In: Accounting
THESE ARE MY IT AUDIT QUESTIONS CAN YOU SOLVE THEM IN DETAILS PLEASE...
1. Mr. John Doe is an IT auditor who works for DUMMY Auditing firm. JANE BANK is a financial company. Mr. Doe audits JANE BANK’s IT system. What type of audit does Mr. Doe conduct? Why?
2. During an IT audit, auditor audits a series of “CONTROLS” and wants to be sure that controls are in place and effectively implemented. Assume that, as an auditor, you are auditing the media transportation, storage, reuse and disposal. Company makes backups using backup tapes. Forthe backup activity, list and briefly explain three issues you can address in your audit.
3. In a typical IT risk calculation we multiply the value of threat probability by value of impact. For the data center of Kadir Has University, take one possible threat of your choice and the associated impact. Estimate the information security risk.
1. Mr. Joe is conducting an Internal audit of Jane Bank. The objective of such audit is as follows:
2. Three issues which can be addressed in the backup activity are as follows:
a. Whether back-ups are taken and tested regularly in accordance with the agreed backup policy.
b. Whether all essential information can be recovered following a disaster or media failure.
c. Whether the backup tapes include operating system, applications, database and support files required for a full system restoration.
3. Need more inputs to answer this question.