SEC592 January 2019 Full Course Latest

SEC592 IT Governance
Week 1 Discussion
DQ1 IT ROLE IN BUSINESS
What role does IT play in today’s modern business world?
How can IT be viewed as a competitive differentiator?
DQ2 IT IMPLEMENTATION
What are some things that can go wrong with IT?
Why is it so important to control IT implementation?
 
SEC592 IT Governance
Week 2 Discussion
DQ1 IT AUDITS
How can audits help to manage IT implementation?
DQ2 DOCUMENT ARCHIVE AND RETENTION
How can a document archive and retention policy serve as an administrative control?
Does your company have an archive and retention policy?
Yes, can you outline it?
No, what do you think is needed?
 
SEC592 IT Governance
Week 3 Discussion
DQ1 SEGREGATION OF DUTIES
What specific risks can an organization be exposed to when a conflict exists in their segregation of duties (SOD)? What should organizations do to minimize this risk?
DQ2 VERIFICATION AND AUDITING
How does verification and auditing reinforce management objectives and strategic goals?
 
 
SEC592 IT Governance
Week 4 Discussion
DQ1 COST OF REGULATION
Who should bear the cost of regulatory laws such as SOX, HIPAA, FERPA, and GLB? Should this be the responsibility of the government, shareholders, or someone else?
DQ2 DUE CARE
What do we mean when we use the term “due care” in IT Governance?
 
SEC592 IT Governance
Week 5 Discussion
DQ1 ASSESSING PERFORMANCE
Two postings are required this week.  One to address the question and the other (or more) to collaborate with a classmate.
How can COBIT’s controls help an organization measure and improve its business performance?
DQ2 LEARNING ORGANIZATION
Two postings are required this week.  One to address the question and the other (or more) to collaborate with a classmate.
What is a Learning Organization and why is it important?
 
SEC592 IT Governance
Week 6 Discussion
DQ1 COMPLIANCE IN THE PRIVATE AND NON-PROFIT SECTORS
Two postings are required in this topic.
Should all organizations be subject to SOX-type compliance?
Why or why not?
Alternative Task and Question:
This week I would like you to visit the following web site:
http://www.sec.gov/edgar.shtml (Links to an external site.)Links to an external site.
Tell us what is here and why it has value.
DQ2 THE PUBLIC’S RIGHT TO KNOW
Two postings are required in this topic.
Does the public have the right to know how organizations implement their IT systems?
Why or why not?
Alternative Task and Question (repeated from prior topic):
This week I would like you to visit the following web site:
http://www.sec.gov/edgar.shtml (Links to an external site.)Links to an external site.
Tell us what is here and why it has value.
 
SEC592 IT Governance
Week 7 Discussion
DQ1 FORENSIC CASES, TOOLS AND SERVICES
Standard Question
Two postings are required.
In addition to the Labs (Lab 1 is awesome), we shall explore all of these topics:
Forensic Cases from the Real World
Forensic Tools
Forensic Services
Select any topic and tell us two things:  What did you find and how can we use it.
DQ2 EMPLOYEE MISCONDUCT
Two postings are required in this topic.  Check back after your postings and see if there are any questions for you to answer.  There are two different topics here: Standard and Alternative.
Standard Discussion Question
If several employees in your organization were suspected of fraud, how would you handle their computer equipment?  Assume they are in several different departments.
What steps would you take to preserve evidence?
Alternative From the Real World – This is actually a Lab
Background:
There are several files to view in “Files” > “Week 7”, in a specific order.
They are as follows:
(1) verisign 1.jpg
(2) verisign 2.jpg
(3) verisign 3.jpg
(4) VeriSign COMPLAINT FOR VIOLATION.pdf
(5) VRSN-ExecFraudBlog.pdf
Files 1, 2 and 3 show you the share price of VeriSign’s stock going from about $10, up to $250, down to $7 and then after many years, up to about $160.
File 4 is the actual COMPLAINT FOR VIOLATION OF THE FEDERAL SECURITIES LAWS against VeriSign.  Read the “Introduction” section.  Here is a sample.  “As part of their effort to boost the price of VeriSign stock, defendants misrepresented VeriSign’s true prospects in an effort to conceal VeriSign’s improper acts until they were able to sell at least $26 million worth of their own VeriSign stock and use VeriSign’s shares to acquire companies in stock-for-stock transactions….”
File 4 is a summary of the Verisign Fraud – Class Action Lawsuit.  Read the “Issues” section,  Here is a sample. “… the executives were not held personally responsible for their deception.”. 
In File 4, read the “Scienter” section.  Here is a sample: ” The plaintiffs’ complaints allege that CTO Ethan Cohen, COO Donohoe, and CEO David Cohen had created the technology to over bill customers, used undocumented invoices to eliminate customer’s ability to verify the accuracy, and even bragged about their billing scheme to other managers about the increased billing they’d  mastermind.”   Note: When pleading scienter, parties “must allege facts that give rise to a strong inference of fraudulent intent.”
Question: Can today’s law and technology, really stop this type of a fraud from happening again? How, or  why not?
 
