Limited Time OfferFLAT 20% off & $20 bonus sign up. Order Now
Save Time and Improve Grade - Get Professional Help Now!
New! Hire Essay Assignment Writer Online and Get Flat 20% Discount!!Order Now
ACCG3058
AU
Macquarie University
Many organisations have recently suffered from data breaches that resulted in exposure of confidential customer data. A breach of such sensitive data hurts the organisation’s reputation and causes significant financial losses.
In this assignment, you will write a report on a data breach that took place no more than 5 years ago. Your report should reference articles on the data breach incident in addition to other reliable sources.
Your role is an IS auditor. Therefore, your report should highlight the main risks that should be addressed by the management of the organisation and the controls that would have mitigated the risks.
The report should include the following:
1) Executive Summary You will need to prepare an executive summary document to the Board of Directors.
2) Background to the Case Provide the background to the organisation’s business and technology environment. This is to demonstrate your understanding of the organisation’s business and IS environment.
3) Problem Identification Identify how the breach occurred, the stakeholders and the impact to the organisation
4) Audit Approach and Potential Solution This section explains the role of the auditor in auditing the data breach. It contains the following subsections:
I. IS Risks Identify IS risks from the data breach in the case study, including analysing the likelihood, level of risks and implications to the business.
II. Audit Plan, Objectives and Procedures ACCG3058 Information Systems Audit and Assurance Department of Accounting and Corporate Governance Prepared by Dr. Savanid Vatanasakdakul for ACCG358 Adapted by Dr. Bazara Barry 2 Prepare an audit plan outlining the areas that you propose to audit. In addition, you will need to include audit objectives and audit procedures for each of the area(s) that you plan to audit.
III. Audit Questions and Documents For each of the audit objectives, provide at least three examples of interview questions that you will use to gather evidence from the organisation, including naming relevant documents that you may want to obtain for the audit.
IV. Control Recommendations Provide a set of recommendations of control mechanism(s) to mitigate for each of the IS risks. Identify the benefits of your recommendations to the organisation.
15,000+ happy customers and counting!