MGHB02H3 Study Guide - Disaster Recovery Plan, Cengage Learning, Database Administrator

This chapter presents risks, controls and test of controls related to it governance. Understand the risks of incompatible functions and how to structure the it function. Be familiar with the controls and precautions required to ensure the security of an organization"s computer facilities. Understand the key elements of a disaster recovery plan. Be familiar with the bene ts, risks, and audit issues related to it outsourcing. Overview: key objectives of it governance are to reduce risk and ensure that investments in it resources add value to the corporation. Modern it governance, however, follows the philosophy that all corporate stakeholders be active participants in key it decisions. Such broad-based involvement reduces risk and increases the likelihood that it decisions will be in compliance with user needs, corporate policies, strategic initiatives, and internal control requirements under sox. 37: organizational structure of the it function, computer center operations, disaster recovery planning.