You are part of a team selected by the Chief Information Officer (CIO) to perform a security audit for one of the companies explored in this course:
Vampire Legends (Wk 1)
Cruisin’ Fusion (Wks 2–3)
Devil’s Canyon (Wks 4–5)
Create a 10- to 12-slide presentation (not including the title and reference slides) that shows the results of your security audit based on the following audit process:
Potential Risk to be Reviewed: Describe the risk.
Example: Viruses and malware can negatively impact the confidentiality, integrity, and availability of organizational data.
Regulation and Compliance Issues: Analyze how regulations and compliance issues could impact the organization.
Provide a detailed analysis of regulations and compliance issues, beyond the simple explanation in score point two.
Regulation and Compliance Resources and Tools: Analyze what resources and/or tools are available to address regulations and compliance issues.
Describe the control objective and the specific controls you will evaluate to determine potential risk is mitigated. Please note that typically, there will be more than one control that should be reviewed for a potential risk.
Example: Determine whether anti-virus software is in use.
Example: Determine whether virus signatures are periodically updated.
Example: Determine whether periodic virus scans are performed.
Provide a detailed analysis of the resources and/or tools available, beyond the simple explanation in score point two.