Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
10 Cards in this Set
- Front
- Back
|
What do Audit Frameworks provide?
|
They assist in the design of a security program, as they define the necessary controls to provide secure information systems.
|
|
|
What was COSO formed for?
|
to deal with fraudulent financial reporting and disclosure
|
|
|
List the COSO framework
|
(1)control environment
(2)risk assessment (3)control activities (4)information & communication (5)monitoring |
|
|
What compliance regime can COSO assist with?
|
Sarbanes-Oxley
|
|
|
Explain ITIL
|
UK's IT Infrastructure Library
34 book set HMSO 1989-92 To improve IT service management |
|
|
What is COBIT and what does it consist of?
|
Control Objectives for Information & related Technology - 34 high level processes defining aspects such as Strategic Plan, information architecture & configuration management.
|
|
|
What 4 domains are defined by COBIT?
|
Governance
Planning & Organisation Acquisition & Implementation Delivery & Support Monitoring |
|
|
What can the standards ISO 17799/BS 7799 be used for?
|
A basis for developing security standards and security management practices within an organisation
|
|
|
ISO/IEC 17799:2005 contains 134 detailed information security controls based upon what 11 areas?
|
IS Policy; Organising IS; Asset management; HR Security; Physical & Environment security; Cooms & Ops management; Access control; information systems acquisition, development & maintenance; IS incident management; Business Continuity management; Compliance
|
|
|
27002 CoP will replace?
|
ISO/IEC 17799:2005
IT - Security Techniques |
