Author: Stephen D. Gantz
Publisher: Elsevier
ISBN: 0124171761
Category : Computers
Languages : en
Pages : 271
Book Description
The Basics of IT Audit: Purposes, Processes, and Practical Information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA. IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements. This guide provides you with all the necessary information if you're preparing for an IT audit, participating in an IT audit or responding to an IT audit. - Provides a concise treatment of IT auditing, allowing you to prepare for, participate in, and respond to the results - Discusses the pros and cons of doing internal and external IT audits, including the benefits and potential drawbacks of each - Covers the basics of complex regulations and standards, such as Sarbanes-Oxley, SEC (public companies), HIPAA, and FFIEC - Includes most methods and frameworks, including GAAS, COSO, COBIT, ITIL, ISO (27000), and FISCAM
The Basics of IT Audit
Author: Stephen D. Gantz
Publisher: Elsevier
ISBN: 0124171761
Category : Computers
Languages : en
Pages : 271
Book Description
The Basics of IT Audit: Purposes, Processes, and Practical Information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA. IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements. This guide provides you with all the necessary information if you're preparing for an IT audit, participating in an IT audit or responding to an IT audit. - Provides a concise treatment of IT auditing, allowing you to prepare for, participate in, and respond to the results - Discusses the pros and cons of doing internal and external IT audits, including the benefits and potential drawbacks of each - Covers the basics of complex regulations and standards, such as Sarbanes-Oxley, SEC (public companies), HIPAA, and FFIEC - Includes most methods and frameworks, including GAAS, COSO, COBIT, ITIL, ISO (27000), and FISCAM
Publisher: Elsevier
ISBN: 0124171761
Category : Computers
Languages : en
Pages : 271
Book Description
The Basics of IT Audit: Purposes, Processes, and Practical Information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA. IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements. This guide provides you with all the necessary information if you're preparing for an IT audit, participating in an IT audit or responding to an IT audit. - Provides a concise treatment of IT auditing, allowing you to prepare for, participate in, and respond to the results - Discusses the pros and cons of doing internal and external IT audits, including the benefits and potential drawbacks of each - Covers the basics of complex regulations and standards, such as Sarbanes-Oxley, SEC (public companies), HIPAA, and FFIEC - Includes most methods and frameworks, including GAAS, COSO, COBIT, ITIL, ISO (27000), and FISCAM
The Basics of Quality Auditing
Author: Ronald Blank
Publisher: CRC Press
ISBN: 1482262851
Category : Business & Economics
Languages : en
Pages : 78
Book Description
As the latest addition to "The Basics" Series, The Basics of Quality Auditing provides an inexpensive and easy-to-follow WHO, WHAT, WHERE, WHEN, WHY and HOW format that is perfect for training. It discusses the four main questions all audits should answer: Is there a procedure? Is the procedure being followed? Does the procedure meet the needs of t
Publisher: CRC Press
ISBN: 1482262851
Category : Business & Economics
Languages : en
Pages : 78
Book Description
As the latest addition to "The Basics" Series, The Basics of Quality Auditing provides an inexpensive and easy-to-follow WHO, WHAT, WHERE, WHEN, WHY and HOW format that is perfect for training. It discusses the four main questions all audits should answer: Is there a procedure? Is the procedure being followed? Does the procedure meet the needs of t
IT Auditing and Application Controls for Small and Mid-Sized Enterprises
Author: Jason Wood
Publisher: John Wiley & Sons
ISBN: 1118233190
Category : Business & Economics
Languages : en
Pages : 448
Book Description
Essential guidance for the financial auditor in need of a working knowledge of IT If you're a financial auditor needing working knowledge of IT and application controls, Automated Auditing Financial Applications for Small and Mid-Sized Businesses provides you with the guidance you need. Conceptual overviews of key IT auditing issues are included, as well as concrete hands-on tips and techniques. Inside, you'll find background and guidance with appropriate reference to material published by ISACA, AICPA, organized to show the increasing complexity of systems, starting with general principles and progressing through greater levels of functionality. Provides straightforward IT guidance to financial auditors seeking to develop quality and efficacy of software controls Offers small- and middle-market business auditors relevant IT coverage Covers relevant applications, including MS Excel, Quickbooks, and report writers Written for financial auditors practicing in the small to midsized business space The largest market segment in the United States in quantity and scope is the small and middle market business, which continues to be the source of economic growth and expansion. Uniquely focused on the IT needs of auditors serving the small to medium sized business, Automated Auditing Financial Applications for Small and Mid-Sized Businesses delivers the kind of IT coverage you need for your organization.
