping to connect...
What is project auditing? What is the purpose of project auditing? What topics are contained in...
What is project auditing? What is the purpose of project auditing? What topics are contained in a project Audit? When is the best time to administer a project audit?
Explain the purpose and relationships between communications protocols, Server hardware,operating systems and web server software with...
Explain the purpose and relationships between communications protocols, Server hardware,operating systems and web server software with regards to designing, publishing and accessing a website?
Submit a DRAFT of ARCHITECTURAL DESIGN SPECIFICATIONS (designed with the Client-Server Approach).
Submit a DRAFT of ARCHITECTURAL DESIGN SPECIFICATIONS (designed with the Client-Server Approach).
Let's look at the auditing system in Windows Server 2008. What are the characteristics? How do...
Let's look at the auditing system in Windows Server 2008. What are the characteristics? How do you set it up?
Explain how folder and file auditing works within Microsoft Server 2016 and describe why a business...
Explain how folder and file auditing works within Microsoft Server 2016 and describe why a business may want to use it.
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT