{"id":8,"date":"2017-10-31T07:42:56","date_gmt":"2017-10-31T11:42:56","guid":{"rendered":"http:\/\/community.mis.temple.edu\/mis3580sec001s2018\/?page_id=7"},"modified":"2022-01-13T01:13:00","modified_gmt":"2022-01-13T06:13:00","slug":"about","status":"publish","type":"page","link":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/about\/","title":{"rendered":"Syllabus"},"content":{"rendered":"

This course introduces students to the methods used as organizations builds an enterprise information system architecture within an environment of internal control. Topics include information system planning, management and usage, the development, acquisition and maintenance of these technologies and their impact on the organization\u2019s business processes.<\/p>\n

Course Objectives<\/h3>\n
    \n
  1. Evaluate the business case for the proposed investments in information systems acquisition, development, maintenance and subsequent retirement to determine whether it meets business objectives.<\/li>\n
  2. Evaluate IT supplier selection and contract management processes service levels and requisite controls are met.<\/li>\n
  3. Evaluate the project management framework and controls to determine whether business requirements are achieved in a cost-effective manner while managing risks to the organization.<\/li>\n
  4. Conduct reviews to determine whether a project is progressing in accordance with project plans, is adequately supported by documentation, and has timely and accurate status reporting.<\/li>\n
  5. Evaluate controls for information systems during the requirements, acquisition, development and testing standards, procedures and applicable external requirements.<\/li>\n
  6. Evaluate the readiness of information systems for implementation and migration into production to determine whether project deliverables, controls and the requirements are met.<\/li>\n
  7. Conduct post-implementation reviews of systems to determine whether project deliverables, controls and the requirements are met.<\/li>\n<\/ol>\n

    \u00a0<\/strong><\/p>\n

    \u00a0Textbook and Readings and Reference Material<\/h3>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
    \n
    Textbooks<\/h5>\n<\/td>\n
    		\n

    Valacich J.S. and George J.F., 2017, Modern Systems Analysis and Design<\/u>, Eighth Edition, Pearson Education, Inc., ISBN-13: 978-0-13-420492-5<\/p>\n<\/td>\n<\/tr>\n

    \n
    ISACA<\/h5>\n<\/td>\n
    		\n

    CISA Review Manual 26th<\/sup> Edition, 2015, ISACA, ISBN 978-1-60420-367-7<\/p>\n<\/td>\n<\/tr>\n

    \n

    \u201cCOBIT 2019: Framework Introduction and Methodology<\/a>\u201d, ISACA, ISBN 978-1-60420-763-7<\/p>\n<\/td>\n<\/tr>\n

    \n

    \u201cCOBIT 5: Enabling Processes<\/a>\u201d, 2012, ISACA, ISBN 978-1-60420-241-0<\/p>\n<\/td>\n<\/tr>\n

    \n

    Chaudhuri, A., von Solms, SH, Chaudhuri, D. (2011), \u201cAuditing Risks in Virtual IT Systems<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Gelbstein, E. (2015) \u201cAuditors and Large Software Projects, Part 1<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Gelbstein, E. (2015) \u201cAuditors and Large Software Projects, Part 2<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Gelbstein, E. (2015) \u201cAuditors and Large Software Projects, Part 3<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Helskanen, A.LJK (2012) \u201cProject Portfolio Management<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Kancharia, M. and Bhattacharjee, S. (2010) \u201cRealizing Benefits of IT Investments: Overcoming the Silver-bullet View<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Raval, V. and Sharma, R. (2017) \u201cMitigating the Risk Factors of IT Project Failure<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2014) \u201cThe Logical Reason for Consideration of IT<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2014) \u201cThe Core of IT Auditing<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2012) \u201cAuditing Applications, Part 1<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2012) \u201cAuditing Applications, Part 2<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2011) \u201cUnderstanding the New SOC Reports<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n

    Singleton, T. (2010) \u201cIT Audits of Cloud and SaaS<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n
    FedRAMP<\/h5>\n<\/td>\n
    		\n

