SlideShare a Scribd company logo

MIS, or Management Information System, is a structured framework that uses technology,

Download as PPTX, PDF
N
NabinShrestha92

MIS, or Management Information System, is a structured framework that uses technology, people, and processes to gather, analyze, and present information for decision-making within an organization. It's designed to provide managers with the timely, accurate, and relevant information needed to plan, control, analyze, and make informed decisions that drive business growth and success. MIS can be a department within a company, a type of computer software, or a broader field of study focused on using information technology to solve business problems.

Business
1 of 9
Download to read offline
1
2
3
4
5
6
7
8
9
Components of an organizational framework for security and control  INFORMATION SYSTEMS CONTROL  RISK ASSESSMENT  SECURITY POLICY  DISASTER RECOVERY PLANNING AND BUSINESS CONTINUITY PLANNING  ROLE OF AUDITING
Introduction The organizational framework Provides a structure For:  Integrated Financial Planning,  Project Tracking,  Reporting and monitoring of performance indicators.
Information System Controls  General Controls  Govern design, security, use of computer programs and security of data files.  combinations of hardware, software and manual procedures. - Create an overall control environment.
Application Controls  Specific controls unique to each computerized application  Include both automated and manual procedures  Ensure that only authorized data are completely and accurately processed by that application
Risk Assessment  A risk assessment is a process to identify potential hazards and analyze what could happen if a hazard occurs.
Security Policy  consists of statement ranking information risk, identifying acceptable security goals, identifying the mechanisms for achieving these goals.
Disaster Recovery Planning and Business Continuity Planning  Disaster Recovery Planning: Plans for the restoration of disrupted computing and communications services.  Business Continuity Planning: How the company can restore business operations after disaster occurs.
Role of Auditing  Examine the firms overall security environment as well as controls governing individual information systems.  Reviews technologies, procedures, documentation, training and personnel.  Ranks all controls weaknesses and estimates the probability of the occurences.
Conclusion  Firms need to establish a good set of general and application controls.  risk assessment evaluates information assets, identifies controls points and control weakness and determines the most cost effective set of controls.  It develops security policy and palns for continuing business operations  Auditing helps organization to determine the effectiveness of security and control their information systems.

More Related Content

PDF
IIA GAM CS 8-5: Audit and Control of Continuous Monitoring Programs and Artif...
cveiga12
 
PDF
CS 8-5_Audit and Control of Continuous Monitoring Programs and Artificial Int...
cveiga12
 
PPTX
ESTABLISHING A FRAMEWORK FOR SECURITY AND CONTROL.pptx
hamzaalkhairi802
 
PPTX
MIS 22 Disaster Management
Tushar B Kute
 
PPTX
Step by-step for risk analysis and management-yaser aljohani
Yaser Alrefai
 
PPTX
Step by-step for risk analysis and management-yaser aljohani
yaseraljohani
 
PPT
17-MOD 6 Conducting Security Audits & MOD 7 Information Security Audit Prepar...
abhichowdary16
 
PDF
Ch09 Information Security Best Practices
phanleson
 
IIA GAM CS 8-5: Audit and Control of Continuous Monitoring Programs and Artif...
cveiga12
 
CS 8-5_Audit and Control of Continuous Monitoring Programs and Artificial Int...
cveiga12
 
ESTABLISHING A FRAMEWORK FOR SECURITY AND CONTROL.pptx
hamzaalkhairi802
 
MIS 22 Disaster Management
Tushar B Kute
 
Step by-step for risk analysis and management-yaser aljohani
Yaser Alrefai
 
Step by-step for risk analysis and management-yaser aljohani
yaseraljohani
 
17-MOD 6 Conducting Security Audits & MOD 7 Information Security Audit Prepar...
abhichowdary16
 
Ch09 Information Security Best Practices
phanleson
 

Similar to MIS, or Management Information System, is a structured framework that uses technology, (20)

PPTX
Cybersecurity Assessment Framework - Slideshare.pptx
Azra'ee Mamat
 
PPTX
Controls in Audit.pptx
HardikKundra
 
PDF
CCISO_Certification_Training_Course-Outline.pdf
priyanshamadhwal2
 
PPTX
Information system audit 2
Jayant Dalvi
 
PPT
Information Security Identity and Access Management Administration 07072016
Leon Blum
 
PDF
Cyber Security Risk Mitigation Checklist
timsnp
 
PDF
Qatar Proposal
Absar Husain
 
PPTX
Enterprise governance risk_compliance_fcm slides
EnterpriseGRC Solutions, Inc.
 
