Scribd Logo
Upload

Welcome to Scribd!

  • PBT & PBT Presentation DFS50113 Security Audit

    Uploaded by

    Hiro Kojie
    10 views3 pages
    This document contains information about a security audit problem-based task for a class. It provides details about the task, including the company being audited, findings from the audit, and questions to be answered. The questions involve constructing an audit checklist using security governance principles and explaining the steps of conducting audit activities. Students are asked to present their findings and answers in a presentation of 1-10 slides and 20 minutes, followed by a 10 minute Q&A session. Rubrics are provided to evaluate students' responses.

    Original Description:

    Original Title

    PBT & PBT Presentation DFS50113 Security Audit (2)

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document contains information about a security audit problem-based task for a class. It provides details about the task, including the company being audited, findings from the audit, and questions to be answered. The questions involve constructing an audit checklist using security governance principles and explaining the steps of conducting audit activities. Students are asked to present their findings and answers in a presentation of 1-10 slides and 20 minutes, followed by a 10 minute Q&A session. Rubrics are provided to evaluate students' responses.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    10 views3 pages

    PBT & PBT Presentation DFS50113 Security Audit

    Uploaded by

    Hiro Kojie
    This document contains information about a security audit problem-based task for a class. It provides details about the task, including the company being audited, findings from the audit, and questions to be answered. The questions involve constructing an audit checklist using security governance principles and explaining the steps of conducting audit activities. Students are asked to present their findings and answers in a presentation of 1-10 slides and 20 minutes, followed by a 10 minute Q&A session. Rubrics are provided to evaluate students' responses.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 3

    NAME

    REGISTRATION NO MARKS
    DATE
    CLASS
    CODE/SUBJECT DFS 50113 SECURITY AUDIT
    ASSESSMENT PROBLEM BASED TASK /100
    PROBLEM BASED TASK PRESENTATION /100
    LECTURER MOHD FAKHRU RAZIE BIN MUKHTAR

    CLO 1 : PERFORM APPROPRIATE TECHNIQUES IN AUDITING WEB AND


    NETWORK USING VARIOUS TOOLS (P4, PLO 3)
    CLO 2 : PRACTICE EFFECTIVE COMMUNICATION WITH PEERS IN CONDUCTIN
    SECURITY AUDIT AND ASSESSTMENT (A2, PLO 4)

    TOPIC : 1.2 DISPLAY SECURITY GOVERNANCE


    1.3 DISPLAY SECURITY ASSESSMENT
    2.6 DISPLAY GUIDANCE ON PREPARING AND CONDUCTING
    AUDIT ACTIVITIES

    DURATION PBT : 12 HOURS


    DURATION PBT PRESENTATION : 30 MINUTES

    INSTRUCTION : ANSWER ALL THE QUESTIONS

    Moclec Berhad is an intermediate size telephone company. There were 5 groups of IT Auditor
    including your group. Your group is form by 2 persons.

    After an audit done, you find:

    a. Some of the information has been changed.


    b. Some data backup are not done frequently.
    c. The data back-up data is stored off-site.
    d. Unassigned employee can freely access the system.
    e. Default setting is configured to firewalls.

    1. Determine and construct an audit checklist by using the suitable security governance. Answer
    the question by referring to the rubric given (CLO1, P4)
    2. Explain steps of conducting audit activities based on above statement given.
    Answer the question by referring to the rubric given. (CLO1, P2) (100 marks)
    3. Present your findings in question 1 and 2.

    Slide requirement : 1-10 slide only


    Presentation duration : 20 minutes
    Q&A session : 10 minutes

    Presentation can be performed by referring to the PBT presentation rubric.


    (CLO2, A2) (100 marks)
    NAME
    REGISTRATION NO MARKS
    DATE
    CLASS
    CODE/SUBJECT DFS 50113 SECURITY AUDIT /100
    PROBLEM BASED TASK RUBRIC PROBLEM BASED TASK
    LECTURER MOHD FAKHRU RAZIE BIN MUKHTAR N