    \u201cCSP Authorization Playbook \u2013 Getting Started with FedRAMP<\/a>\u201d<\/p>\n<\/td>\n<\/tr>\n

    \n
    FIPS<\/h5>\n<\/td>\n
    		\n

    PUB 199 \u201cStandards for Security Categorization of Federal information System and Information Systems\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n
    NIST<\/h5>\n<\/td>\n
    		\n

    Special Publication 800-34 Revision 1 \u201cContingency Planning Guide for Federal Information Systems\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n

    Special Publication 800-53A Revision 4 \u201cAssessing Security and Privacy Controls in Federal Information Systems and Organizations\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n

    Special Publication 800-53 Revision 4 \u201cSecurity and Privacy Controls for Federal information Systems and Organizations\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n

    Special Publication 800-64 Revision 2 \u201cSecurity Considerations in the System Development Life Cycle\u201d (SDLC)<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n
    SANS<\/h5>\n<\/td>\n
    		\n

    Hein, R. (2004) \u201cThe Application Audit Process \u2013 A Guide for Information Security Professionals\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n
    Misc.<\/h5>\n<\/td>\n
    		\n

    INTOSAI (2008) \u201cWhy IT Projects fail, Best Practices Guide\u201d<\/a><\/p>\n<\/td>\n<\/tr>\n

    \n

    Peppard, J. (2016) \u201cA Tool to Map Your Next Digital Initiative<\/a>\u201d, Harvard Business Review<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    \u00a0<\/strong><\/p>\n

    Schedule of class topics:<\/strong><\/h3>\n

    \u00a0<\/strong><\/p>\n

    Assignments<\/h3>\n

    The readings, questions, and case study assignments will bring the real world into class discussion while illustrating fundamental concepts.\u00a0<\/p>\n

      \n
    1. Readings: Below is the reading schedule you are responsible for completing. Check the class website for updates and changes to the readings. \u00a0Complete each reading and answer reading discussion questions posted to the class website before each class:<\/li>\n<\/ol>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
      \n

      Unit #<\/strong><\/p>\n<\/td>\n

      		\n

      Readings<\/strong><\/p>\n<\/td>\n<\/tr>\n

      \n

      1<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 1, Ch. 2 \u201cSystems Development Environment\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSystems Development Methodologies\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSDLC Models\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSDLC Phases\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      2<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch.1 \u201cProject Management\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cProject Management and Governance\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      3<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 4 \u201cIdentifying and Selecting Projects\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 5 \u201cInitiating and Planning Information Systems Projects\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cBusiness Case and Feasibility Analysis\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      4<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 6 \u201cDetermining Systems Requirements\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cRequirements Definition\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      5<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 7 \u201cStructured System Process Requirements\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cStructured Techniques\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      6<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 8 \u201cStructured System Data Requirements\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cEntity Relationship Diagrams\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      8<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 9 \u201cDatabase Design\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cControl Identification and Design\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cRelational and Embedded Databases\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      9<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSoftware Development Methods\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSystem Development Tools and Productivity Aids\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cControl Identification and Design\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      10<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 10 \u201cDesigning Forms and Reports\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 11 \u201cDesigning Interfaces and Dialogues\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      12<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 12 \u201cDesigning Distributed and Internet Systems\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cInfrastructure Development and Acquisition Practices\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cHardware and Software Acquisition\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      13<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 13 \u201cSystems Implementation\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cIS Auditors Role in Project Management\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSoftware Development Methodologies\u201d<\/p>\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 CISA Ch. 3 \u201cSoftware Testing\u201d<\/p>\n<\/td>\n<\/tr>\n

      \n

      14<\/p>\n<\/td>\n

      		\n

      \u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 MSAD Ch. 14 \u201cMaintaining Information Systems\u201d<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

      Participation<\/h3>\n

      Much of your learning will occur as you prepare for and participate in discussions about the course material.\u00a0 The assignments, analysis, and readings have been carefully chosen to bring the real world into class discussion while also illustrating fundamental concepts.<\/p>\n

