chap13 - ITGovernance The Sarbannes-Oxley act requires...

Info iconThis preview shows pages 1–5. Sign up to view the full content.

View Full Document Right Arrow Icon
1 The Sarbannes-Oxley act requires organizations to select and implement a suitable internal control framework What is suitable? COBIT framework: focus on IT governance IT governance provides the structure that links IT processes, IT resources, and information to enterprise strategies and objectives. IT governance integrates and institutionalizes optimal ways of planning and organizing, acquiring and implementing, delivering and supporting, and monitoring IT performance. Control Objectives for Information and related Technology IT Governance
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
2 Architecture: Multi-user Systems Four common types of IT architecture Three characteristics of architecture Architecture Data Entry Processsing Storage Centralized Central Central Central Centralized with distributed data entry Local Central Central Decentralized Local Local Local Distributed Local/Central Local/Central Local/Central
Background image of page 2
3 Architectures Computer User User Computer User User Computer Computer terminal User User terminal Computer Computer User User Computer Centralized • Separate recording easy to control • Often use batches (no real time) • Vulnerable to downtime Centralized with distributed data entry • Data entered at point of occurrence (real time  updates • Slow processing time when busy • Vulnerable to downtime Decentralized • Responsive to user needs • Less vulnerable to downtime • Harder to share data and control • Compatability? Distributed • Emphasis on communication • Less vulnerable to downtime • Security is a major concern
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Controlling the IT Environment: General Controls Managing the IT Environment General Control Goals Information Systems Planning 1. Develop IS strategy 2. Plan the IT infrastructure 3. Plan the IT function and systems development process Organizing the IT Function 4. Locate the IT function appropriately 5. Segregate incompatible functions 6. Implement personnel controls for hiring, developing and terminating IT professionals Indentifying and Developing IT Solutions 7. Adopt appropriate systems development 8. Implement procedures for program development and testing 9. Ensure adequate documentation
Background image of page 4
Image of page 5
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 01/04/2012 for the course H 531 taught by Professor Dr.johnbutler during the Spring '11 term at Ohio State.

Page1 / 18

chap13 - ITGovernance The Sarbannes-Oxley act requires...

This preview shows document pages 1 - 5. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online