PPT
Information Security maintainance Security Engineering
MuntakaAbdulkadir1
 
PPTX
Presentation1.pptx
Pandiya Rajan
 
PDF
RAP GC 2016
Terri Marconi McKnight
 
PPTX
Ultimate Guide to EHS Management.pptx
BIS Safety
 
PPTX
Assuring Digital Strategic Initiatives by
FirstMutualHoldings
 
PPTX
Physical Security Assessment
Faheem Ul Hasan
 
DOCX
· Processed on 09-Dec-2014 901 PM CST · ID 488406360 · Word .docx
LynellBull52
 
DOCX
Example of fisma compliance analysis.1
Sal Velasco
 
PDF
What is the role of risk management in cybersecurity
APAC Entrepreneur
 
PPTX
crisc Domain1 Governance PPT Slide shows
AjazMemon4
 
PDF
Guide for Applying The Risk Management Framework to Federal Information Systems
Guillermo Remache
 
PPTX
Logging, monitoring and auditing
Piyush Jain
 
Cybersecurity Assessment Framework - Slideshare.pptx
Azra'ee Mamat
 
Controls in Audit.pptx
HardikKundra
 
CCISO_Certification_Training_Course-Outline.pdf
priyanshamadhwal2
 
Information system audit 2
Jayant Dalvi
 
Information Security Identity and Access Management Administration 07072016
Leon Blum
 
Cyber Security Risk Mitigation Checklist
timsnp
 
Qatar Proposal
Absar Husain
 
Enterprise governance risk_compliance_fcm slides
EnterpriseGRC Solutions, Inc.
 
Information Security maintainance Security Engineering
MuntakaAbdulkadir1
 
Presentation1.pptx
Pandiya Rajan
 
RAP GC 2016
Terri Marconi McKnight
 
Ultimate Guide to EHS Management.pptx
BIS Safety
 
Assuring Digital Strategic Initiatives by
FirstMutualHoldings
 
Physical Security Assessment
Faheem Ul Hasan
 
· Processed on 09-Dec-2014 901 PM CST · ID 488406360 · Word .docx
LynellBull52
 
Example of fisma compliance analysis.1
Sal Velasco
 
What is the role of risk management in cybersecurity
APAC Entrepreneur
 
crisc Domain1 Governance PPT Slide shows
AjazMemon4
 
Guide for Applying The Risk Management Framework to Federal Information Systems
Guillermo Remache
 
Logging, monitoring and auditing
Piyush Jain
 
Ad

Recently uploaded (20)

PDF
kom-180-proposal-for-a-directive-amending-directive-2014-45-eu-and-directive-...
nlusch08
 
PDF
Outsourced Audit & Assurance in USA Why Globus Finanza is Your Trusted Choice
Globus finanza
 
PDF
COST SHEET- Tender and Quotation unit 2.pdf
MANJU N
 
PDF
Chapter 5_Foreign Exchange Market in .pdf
sophatphoniu
 
PDF
How to Get Funding for Your Trucking Business
Jake Thornhill
 
PDF
Unit 1 Cost Accounting - Cost sheet
MANJU N
 
DOCX
Euro SEO Services 1st 3 General Updates.docx
AmirNazir49
 
PPTX
job Avenue by vinith.pptxvnbvnvnvbnvbnbmnbmbh
kaniece
 
DOCX
unit 2 cost accounting- Tender and Quotation & Reconciliation Statement
MANJU N
 
