In this course you will be introduced to how systems are acquired, developed and implemented. At the end of the course you will be able to provide assurance that the practices for the acquisition, development, testing and implementation of information systems meet the enterprise’s strategies and objectives.
Students will learn how an organization evaluates, develops, implements, maintains and disposes its IT systems and related components. S/he must be able to identify which elements may represent the greatest risk and which controls are most effective at mitigating mitigating them. Key objectives are as follows:
- Evaluate the business case for the proposed investments in information systems acquisition, development, maintenance and subsequent retirement to determine whether it meets business objectives.
- Evaluate IT supplier selection and contract management processes service levels and requisite controls are met.
- Evaluate the project management framework and controls to determine whether business requirements are achieved in a cost-effective manner while managing risks to the organization.
- Conduct reviews to determine whether a project is progressing in accordance with project plans, is adequately supported by documentation, and has timely and accurate status reporting.
- Evaluate controls for information systems during the requirements, acquisition, development and testing standards, procedures and applicable external requirements.
- Evaluate the readiness of information systems for implementation and migration into production to determine whether project deliverables, controls and the requirements are met.
- Conduct post-implementation reviews of systems to determine whether project deliverables, controls and the requirements are met.
- Asses software development projects for common issues affecting quality and secure software development.
- Evaluate a systems or software project’s design and development plans to understand the system design.