Publisher: John Wiley & Sons
ISBN: 1118233190
Category : Business & Economics
Languages : en
Pages : 448
Book Description
Essential guidance for the financial auditor in need of a working knowledge of IT If you're a financial auditor needing working knowledge of IT and application controls, Automated Auditing Financial Applications for Small and Mid-Sized Businesses provides you with the guidance you need. Conceptual overviews of key IT auditing issues are included, as well as concrete hands-on tips and techniques. Inside, you'll find background and guidance with appropriate reference to material published by ISACA, AICPA, organized to show the increasing complexity of systems, starting with general principles and progressing through greater levels of functionality. Provides straightforward IT guidance to financial auditors seeking to develop quality and efficacy of software controls Offers small- and middle-market business auditors relevant IT coverage Covers relevant applications, including MS Excel, Quickbooks, and report writers Written for financial auditors practicing in the small to midsized business space The largest market segment in the United States in quantity and scope is the small and middle market business, which continues to be the source of economic growth and expansion. Uniquely focused on the IT needs of auditors serving the small to medium sized business, Automated Auditing Financial Applications for Small and Mid-Sized Businesses delivers the kind of IT coverage you need for your organization.
eAuditing Fundamentals
Author: J.P. Russell
Publisher: Quality Press
ISBN: 0873898486
Category : Business & Economics
Languages : en
Pages : 185
Book Description
The purpose of this book is to provide hands-on guidelines for using electronic communication tools as part of the auditing process. The pros and cons of conducting e-audits and their consequences will be reviewed. There are situations when e-auditing techniques are more efficient, and other times they may be less efficient and even lead to questionable audit report conclusions. In this book we provide proven techniques for conducting remote audits (eAudits) and explore eAuditing practices to help organizations make informed decisions regarding their use. A ten point eAudit program implementation checklist is included with the book. Combined, the two authors have over 20 years experience conducting remote audits and using virtual communication technologies.
Publisher: Quality Press
ISBN: 0873898486
Category : Business & Economics
Languages : en
Pages : 185
Book Description
The purpose of this book is to provide hands-on guidelines for using electronic communication tools as part of the auditing process. The pros and cons of conducting e-audits and their consequences will be reviewed. There are situations when e-auditing techniques are more efficient, and other times they may be less efficient and even lead to questionable audit report conclusions. In this book we provide proven techniques for conducting remote audits (eAudits) and explore eAuditing practices to help organizations make informed decisions regarding their use. A ten point eAudit program implementation checklist is included with the book. Combined, the two authors have over 20 years experience conducting remote audits and using virtual communication technologies.
Auditing Information Systems
Author: Jack J. Champlain
Publisher: John Wiley & Sons
ISBN: 0471466298
Category : Business & Economics
Languages : en
Pages : 450
Book Description
Have you been asked to perform an information systems audit and don't know where to start? Examine a company's hardware, software, and data organization and processing methods to ensure quality control and security with this easy, practical guide to auditing computer systems--the tools necessary to implement an effective IS audit. In nontechnical language and following the format of an IS audit program, you'll gain insight into new types of security certifications (e.g., TruSecure, CAP SysTrust, CPA WebTrust) as well as the importance of physical security controls, adequate insurance, and digital surveillance systems. Order your copy today!