      To encourage participation, 10% of the course grade is earned by preparing before class and discussing the topics between and in class. Evaluation is based on you consistently demonstrating your engagement with the material. Assessment is based on what you contribute, not simply what you know.<\/p>\n

        \n
      1. Preparation before class \u2013 To facilitate active participation in the class I request that you do the following before noon on the day of the class:<\/li>\n<\/ol>\n

        Briefly address and summarize:<\/p>\n

          \n
        1. One key point you took from each assigned reading. (One or two sentences per reading)<\/li>\n
        2. One question that you would ask your fellow classmates that facilitates discussion.<\/li>\n<\/ol>\n

          I will also require that you identify, and are prepared to discuss, an article about a current event in the IT, Security, or Project Management arena each week.\u00a0 Each student is expected to contribute a link to an article to the online class discussion each week.\u00a0 An ideal article would be tied thematically to the topic of the week.<\/p>\n

          However, any article you find interesting and would like to share is welcome. The deadline for posting is noon on the day of class.<\/p>\n

            \n
          1. Participation during class \u2013 We will typically start each session with \u201copening\u201d questions about the assigned readings and analyses. I may ask for volunteers, or I may call on you.\u00a0 Students called on to answer should be able to summarize the key issues, opportunities, and challenges in the analyses.\u00a0 All students should be prepared to answer these questions.<\/li>\n<\/ol>\n

            Another important aspect of in-class participation is completion of in-class assignments and contribution to any break out activities.<\/p>\n

              \n
            1. Participation between classes \u2013 To facilitate ongoing learning of the course material, we will also discuss course material on the class blog in between class.<\/li>\n<\/ol>\n

              Each topical week, a discussion primer will be posted on the class website. Students should actively engage in meaningful discussion of the weekly topic.\u00a0 Full credit for discussions is not predicated on \u201canswering the question\u201d, but rather on meaningful contribution to the conversations.\u00a0 As a general guideline, students are expected to review and post comments three times during each topical unit.<\/p>\n

              Any submissions to the discussion board after the topical week concludes will not be considered during grading.\u00a0 Overall, discussion participation will be weighted 20% of the final course grade.<\/p>\n

              Exams<\/h3>\n

              There will be twoe exams given during the semester.\u00a0 Together these exams are weighted 30% of each student\u2019s final grade.\u00a0 <\/strong><\/p>\n

              Below is the exam schedule:<\/p>\n

              These exams will consist of multiple-choice questions.\u00a0 You will have a fixed time (e.g. 50 minutes) to complete the exam.\u00a0 Test one will occur in week 7 and will cover the systems analysis and planning; test two will occur in week 14 and will cover the remaining material.<\/p>\n

              A missed exam can only be made up in the case of documented and verifiable extreme emergency situation.\u00a0 No make-up is possible for test three.<\/p>\n

              Projects<\/h3>\n

              There will be 5 projects during the course.\u00a0 Each project is weighted 12% of your final grade (60% in total).\u00a0 Details on each project will be provided in class, with the due dates noted on the syllabus.\u00a0 While these projects are graded individually, students may work collaboratively to complete their individual project submissions.\u00a0 Students will be randomly chosen to present their project to the class.<\/p>\n

              Weekly Cycle<\/h3>\n

              As outlined above in the Assignments and<\/strong> Participation<\/strong> sections, much of your learning will occur as you prepare for and participate in discussions about course content. To facilitate learning course material, we will discuss course material on the class discussion board between classes.\u00a0 Each week this discussion will follow this cycle:<\/p>\n

