Home :: Content

Review IT Controls for ASU's Financial Systems


Quick View
Summary: 

Review current IT Controls for ASU's Financial Systems against industry 'Best Practices'. Identify where we are doing well and where improvements need to be made. We will also create the basic Infrastructure necessary to house related IT Control documents for future reviews.

The five areas of focus for this review are:
• Access Controls
• Change Management
• Disaster Recovery
• Information Security
• Web Vulnerability Scans

Start Date: 
November 2, 2009
End Date: 
December 18, 2009
Current Milestone: 
Gather existing IT Control Documents related to Access Controls, Change Management, and We Vulnerability scans - To be completed by (Nov 6
Stage: 
Proposed - Project Initiation/Intake Assessment
People
Sponsor/Champion: 
Morgan Olsen, Executive Vice President and Chief Financial Officer
Project Manager: 
Steve Knuteson
Contact for more information: 
steven.knuteson@asu.edu
Associate VP University Technology: 
Tina Thorstenson
University Technology Director: 
Shawn Bryan
More Info
Source: 
none
Department: 
UTO
Priority: 
none
Scope: 

This review is limited ASU Financial Application including, Advantage apps, PeopleSoft apps, and MY ASU apps and the following IT disciplines:

• Access Controls
• Change Management
• Disaster Recovery
• Information Security
• Web Vulnerability Scans

All Milestones and Schedule: 

• Gather existing IT Control Documents related to Access Controls, Change Management, and We Vulnerability scans  - To be completed by (Nov 6)

• Interview key personal with roles in Access Controls, Change Management, and Web Vulnerability scans  - To be completed by (Nov 13)

• Document creation for Access Controls, Change Management, and Wed Vulnerability scans  - To be completed by (Nov 23)

• Gather existing IT Control Documents related to Disaster Recovery and Information Security  - To be completed by (Nov 27)

• Interview key personal with roles in Disaster Recovery and Information Security  - To be completed by (Dec 4)

• Document creation for Disaster Recovery and Information Security  - To be completed by (Dec 11)

• Present findings  - To be completed by (Dec 18)

Syndicate content