    ADVANCED INTERMEDIATE BEGINNER WEAK


    Performance Area Weightage Score
    4 3 2 1
    Students able to list
    Students able to list 3-4 Students able to list 1-2 clause Students unable to list = / 4 x 20
    Use suitable clause and more than 5 clauses
    clause with correct security with correct security any clause or correct 20
    security governance with correct security
    governance governance governance security governance =
    Students able to list 3 Students able to list 2 Students able to list 1 Students unable to list = / 4 x 30
    Suitable specification
    specification content specification content used in specification content used in specification content 30
    content
    used in audit checklist audit checklist audit checklist used in audit checklist =
    Students able to list all Students unable to list = / 4 x 10
    Students able to list 2 status Students able to list 1status
    Status code status code in audit status code in audit 10
    code in audit checklist code in audit checklist
    checklist checklist =
    Students able to give = / 4 x 20
    Students able to give 3-4 Students able to give 1-2 proof Students not able to give
    Proof of compliance more than 5 proof to 20
    proof to compliance to compliance any proof to compliance =
    compliance
    Students able to Students not able to = / 4 x 10
    Recommendations for Students able to suggest 3-4 Students able to suggest 1-2
    suggest more than 5 suggest any 10
    each finding recommendations. recommendations. =
    recommendations recommendations
    Students able to give 5
    Students able to give 3-4
    correct steps and Students able to give 1-2 correct Students not able to give
    correct steps and = / 4 x 10
    Steps of conducting explanation of steps and explanation of any steps or explanation
    explanation of conducting 10
    audit activities conducting audit conducting audit activities and of conducting audit
    audit activities and =
    activities and explanation activities
    explanation explanation

    TOTAL 100%
    100%
    NAME
    REGISTRATION NO MARKS
    DATE
    CLASS
    CODE/SUBJECT DFS 50113 SECURITY AUDIT /100
    PROBLEM BASED TASK RUBRIC PROBLEM BASED TASK PRESENTATION
    LECTURER MOHD FAKHRU RAZIE BIN MUKHTAR

    ADVANCED INTERMEDIATE BEGINNER WEAK


    Performance Area Weightage Score
    4 3 2 1
    Student use words, Student use understandable Student use confusing words Student use confusing
    = / 4 x 20
    terms, and examples words and terms but needs and terms; uses examples which, words, terms, and/or
    Understandability 20
    which others clearly examples to clarify major to a limited degree, help listener examples which listener
    =
    understand. ideas. understand. does not understand.
    Student speaks in a voice
    Students always speaks Students able to speaks in a Student able to speaks in a
    which is frequently
    in an understandable voice which is generally voice which is generally
    difficult to understand
    voice, using clear tone, understandable; sometimes understandable; sometimes = / 4 x 20
    due to poor tone,
    Voice enunciation, and tone, enunciation or pace tone, enunciation or pace 20
    enunciation, or pace
    reasonable pace; interferes with message; interferes with message; needs =
    even after listener
    message is clearly adjusts delivery when listener listener requests to modify
    requests to repeat
    received. does not understand. delivery of message. message.
    Students speaks with Students mostly speaks with Students speaks with some Students speaks with little = / 4 x 10
    Confidence & Attitude enthusiasm, poise enthusiasm, poise and/or enthusiasm, poise and/or or no enthusiasm, poise 10
    and/or assurance assurance assurance and/or assurance =
    Organizational pattern
    is clearly and
    Organization Organizational pattern is
    consistently Organizational pattern is Presentation is = / 4 x 20
    (Introduction, content, clearly and consistently
    observable, skillful, and intermittently observable within disorganized and lacks 20
    spelling mechanism, observable within the
    cohesively marks the the presentation. evidence of preparation. =
    conclusion) content of the presentation.
    presentation.
    Students meet
    Students meet established Students meet = / 4 x 10
    established timelines Students meet established
    Task Completion timelines with considerable established timelines with 10
    with high degree of timelines with some effectiveness
    effectiveness effectiveness limited effectiveness =
    Overall appearance is
    very neat Overall neat appearance Overall appearance is
    ▪ Choice in clothing is Appearance is somewhat untidy untidy
    appropriate for any of ▪ Choice in clothing is
    ▪ Choice in clothing is = / 4 x 20
    Well Groomed presentation acceptable for the type of ▪ Choice in clothing is
    inappropriate (shirt untucked, 20
    Appearance ▪ Very well groomed presentation inappropriate for any
    tee-shirt, messy hijab, etc.) =
    (hair, make-up, clothes ▪ Well groomed (ex. Shirt presentation (torn
    pressed, hijab, etc.) tucked in, tidy hijab suit in ▪ Grooming attempt is evident unclean, wrinkled)
    ▪ Overall appearance clothing, minimal wrinkles) ▪ Poor grooming
    is professional

    TOTAL 100%
    100%

    You might also like