Abstract
Auditing aims to provide a well-informed assurance over information security efforts. The present work tries to understand the role of auditing from an Information Security perspective by reviewing three Information Security Governance Frameworks. An initial view of auditing from various literature is first constructed to understand the expected purpose of Auditing. This initial understanding then guides the assessment of frameworks. The frameworks are also evaluated based on the aspects of governance they address, the organizational structures they suggest and how well the audit process is integrated within the whole ISG framework. Finally, conclusions are drawn about the relative merits and demerits of the frameworks and how well they address the requirements of auditing.
Keywords
Information Security Governance, Auditing, Performance Measurement
Introduction
Information Security deals with the Confidentiality, Integrity and Availability of organizational data to facilitate business decisions. Information Security breaches inflict significant monetary and reputational damage to organizations. Thus, ensuring business information security becomes a matter of great importance at the board level. Therefore organizations must view Information security from a governance perspective.
Information security research was initially focused on technical aspects of security such as secure
- Decent Essays
Database Modeling, System Design, And Improve Performance
- 2027 Words
- 9 Pages
vulnerabilities in security that need to be planned for and mitigated wherever possible. A DBMS is responsible for designing the methods in which data recovery and security is handled, while tools are used within database modeling that facilitate modeling, system design, and improve performance (Elmasri & Navathe, 2016). When applying these tools to database creation, security should always be considered in each step of modeling and creating the database. The DBMS provides a security and authorization
- 2027 Words
- 9 Pages
Decent Essays - Decent Essays
Security Administration, Inc.
- 1359 Words
- 6 Pages
Kaplan University IT286 Unit 9 Jennifer Polisano To: Mr. Ross, CISCO Web Site 101 West Branch, IN 55545 From: XXX Security Consulting, Inc. Mr. Ross, As we discussed previously, this document includes our recommendations for just a few of the security policies that would be useful for your organization. These recommendations are written in a form that will be approved by you and your management and are intended to demonstrate what is needed, not how the policies will be implemented
- 1359 Words
- 6 Pages
Decent Essays - Better Essays
Microsoft Built Security From The Bottom Up Sql Server
- 1610 Words
- 7 Pages
Microsoft built security from the bottom up in SQL Server 2005 and has aged in database security in each new version ever snice. SQL Server 2012 continues the trend with cool new features, like new server level roles, new algorithms, and new permissions. It also adds databases that are contained, which allow the end users to connect to the database without providing permission at the server level. This is an excellent idea to solve problems when you move to databases, but it sounds terrifying from a security
- 1610 Words
- 7 Pages
Better Essays - Better Essays
Recommendation For Current It Security Policy
- 794 Words
- 4 Pages
Recommendation to Current IT Security Policy The systems approach to problem solving is used to analyze and identify mediatory provisions, see figure 2, Appendix D, Systems Approach to Problem Solving. Loss suffered in the Societe Generale Bank security breach was substantial because the perpetrator knew where to look to acquire access to financial information and circumvent existing security measures. This defined fraudulent behavior and solidified criteria for productive countermeasures. Prevention
- 794 Words
- 4 Pages
Better Essays - Better Essays
Database Security
- 7079 Words
- 29 Pages
Journal of Information Technology Education: Innovations in Practice Volume 9, 2010 Database Security: What Students Need to Know Meg Coffin Murray Kennesaw State University, Kennesaw, GA, USA mcmurray@kennesaw.edu Executive Summary Database security is a growing concern evidenced by an increase in the number of reported incidents of loss of or unauthorized exposure to sensitive data. As the amount of data collected, retained and shared electronically expands, so does the need to understand
- 7079 Words
- 29 Pages
Better Essays - Better Essays
Public Auditing Cloud Computing For Privacy Preserving Essay
- 1741 Words
- 7 Pages
Public Auditing in Cloud Computing for Privacy Preserving Babita Baghat (Computer Engineering) Dhanashri Patil (Computer Engineering) Abstract - Cloud Computing is huge computing, it is the internet based computing, where all users can remotely store their data into the cloud so as to enjoy the latest and high quality applications and services. In outsourcing data, users can be relieved from the burden of local maintenance and data storage .Thus, enabling public auditability for cloud data storage
- 1741 Words
- 7 Pages
Better Essays - Satisfactory Essays
Database Security
- 663 Words
- 3 Pages
CSS330-1501A-01 Database Security Individual Project 3 Instructor: Anita Arceneaux 1/26/2015 Table of Contents Database Security Architecture………………………………………………………………………………………………………3-4 User Account Security………………………………………………………………………………………………………………..……5-6 Database Vulnerabilities……………………………………………………………………………………………………………………5 Auditing Techniques………………………………………………………………………………………………………………………….6 Auditing Policies………………………………………………………………………………………………………………………………..7 Week 1 Database Security Architecture
- 663 Words
- 3 Pages
Satisfactory Essays - Better Essays
Run time Public Auditing in Cloud Computing Using Protocol Blocker for Privacy Babita Baghat (Computer Engineering) Dhanashri Patil (Computer Engineering) Abstract - Cloud Computing is huge computing, it is the internet based computing, where all users can remotely store their data into the cloud so as to enjoy the latest and high quality applications and services. In outsourcing data , users can be relieved from the burden of local maintenance and data storage .Thus, enabling public auditability
- 1775 Words
- 8 Pages
Better Essays - Better Essays
Sample Resume : Computer Science & Technology
- 2359 Words
- 10 Pages
BUFFALO 2 IT auditing 2 Information Assurance 3 Digital Forensics 5 Internship at MetLife 6 IT audit intern role 8 Conclusion 10 INTRODUCTION I have decided to take up my internship in IT audit to leverage my knowledge that I gained from my Master’s program and my three years of experience in IT industry. I would like to establish the various factors that have led me to choose my career as an IT audit and the courses that helped me to gain knowledge. I did my bachelors in Information Science &
- 2359 Words
- 10 Pages
Better Essays - Better Essays
Sarbanes Oxley And Fraud Research Paper
- 2287 Words
- 10 Pages
is the primary regulator of markets and securities under the federal government; moreover, the S.E.C. aims to promulgate an efficient and fair market. Since its debut, the S.E.C. has administered similar laws normalizing and protecting individuals and companies. The S.E.C. also mandates that the
- 2287 Words
- 10 Pages
Better Essays