SEC592 IT Governance
Week 1 Discussion
DQ1 IT ROLE IN BUSINESS
What role does IT play in today’s modern business world?
How can IT be viewed as a competitive differentiator?
DQ2 IT IMPLEMENTATION
What are some things that can go wrong with IT?
Why is it so important to control IT implementation?
SEC592 IT Governance
Week 2 Discussion
DQ1 IT AUDITS
How can audits help to manage IT implementation?
DQ2 DOCUMENT ARCHIVE AND RETENTION
How can a document archive and retention policy serve as an administrative control?
Does your company have an archive and retention policy?
Yes, can you outline it?
No, what do you think is needed?
SEC592 IT Governance
Week 3 Discussion
DQ1 SEGREGATION OF DUTIES
What specific risks can an organization be exposed to when a conflict exists in their segregation of duties (SOD)? What should organizations do to minimize this risk?
DQ2 VERIFICATION AND AUDITING
How does verification and auditing reinforce management objectives and strategic goals?
SEC592 IT Governance
Week 4 Discussion
DQ1 COST OF REGULATION
Who should bear the cost of regulatory laws such as SOX, HIPAA, FERPA, and GLB? Should this be the responsibility of the government, shareholders, or someone else?
DQ2 DUE CARE
What do we mean when we use the term “due care” in IT Governance?
SEC592 IT Governance
Week 5 Discussion
DQ1 ASSESSING PERFORMANCE
Two postings are required this week. One to address the question and the other (or more) to collaborate with a classmate.
How can COBIT’s controls help an organization measure and improve its business performance?
DQ2 LEARNING ORGANIZATION
Two postings are required this week. One to address the question and the other (or more) to collaborate with a classmate.
What is a Learning Organization and why is it important?
SEC592 IT Governance
Week 6 Discussion
DQ1 COMPLIANCE IN THE PRIVATE AND NON-PROFIT SECTORS
Two postings are required in this topic.
Should all organizations be subject to SOX-type compliance?
Why or why not?
Alternative Task and Question:
This week I would like you to visit the following web site:
http://www.sec.gov/edgar.shtml (Links to an external site.)Links to an external site.
Tell us what is here and why it has value.
DQ2 THE PUBLIC’S RIGHT TO KNOW
Two postings are required in this topic.
Does the public have the right to know how organizations implement their IT systems?
Why or why not?
Alternative Task and Question (repeated from prior topic):
This week I would like you to visit the following web site:
http://www.sec.gov/edgar.shtml (Links to an external site.)Links to an external site.
Tell us what is here and why it has value.
SEC592 IT Governance
Week 7 Discussion
DQ1 FORENSIC CASES, TOOLS AND SERVICES
Standard Question
Two postings are required.
In addition to the Labs (Lab 1 is awesome), we shall explore all of these topics:
Forensic Cases from the Real World
Forensic Tools
Forensic Services
Select any topic and tell us two things: What did you find and how can we use it.
DQ2 EMPLOYEE MISCONDUCT
Two postings are required in this topic. Check back after your postings and see if there are any questions for you to answer. There are two different topics here: Standard and Alternative.
Standard Discussion Question
If several employees in your organization were suspected of fraud, how would you handle their computer equipment? Assume they are in several different departments.
What steps would you take to preserve evidence?
Alternative From the Real World – This is actually a Lab
Background:
There are several files to view in “Files” > “Week 7”, in a specific order.
They are as follows:
(1) verisign 1.jpg
(2) verisign 2.jpg
(3) verisign 3.jpg
(4) VeriSign COMPLAINT FOR VIOLATION.pdf
(5) VRSN-ExecFraudBlog.pdf
Files 1, 2 and 3 show you the share price of VeriSign’s stock going from about $10, up to $250, down to $7 and then after many years, up to about $160.
File 4 is the actual COMPLAINT FOR VIOLATION OF THE FEDERAL SECURITIES LAWS against VeriSign. Read the “Introduction” section. Here is a sample. “As part of their effort to boost the price of VeriSign stock, defendants misrepresented VeriSign’s true prospects in an effort to conceal VeriSign’s improper acts until they were able to sell at least $26 million worth of their own VeriSign stock and use VeriSign’s shares to acquire companies in stock-for-stock transactions….”
File 4 is a summary of the Verisign Fraud – Class Action Lawsuit. Read the “Issues” section, Here is a sample. “… the executives were not held personally responsible for their deception.”.
In File 4, read the “Scienter” section. Here is a sample: ” The plaintiffs’ complaints allege that CTO Ethan Cohen, COO Donohoe, and CEO David Cohen had created the technology to over bill customers, used undocumented invoices to eliminate customer’s ability to verify the accuracy, and even bragged about their billing scheme to other managers about the increased billing they’d mastermind.” Note: When pleading scienter, parties “must allege facts that give rise to a strong inference of fraudulent intent.”
Question: Can today’s law and technology, really stop this type of a fraud from happening again? How, or why not?
Recent Comments