PDF
WRN_Investor_Presentation_August 2025.pdf
cmagee4
 
DOCX
Business Management - unit 1 and 2
anithak410
 
PDF
Nidhal Samdaie CV - International Business Consultant
Nidhal Samdaie
 
PDF
Business model innovation report 2022.pdf
pradvapal
 
PDF
Ôn tập tiếng anh trong kinh doanh nâng cao
thaoonguyenn2311
 
PDF
Training And Development of Employee .pdf
nivethavm864
 
PPTX
ICG2025_ICG 6th steering committee 30-8-24.pptx
AtiarRahaman5
 
PDF
Types of control:Qualitative vs Quantitative
reshmaaslm06
 
PPTX
AI-assistance in Knowledge Collection and Curation supporting Safe and Sustai...
Barry Hardy
 
PPTX
HR Introduction Slide (1).pptx on hr intro
suhanidwivedi227
 
PDF
Laughter Yoga Basic Learning Workshop Manual
yeechensee
 
kom-180-proposal-for-a-directive-amending-directive-2014-45-eu-and-directive-...
nlusch08
 
Outsourced Audit & Assurance in USA Why Globus Finanza is Your Trusted Choice
Globus finanza
 
COST SHEET- Tender and Quotation unit 2.pdf
MANJU N
 
Chapter 5_Foreign Exchange Market in .pdf
sophatphoniu
 
How to Get Funding for Your Trucking Business
Jake Thornhill
 
Unit 1 Cost Accounting - Cost sheet
MANJU N
 
Euro SEO Services 1st 3 General Updates.docx
AmirNazir49
 
job Avenue by vinith.pptxvnbvnvnvbnvbnbmnbmbh
kaniece
 
unit 2 cost accounting- Tender and Quotation & Reconciliation Statement
MANJU N
 
WRN_Investor_Presentation_August 2025.pdf
cmagee4
 
Business Management - unit 1 and 2
anithak410
 
Nidhal Samdaie CV - International Business Consultant
Nidhal Samdaie
 
Business model innovation report 2022.pdf
pradvapal
 
Ôn tập tiếng anh trong kinh doanh nâng cao
thaoonguyenn2311
 
Training And Development of Employee .pdf
nivethavm864
 
ICG2025_ICG 6th steering committee 30-8-24.pptx
AtiarRahaman5
 
Types of control:Qualitative vs Quantitative
reshmaaslm06
 
AI-assistance in Knowledge Collection and Curation supporting Safe and Sustai...
Barry Hardy
 
HR Introduction Slide (1).pptx on hr intro
suhanidwivedi227
 
Laughter Yoga Basic Learning Workshop Manual
yeechensee
 
Ad

MIS, or Management Information System, is a structured framework that uses technology,

  • 1. Components of an organizational framework for security and control  INFORMATION SYSTEMS CONTROL  RISK ASSESSMENT  SECURITY POLICY  DISASTER RECOVERY PLANNING AND BUSINESS CONTINUITY PLANNING  ROLE OF AUDITING
  • 2. Introduction The organizational framework Provides a structure For:  Integrated Financial Planning,  Project Tracking,  Reporting and monitoring of performance indicators.
  • 3. Information System Controls  General Controls  Govern design, security, use of computer programs and security of data files.  combinations of hardware, software and manual procedures. - Create an overall control environment.
  • 4. Application Controls  Specific controls unique to each computerized application  Include both automated and manual procedures  Ensure that only authorized data are completely and accurately processed by that application
  • 5. Risk Assessment  A risk assessment is a process to identify potential hazards and analyze what could happen if a hazard occurs.
  • 6. Security Policy  consists of statement ranking information risk, identifying acceptable security goals, identifying the mechanisms for achieving these goals.
  • 7. Disaster Recovery Planning and Business Continuity Planning  Disaster Recovery Planning: Plans for the restoration of disrupted computing and communications services.  Business Continuity Planning: How the company can restore business operations after disaster occurs.
  • 8. Role of Auditing  Examine the firms overall security environment as well as controls governing individual information systems.  Reviews technologies, procedures, documentation, training and personnel.  Ranks all controls weaknesses and estimates the probability of the occurences.
  • 9. Conclusion  Firms need to establish a good set of general and application controls.  risk assessment evaluates information assets, identifies controls points and control weakness and determines the most cost effective set of controls.  It develops security policy and palns for continuing business operations  Auditing helps organization to determine the effectiveness of security and control their information systems.