Appropriate Standards Please respond to the following a Sele

\"Appropriate Standards\" Please respond to the following:

(a) Select an organization with which you are familiar. Identify the compliance laws that you believe would be most relevant to this organization. Justify your response.

(b) Define the scope of an IT compliance audit that would verify whether or not this organization is in compliance with the laws you identified.

Please no Plagiarism or copy and pasting from the internet.

Solution

(a) An organisation with which I am most familiar is INFOSYS Limited . The complaince laws which are most relevant to Infosys would be regulation in the public interest,economic regulation, and environmental regulation as Infosys is India based company so it need to fulfill all the mentioned laws so as to be fully compliant.

An organisation need to follow compliance laws so as to follow the rules governed by the country . It leads to integrity of Data and thus would make the organisation safe . Following compliant will help the organisation grow in beeter way with respect to the country growth and prosperity.

(b) Basically compliance audit is a comprehensive review of an organization\'s follow up with rules and law. Independent accounting, security or IT consultants evaluate the strength and toughness of compliance preparations so as to make sure the organisation is following rules perfectly.

IT compliance audit is necessary in lot of ways :-

The primary functions of an IT audit are to evaluate the systems that are in an organization\'s information. Specifically, information technology audits are used to check the organization\'s ability and strength to protect its information,assets and to properly show information to authorized parties. The IT audit aims to evaluate the following:

What type of security they will enforce on there system assets, what will be suitable time for the usage of their systems, what type of information and when it should be showed to authorized users (for system confidentiality), which type of information provided by the system will be always be accurate, timely, and reliable.And finally IT Audit tries to establish methods of minimizing infomation leak risks.