To ensure continued availability of both software and hardware, the IT department should implement monitoring processes. These processes should include performance, capacity, and network monitoring. The IT organization should have a performance-monitoring plan that defines service levels of hardware and software. The metrics associated with service levels generally include service availability (uptime), support levels, throughput, and responsiveness. The organization should compare stated service levels against problem logs, processing schedules, job accounting system reports, and preventive maintenance reports, to ensure that hardware availability and utilization meet the stated service levels. As an example, throughput should measure the amount of work that the system performs over a period of time. In looking at an online transaction system, the number of transactions per second/minute can be used as a throughput index.
Throughput is a performance measure of how many transactions per second an online transaction-processing system is capable of. The IS auditor might need to review specific reports associated with availability and response. This list identifies log types and characteristics:
|