IT'S ALL IN A PHASE WORK
The SDLC phase that involves all concerned management and user groups
What is Requirements Definition
This individual's primary role on a project team is that of a Control Expert
Who is the IT Auditor
This document provides the justification for a project
What is a Business Case
Application controls help to ensure this attribute for completeness and accuracy
What is integrity
This is the risk specifically associated with agile development
What is a lack of documentation
The SDLC phase that takes place after the new system has stabilized in the production environment
What is the Post-Implementation Phase
This person or group assumes ownership of the project and the resulting system
Who is User Management
An estimating methodology used to determine time/ task duration used in the planning phase--It has zero slack time
What is the critical path
Encryption helps to preserve this attribute for sensitive or proprietary data
What is Confidentiality
A business continuity plan is an example of this type of control
What is a Corrective Control
Estimating tools are typically used in this PROJECT phase
What is planning phase
This person is responsible for planning & executing IS projects and provides leadership
Who is the Project Manager
These high-level documents represent corp. philosophy of an org. and the strategic thinking of senior mgmt.
What are policies
A virtual private network (VPN) provides this attribute using tunneling or encapsulating traffic
What is confidentiality
The foremost risk is transaction authorization for this technology
What is EDI
This phase represents the optimum point for base lining to occur
What is the Design Phase
This person or group provides funding for the project
Who is the Project Sponsor or Owner
This technique uses small windows of time with predetermined resources mostly used with agile development
What is timebox Management
A piece of information provides sender authenticity, message integrity and non-repudiation--usually generated using the sender's private key, or applying a one-way hash
What is a Digital Signature
Key controls may be removed out of a business process is a major risk for this process
What is BPR risk
This is a process--not a true phase, if the decision was made to acquire rather than develop
What is Selection
This team/person is ultimately responsible for project deliverables
What is a Project Steering Committee
This document states the objective of the project, stakeholders, project manager and sponsor
What is a project charter
This attribute set bears on the capability of software to maintain its level of performance under stated conditions
What is reliability
This type of risk relates to the likelihood that the new system may not meet the user's business needs, requirements, and expectations
What is Business Risk or Benefit Risk