Publisher: John Wiley & Sons
ISBN: 0471466298
Category : Business & Economics
Languages : en
Pages : 450
Book Description
Have you been asked to perform an information systems audit and don't know where to start? Examine a company's hardware, software, and data organization and processing methods to ensure quality control and security with this easy, practical guide to auditing computer systems--the tools necessary to implement an effective IS audit. In nontechnical language and following the format of an IS audit program, you'll gain insight into new types of security certifications (e.g., TruSecure, CAP SysTrust, CPA WebTrust) as well as the importance of physical security controls, adequate insurance, and digital surveillance systems. Order your copy today!
Information Technology Control and Audit, Fifth Edition
Author: Angel R. Otero
Publisher: CRC Press
ISBN: 0429877323
Category : Computers
Languages : en
Pages : 514
Book Description
The new fifth edition of Information Technology Control and Audit has been significantly revised to include a comprehensive overview of the IT environment, including revolutionizing technologies, legislation, audit process, governance, strategy, and outsourcing, among others. This new edition also outlines common IT audit risks, procedures, and involvement associated with major IT audit areas. It further provides cases featuring practical IT audit scenarios, as well as sample documentation to design and perform actual IT audit work. Filled with up-to-date audit concepts, tools, techniques, and references for further reading, this revised edition promotes the mastery of concepts, as well as the effective implementation and assessment of IT controls by organizations and auditors. For instructors and lecturers there are an instructor’s manual, sample syllabi and course schedules, PowerPoint lecture slides, and test questions. For students there are flashcards to test their knowledge of key terms and recommended further readings. Go to http://routledgetextbooks.com/textbooks/9781498752282/ for more information.
Publisher: CRC Press
ISBN: 0429877323
Category : Computers
Languages : en
Pages : 514
Book Description
The new fifth edition of Information Technology Control and Audit has been significantly revised to include a comprehensive overview of the IT environment, including revolutionizing technologies, legislation, audit process, governance, strategy, and outsourcing, among others. This new edition also outlines common IT audit risks, procedures, and involvement associated with major IT audit areas. It further provides cases featuring practical IT audit scenarios, as well as sample documentation to design and perform actual IT audit work. Filled with up-to-date audit concepts, tools, techniques, and references for further reading, this revised edition promotes the mastery of concepts, as well as the effective implementation and assessment of IT controls by organizations and auditors. For instructors and lecturers there are an instructor’s manual, sample syllabi and course schedules, PowerPoint lecture slides, and test questions. For students there are flashcards to test their knowledge of key terms and recommended further readings. Go to http://routledgetextbooks.com/textbooks/9781498752282/ for more information.
Introduction to Auditing
Author: Richard L. Ratliff
Publisher: Inst of Internal Auditors
ISBN: 9780894134722
Category : Business & Economics
Languages : en
Pages : 531
Book Description
Publisher: Inst of Internal Auditors
ISBN: 9780894134722
Category : Business & Economics
Languages : en
Pages : 531
Book Description
FISMA and the Risk Management Framework
Author: Daniel R. Philpott
Publisher: Newnes
ISBN: 1597496421
Category : Computers
Languages : en
Pages : 585
Book Description
FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security deals with the Federal Information Security Management Act (FISMA), a law that provides the framework for securing information systems and managing risk associated with information resources in federal government agencies. Comprised of 17 chapters, the book explains the FISMA legislation and its provisions, strengths and limitations, as well as the expectations and obligations of federal agencies subject to FISMA. It also discusses the processes and activities necessary to implement effective information security management following the passage of FISMA, and it describes the National Institute of Standards and Technology's Risk Management Framework. The book looks at how information assurance, risk management, and information systems security is practiced in federal government agencies; the three primary documents that make up the security authorization package: system security plan, security assessment report, and plan of action and milestones; and federal information security-management requirements and initiatives not explicitly covered by FISMA. This book will be helpful to security officers, risk managers, system owners, IT managers, contractors, consultants, service providers, and others involved in securing, managing, or overseeing federal information systems, as well as the mission functions and business processes supported by those systems. - Learn how to build a robust, near real-time risk management system and comply with FISMA - Discover the changes to FISMA compliance and beyond - Gain your systems the authorization they need
