Question: Question 1 - 16 marks To improve the risk management process, the Committee of Sponsoring Organizations (coso), developed a second control framework called Enterprise Risk
Question 1 - 16 marks To improve the risk management process, the Committee of Sponsoring Organizations (coso), developed a second control framework called Enterprise Risk Management Integrated Framework (ERM) which consists of eight (8) components Required: List and briefly describe the eight (8) components (2 marks each) that make up the ERM framework. (16 marks) Question 2- 10 marks The Control Objectives for Information and Related Technology (COBIT) framework developed by ISACA (Information Systems Audit and Control Association) require adequate controls over Information Technology resources. In addition the Trust Services Framework classifies information systems controls into five (5) categories that most certainly pertain to systems reliability. Required Identify and briefly describe the five (5) categories (2marks each) that contribute to systems reliability. (10 marks) Question 3 - 16 marks To help organizations cost-effectively comply with the several requirements for protecting the privacy of customers' personal information, the American Institute of Certified Public Accountants (AICPA) and the Canadian Institute of Chartered Accountants (CICA) jointly developed a framework called Generally Accepted Privacy Principles (GAPP) Required: Identify and briefly describe any eight (8) out of the ten (10) internationally recognized best practices (2 marks each) that make up this framework under GAPP. (16 marks)
Step by Step Solution
There are 3 Steps involved in it
Get step-by-step solutions from verified subject matter experts
Study Help