              Evaluation and Grading<\/h3>\n\n\n\n
              \n

               <\/p>\n\n\n\n\n\n\n\n
              \n

              Item<\/h2>\n<\/td>\n

              		\n

              Weight<\/strong><\/p>\n<\/td>\n<\/tr>\n

              \n

              Assignments<\/p>\n<\/td>\n

              		\n

              60%<\/p>\n<\/td>\n<\/tr>\n

              \n

              Participation<\/p>\n<\/td>\n

              		\n

              10%<\/p>\n<\/td>\n<\/tr>\n

              \n

              Exams<\/p>\n<\/td>\n

              		\n

              30%<\/p>\n<\/td>\n<\/tr>\n

              \n

              \u00a0<\/strong><\/p>\n<\/td>\n

              		\n

              100%<\/strong><\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/td>\n

              		\n\n\n\n\n\n\n\n\n\n
              \n

              Grading Scale<\/strong><\/p>\n<\/td>\n<\/tr>\n

              \n

              94 \u2013 100<\/p>\n<\/td>\n

              		\n

              A<\/p>\n<\/td>\n

              		\n

              73 \u2013 76<\/p>\n<\/td>\n

              		\n

              C<\/p>\n<\/td>\n<\/tr>\n

              \n

              90 \u2013 93<\/p>\n<\/td>\n

              		\n

              A-<\/p>\n<\/td>\n

              		\n

              70 \u2013 72<\/p>\n<\/td>\n

              		\n

              C-<\/p>\n<\/td>\n<\/tr>\n

              \n

              87 \u2013 89<\/p>\n<\/td>\n

              		\n

              B+<\/p>\n<\/td>\n

              		\n

              67 \u2013 69<\/p>\n<\/td>\n

              		\n

              D+<\/p>\n<\/td>\n<\/tr>\n

              \n

              83 \u2013 86<\/p>\n<\/td>\n

              		\n

              B<\/p>\n<\/td>\n

              		\n

              63 \u2013 66<\/p>\n<\/td>\n

              		\n

              D<\/p>\n<\/td>\n<\/tr>\n

              \n

              80 \u2013 82<\/p>\n<\/td>\n

              		\n

              B-<\/p>\n<\/td>\n

              		\n

              60 \u2013 62<\/p>\n<\/td>\n

              		\n

              D-<\/p>\n<\/td>\n<\/tr>\n

              \n

              77 \u2013 79<\/p>\n<\/td>\n

              		\n

              C+<\/p>\n<\/td>\n

              		\n

              Below 60<\/p>\n<\/td>\n

              		\n

              F<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

              Grading Criteria<\/strong><\/h3>\n

              The following criteria are used for evaluating assignments. You can roughly translate a letter grade as the midpoint in the scale (for example, an A- equates to a 91.5).<\/p>\n\n\n\n\n\n\n\n
              \n

              Criteria<\/strong><\/p>\n<\/td>\n

              		\n

              Grade<\/strong><\/p>\n<\/td>\n<\/tr>\n

              \n

              The assignment consistently exceeds expectations. It demonstrates originality of thought and creativity throughout. Beyond completing all of the required elements, new concepts and ideas are detailed that transcend general discussions along similar topic areas. There are no mechanical, grammatical, or organization issues that detract from the ideas.<\/p>\n<\/td>\n

              		\n

              A- or A<\/p>\n<\/td>\n<\/tr>\n

              \n

              The assignment consistently meets expectations. It contains all the information prescribed for the assignment and demonstrates a command of the subject matter. There is sufficient detail to cover the subject completely but not too much as to be distracting. There may be some procedural issues, such as grammar or organizational challenges, but these do not significantly detract from the intended assignment goals.<\/p>\n<\/td>\n

              		\n

              B-, B, B+<\/p>\n<\/td>\n<\/tr>\n

              \n

              The assignment fails to consistently meet expectations. That is, the assignment is complete but contains problems that detract from the intended goals. These issues may be relating to content detail, be grammatical, or be a general lack of clarity. Other problems might include not fully following assignment directions.<\/p>\n<\/td>\n

              		\n

              C-, C, C+<\/p>\n<\/td>\n<\/tr>\n

              \n

              \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 The assignment constantly fails to meet expectations. It is incomplete or in some other way consistently fails to demonstrate a firm grasp of the assigned material.<\/p>\n<\/td>\n

              		\n

              Below C-<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

              Late Assignment Policy<\/h3>\n

              An assignment is considered late if it is turned in after the assignment deadlines stated above.\u00a0 No late assignments will be accepted without penalty unless arrangements for validated unusual or unforeseen situations have been made.<\/p>\n