- Presents a practical approach to assessing security, performance and business continuity needs of the enterprise
- Helps readers understand common objectives for audit, compliance, internal/external audit and assurance.
- Demonstrates how to build a customized controls framework that fulfills common audit criteria, business resilience needs and internal monitoring for effectiveness of controls
- Presents an Integrated Audit approach to fulfill all compliance requirements
This book illustrates the importance of business impact analysis, which covers risk assessment, and moves towards better understanding of the business environment, industry specific compliance, legal and regulatory landscape and the need for business continuity. The book provides charts, checklists and flow diagrams that give the roadmap to collect, collate and analyze data, and give enterprise management the entire mapping for controls that comprehensively covers all compliance that the enterprise is subject to have. The book helps professionals build a control framework tailored for an enterprise that covers best practices and relevant standards applicable to the enterprise.
Table of Contents
Understanding Organizational Context. Performing a Business Impact Analysis. BIA Reporting and Commitment of Resources. Risk Assessment and Reporting. Strategic Planning, Internal Control Structure, Management Oversight, and Reporting Tools. Information Technology All Pervasive to the Enterprise. Alignment of IT with Business Requirement. Comparative Analysis of Requirements for Common Standards and Compliances. Appendix: Templates, Questionnaires, Business Impact Analysis and Risk Analysis Forms.