 
SEC592 IT Governance
Week 2 PAPER
In a 1 to 4 page paper (size is not important – go for quality) , answer and address the following.
What is the relationship between IT execution and IT governance?
Describe how the COBIT framework institutes mechanisms to control IT risk.
 
 
 
SEC592 IT Governance
Week 3 PAPER
In a 1 to 4 page paper (size is not important – go for quality) , answer and address the following.
What is transparency in the context of IT governance, and why is it important?
How does the COBIT framework provide for internal audit and corrective action?
 
SEC592 IT Governance
Week 4 MIDTERM – CREATE A GUIDANCE SUMMARY
This is your Midterm Exam.
Reflect back over the past three weeks.  Write a short summary of the most important topics we covered each week.  Focus on what we covered and how to apply it in the real-world.  This may also include the Labs that I provided to you.
You may upload your reply in any format that communicates your ideas and recommendations.  Do not be concerned about the length, or size.  Just make your points.  One for each week.
If you are using a written file for your reply, then I suggest the following format. 
Week 1
A key topic that was covered:
How to apply it in the real-world:
Week 2
A key topic that was covered:
How to apply it in the real-world:
Week 3:
A key topic that was covered:
How to apply it in the real-world:
 
 
 
 
 
SEC592 IT Governance
Week 5 PAPER
In a 1 to 4 page paper (size is not important – go for quality) , answer and address the following.
What is the intent of regulatory compliance, and what is the role of IT in maintaining corporate compliance?
What can happen to organizations and their senior management if they ignore compliance mandates?
 
SEC592 IT Governance
Week 6 PAPER AND ALTERNATIVE
Standard Assignment:
Review the case scenario located in the You Decide area for this week, and complete the assignment listed on that page. You will need to submit a 1 to 4 page paper. Go for quality.
 
SEC592 IT Governance
WEEK 8 FINAL CASE
Instructions
Select one of the following three cases.  Each case has two questions.  Answer both questions as if you are addressing a member of management.
Place your answer into a Word file and upload it to this assignment area. There are no minimum, or maximum, page requirements.
Complete this assignment before Saturday afternoon of Week 8, which is the last day of Week 8.
You may make multiple uploads and ask for feedback using the text area of the assignment upload page.  You should allow 48 hours for my feedback during Week 8.
I can be reached by email (this web site, or [email protected].edu); or by calling 770 619 3737, or 770 667 1010.
Case 1: IT Governance Success and Failure – 250 Points
What are two real-world examples of the success of IT Governance? Provide a general summary of the examples.
What are two real-world examples of the failure of IT Governance?  Provide a general summary of the examples.
Case 2: IT Governance Implementation – 250 Points
What is required of an organization, to implement and maintain IT Governance?  Outline your top 4 points.
What outside resources are available to assist technology managers in the implementation and maintenance process?  Outline two resources.
Case 3:  IT Governance Auditing – 250 Points
What procedures and systems should me audited to maintain IT Governance and Compliance?  Outline three.
What actions should take place if an audit uncovers a compliance shortfall, or violation?  Outline three.