IT Auditing -- 2


Our company is currently seeking and outsourcing option for our IT audit mission. In order to select the best candidate for this role, I would like to welcome the bid around the world.

In your reply (bid), please identify the issue, the risk and the recommended approach to be taken for the following two scenarios. We would like to lower the company's risk posture (by doing this audit might be improving company's risk posture or to bring a distraction to the IT and Business / Security system). How do you manage the below two common scenarios as it is usually seen between auditors and auditees. How do you minimize the impact of the company.

Make sure you Identify the " issue, the risk and the recommended approach " to be taken.

Scenario 1: Cloud vs. On Premises Workloads Audit requirement: Security & Privacy protection and controls

¦ Risk factors: Misuse of sensitive data, legal liability and/or reputation damage, and noncompliance with regulatory requirements.

¦ Challenges:

? Industry Trends;

? Cost;

? Perception vs. Reality; and

? Corporate Change Management.

¦ Recommended approach: (Please provide)

Scenario 2: Standardize Mission-Critical Controls Audit requirement: During a mandated regulatory review, the auditor finds that the IT organization has not fully implemented procedures to enforce standardized system development and change management controls for its mission-critical systems (throughout the life cycle — development, testing, preproduction and production).

¦ Risk factors: If change tracking and change control processes are not implemented and enforced throughout the system development life cycle, changes could be made that inadvertently create a risk of exposure, allowing access to business-critical data or customer data.

¦ Challenges: The auditor's request may seem unreasonable because, for some organizations, changes to applications can occur monthly and for others, weekly, daily or even hourly. The types of changes can vary from simple to complex functional changes that affect multiple systems. Tracking this level of detail without a mature process and automation can be resource- and time-consuming, and can adversely affect performance.

¦ Recommended approach: (Please provide)

The best reply will be selected as the candidate.



Skills: Management, Project Management, Web Security

See more: IT auditing, Open to colors but would like it to be able to go one color if needed, script is done but the main functionality is not implemented well you so we have to make it correct -- 2, pcaob auditing standard no. 12, significant class of transactions definition, what are the primary outputs of the process for developing auditing standards?, difference between auditing standard 2 and 5, an audit of internal controls is required to be performed annually by a cpa for, auditing standard no. 5, most large corporations typically have a large group of, an audit committee is/does all of the following except:, control flow analysis in software testing, document control tracking access, infection control tracking microsoft access, review plesk control panel, rem profile control keys sap production planning, forensic loan auditing software review, aspnet rating control review website example, money tracking review iphone, link tracking review

About the Employer:
( 0 reviews ) Russian Federation

Project ID: #15621086

7 freelancers are bidding on average $507 for this job


IT Auditing Relevant Skills and Experience I'm a BSc degree holder in computer science. I have worked on more than 1000 papers in report writing, research.I have read and understood your requirement and I know you More

$250 USD in 5 days
(50 Reviews)

IT Auditing Relevant Skills and Experience Management, Project Management, Web Security Proposed Milestones $300 USD - ,

$300 USD in 3 days
(20 Reviews)

project writing on IT auditing Relevant Skills and Experience I hold a Masters in Business administration (finance & economics), Bachelor in Business Information Technology, CFA & ACCA finalist Proposed Milestones $2 More

$250 USD in 1 day
(33 Reviews)
$1000 USD in 10 days
(0 Reviews)

Am a qualified ISO Auditor and have work experience in IT Industry for around 16 yrs. Relevant Skills and Experience ITIL Expert Certified & ISO 27001 Lead Auditor Certified. Proposed Milestones $694 USD - 1 wee More

$694 USD in 10 days
(0 Reviews)

This bid is based on the initial level of understanding of the project. It may change upon scope finalization. Relevant Skills and Experience I have done risk management and IT security auditing work in my previous or More

$500 USD in 10 days
(0 Reviews)

A proposal has not yet been provided

$555 USD in 10 days
(0 Reviews)