HomeForumsCSQA, CSTE Knowledge areasGen. Quality topics

9. Internal Control and Security

Submitted by Satish Duvvur on January 7, 2009 - 7:35pm
Satish Duvvur's picture

Privacy laws and increased accessibility to data have necessitated increased security. Accounting scandals and governmental regulation such as the Sarbanes-Oxley Act have placed increased importance on building and maintaining adequate systems of internal control. The quality assurance function can contribute to meeting those objectives by assuring that IT has adequate processes governing internal control and security. 



Principles and Concepts of Internal Control

·        Internal Control and Security Vocabulary and Concepts

·        Preventive, Detective and Corrective Controls

Risk and Internal Control Models

·        COSO Enterprise Risk Management (ERM) Model

·        COSO Internal Control Framework Model

·        CobiT Model (Control Objectives for Information and related Technology Model)

 Building Internal Controls

·        Perform Risk Assessment

Building Adequate Security

·        Where Vulnerabilities in Security Occur

·        Establishing a Security Baseline

·        Security Awareness Training

·        Security Practices

‹ 10. Outsourcing, COTS and Contracting Quality 8. Metrics and Measurement ›
Tags:

User login

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
1 + 0 =
Solve this simple math problem and enter the result. E.g. for 1+3, enter 4.
To prevent automated spam submissions leave this field empty.

RSS / XML Feeds

Syndicate content
more

Recent comments

Advertise here  |  Contact Us     |  About Us    |  Support / FAQ   |   Member agreement   |   Privacy statement