Course: IT Auditing 5. You are the technology auditor for a midsize healthcare provider that has grown rapidly and has developed its own Electronic Medical Records (EMR) systems. With this rapid growth, it has been difficult for the Information Technology (IT) group to keep up with the hardware requirements and software changes. The CIO has performed an analysis of moving to a cloud computing solution. With this change, all IT functions would be handled by the third-party cloud provider. In addition, many organizations have lowered costs, including competing providers, allowing them to become more efficient and gain market share. One of the key benefits of cloud computing is the opportunity to replace up-front capital expenditure with low variable costs that scale as the business grows. You have been asked by the CIO to assist with the evaluation of its third party vendor management process and selection of a cloud provider for its electronic medical records. a. Describe the vendor risk management framework process that we discussed in class, and describe each of the four steps involved. b. When evaluating and selecting the third-party cloud provider, identify potential risks and audit strategies to consider.

Database System Concepts
7th Edition
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Chapter1: Introduction
Section: Chapter Questions
Problem 1PE
icon
Related questions
Question

Course: IT Auditing

5. You are the technology auditor for a midsize healthcare provider that has grown rapidly and has developed its own Electronic Medical Records (EMR) systems. With this rapid growth, it has been difficult for the Information Technology (IT) group to keep up with the hardware requirements and software changes. The CIO has performed an analysis of moving to a cloud computing solution. With this change, all IT functions would be handled by the third-party cloud provider. In addition, many organizations have lowered costs, including competing providers, allowing them to become more efficient and gain market share. One of the key benefits of cloud computing is the opportunity to replace up-front capital expenditure with low variable costs that scale as the business grows. You have been asked by the CIO to assist with the evaluation of its third party vendor management process and selection of a cloud provider for its electronic medical records.

a. Describe the vendor risk management framework process that we discussed in class, and describe each of the four steps involved.

b. When evaluating and selecting the third-party cloud provider, identify potential risks and audit strategies to consider.

Expert Solution
trending now

Trending now

This is a popular solution!

steps

Step by step

Solved in 4 steps

Blurred answer
Knowledge Booster
Web Technologies
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.
Recommended textbooks for you
Database System Concepts
Database System Concepts
Computer Science
ISBN:
9780078022159
Author:
Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:
McGraw-Hill Education
Starting Out with Python (4th Edition)
Starting Out with Python (4th Edition)
Computer Science
ISBN:
9780134444321
Author:
Tony Gaddis
Publisher:
PEARSON
Digital Fundamentals (11th Edition)
Digital Fundamentals (11th Edition)
Computer Science
ISBN:
9780132737968
Author:
Thomas L. Floyd
Publisher:
PEARSON
C How to Program (8th Edition)
C How to Program (8th Edition)
Computer Science
ISBN:
9780133976892
Author:
Paul J. Deitel, Harvey Deitel
Publisher:
PEARSON
Database Systems: Design, Implementation, & Manag…
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781337627900
Author:
Carlos Coronel, Steven Morris
Publisher:
Cengage Learning
Programmable Logic Controllers
Programmable Logic Controllers
Computer Science
ISBN:
9780073373843
Author:
Frank D. Petruzella
Publisher:
McGraw-Hill Education