LibGuides: TIM-6370 v1: Week 4 Resources

Week 4 Resources

Information technology control and audit

Otero, A. R. (2019). Information technology control and audit (5th ed.). CRC Press.

Read Chapter 3.

This chapter covers the basics of the IT audit process. The chapter explains control objectives and risk assessment; and it describes an audit plan. These topics help to learn the basics of the audit process which will be useful not only during this week but later in the course when you create your audit matrix.

The Redshelf book link is located in the Getting Started module of your course. Click on the link there to access your book.

Auditing IT Infrastructures for Compliance

Weiss, M., & Solomon, M. G. (2016). Auditing IT infrastructures for compliance (2nd ed.). Jones & Bartlett Learning.

Read Chapter 14.

As with the previous week’s readings, Chapter 14 continues the discussion with compliance requirements but the focus for this week is on the system/application domain. The chapter, as with the previous week, are important to ensure adherence to policies and guidelines.

The Redshelf book link is located in the Getting Started module of your course. Click on the link there to access your book.

3-step plan to protect your practice against hackers
Nobles, S. (2019). 3-step plan to protect your practice against hackers. Medical Economics, 96(22), 28-29.
This reference gives some useful insights into cybersecurity attacks and some issues that the attacks cause. Understanding the attacks and how to prevent, or implement some network controls, are important to not only design but the audit process.
An access control model for preventing virtual machine hopping attack
Dong, Y., & Zhou, L. (2019). An access control model for preventing virtual machine hopping attack. Future Internet, 11(3).
This reference explores the rapid development of Internet, the traditional computing environment is making a big migration to the cloud-computing environment. However, cloud computing introduces a set of new security problems and this article explores those issues.
Blockchain's roles in strengthening cybersecurity and protecting privacy
Kshetri, N. (2017). Blockchain's roles in strengthening cybersecurity and protecting privacy. Telecommunications Policy, 41(10), 1027.
This paper evaluates blockchain's roles in strengthening cybersecurity and protecting privacy. Since most of the data is currently stored in cloud data centers, it also compares how blockchain performs vis-vis the cloud in various aspects of security and privacy. Knowing these issues will help to implement the appropriate network controls and ensure the audit process reviews them.

Week 4 Assignment Template
Use this template to complete your week 4 assignment./b>

<< Previous: Week 3 Resources
Next: Week 5 Resources >>