IT Governance
As discussed in the email you are required to complete and submit this final exam via blackboard.
I am sure you will use various resources to assist you in this process. What I am asking is that you complete this exam without interacting with your fellow classmates or other outside assistance. Please do not miss the opportunity window to complete this exam. Excuses will not be considered. My phone number is to be used only in a personal or family emergency.
It is NOT to be used for points of clarification as the format follows the format of our class discussion papers.
You are required to answer question No. 1 below and you may choose any two others.
That is you must answer question 1 and you may answer two questions from choices
I wish you all much success!!!!!!!!
1. COBIT is composed of five principles. These five principles are supported by seven enablers.
You are asked to list the five principles and the seven enablers. In addition, in essay form please provide examples of each and how they interact with the resources of an organization. Provide how COBIT is built on sound, accepted IT and general governance management guidance and principles.
2. As discussed in class, cyber risks cannot be avoided, but such risks can be managed through careful design and implementation of appropriate controls.
Please incorporate in your response: Can we manage risk? How can we identify critical information systems? Please provide a checklist of appropriate questions regarding our plan to manage risk and avoid risk.
3. You are asked to provide a rationale for performing a risk analysis. In addition you are asked to identify and discuss categories of risk, and also the types of risk that organizations may encounter. Lastly please present what should be included in a risk report.
4, Data security refers to protective digital privacy measures that are applied to preventunauthorized access to computers, databases and websites.
Data security also protects data from corruption. You are asked to develop a security strategy. You are asked to develop fundamental data security processes providing a discussion of these processes.
5 Our enterprise is in the process of robusting the workforce. As such we will be seeking a training program in IT Governance to include all aspects of information/communication security.
You are tasked to develop this training program that should be limited to 1 hour of initial and a six month recurrent training activity. The training should provide the ability to train the current workforce.
You are asked to provide a narrative overview of the program with objectives defined. In addition you are asked to provide a topical outline of this program.