Discussion Post: Information Security Compliance Audit- Standards & Frameworks
a) What advice does the FBI provide in protecting against computer fraud? Do you feel that the Government is doing a sufficient job in this area?
b) Define COBIT and it's control objective. Do you feel the framework is detailed enough to serve your organization? Why or why not?
c) What are the components of a good policy framework? Provide an example of each of these components.
d) What is the Deming cycle approach? How does this approach help improve quality?
e) Why is it important for IT Auditors to know about the legal environment of information systems?
The response must include a reference list. Using Times New Roman 12 pnt font, double-space, one-inch margins, and APA style of writing and citations.