Date of Award
Master of Business Administration
College of Business and Public Administration
The purpose of this study is that formalized policy specifications and focused penetration testing are needed to effectively audit any information system. Designing and maintaining the security system information is the primary duty of the cyber security professional. In today's world, nearly all government agencies manage some form of financial, defense, national security, and/or privacy information security policies. It is also necessary in this environment that agencies are accountable for auditing the security systems that protect this information.
Brough, Barbara Ann, "Developing focused auditing tools: A practical framework for creating formalized multi-level security policy specifications" (2013). Theses Digitization Project. 3965.