Publisher: Newnes
ISBN: 1597496421
Category : Computers
Languages : en
Pages : 585
Book Description
FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security deals with the Federal Information Security Management Act (FISMA), a law that provides the framework for securing information systems and managing risk associated with information resources in federal government agencies. Comprised of 17 chapters, the book explains the FISMA legislation and its provisions, strengths and limitations, as well as the expectations and obligations of federal agencies subject to FISMA. It also discusses the processes and activities necessary to implement effective information security management following the passage of FISMA, and it describes the National Institute of Standards and Technology's Risk Management Framework. The book looks at how information assurance, risk management, and information systems security is practiced in federal government agencies; the three primary documents that make up the security authorization package: system security plan, security assessment report, and plan of action and milestones; and federal information security-management requirements and initiatives not explicitly covered by FISMA. This book will be helpful to security officers, risk managers, system owners, IT managers, contractors, consultants, service providers, and others involved in securing, managing, or overseeing federal information systems, as well as the mission functions and business processes supported by those systems. - Learn how to build a robust, near real-time risk management system and comply with FISMA - Discover the changes to FISMA compliance and beyond - Gain your systems the authorization they need
IT Auditing Using Controls to Protect Information Assets, Third Edition
Author: Chris Davis
Publisher: McGraw Hill Professional
ISBN: 1260453235
Category : Computers
Languages : en
Pages : 577
Book Description
Secure Your Systems Using the Latest IT Auditing Techniques Fully updated to cover leading-edge tools and technologies, IT Auditing: Using Controls to Protect Information Assets, Third Edition, explains, step by step, how to implement a successful, enterprise-wide IT audit program. New chapters on auditing cybersecurity programs, big data and data repositories, and new technologies are included. This comprehensive guide describes how to assemble an effective IT audit team and maximize the value of the IT audit function. In-depth details on performing specific audits are accompanied by real-world examples, ready-to-use checklists, and valuable templates. Standards, frameworks, regulations, and risk management techniques are also covered in this definitive resource. • Build and maintain an internal IT audit function with maximum effectiveness and value • Audit entity-level controls and cybersecurity programs • Assess data centers and disaster recovery • Examine switches, routers, and firewalls • Evaluate Windows, UNIX, and Linux operating systems • Audit Web servers and applications • Analyze databases and storage solutions • Review big data and data repositories • Assess end user computer devices, including PCs and mobile devices • Audit virtualized environments • Evaluate risks associated with cloud computing and outsourced operations • Drill down into applications and projects to find potential control weaknesses • Learn best practices for auditing new technologies • Use standards and frameworks, such as COBIT, ITIL, and ISO • Understand regulations, including Sarbanes-Oxley, HIPAA, and PCI • Implement proven risk management practices
Publisher: McGraw Hill Professional
ISBN: 1260453235
Category : Computers
Languages : en
Pages : 577
Book Description
Secure Your Systems Using the Latest IT Auditing Techniques Fully updated to cover leading-edge tools and technologies, IT Auditing: Using Controls to Protect Information Assets, Third Edition, explains, step by step, how to implement a successful, enterprise-wide IT audit program. New chapters on auditing cybersecurity programs, big data and data repositories, and new technologies are included. This comprehensive guide describes how to assemble an effective IT audit team and maximize the value of the IT audit function. In-depth details on performing specific audits are accompanied by real-world examples, ready-to-use checklists, and valuable templates. Standards, frameworks, regulations, and risk management techniques are also covered in this definitive resource. • Build and maintain an internal IT audit function with maximum effectiveness and value • Audit entity-level controls and cybersecurity programs • Assess data centers and disaster recovery • Examine switches, routers, and firewalls • Evaluate Windows, UNIX, and Linux operating systems • Audit Web servers and applications • Analyze databases and storage solutions • Review big data and data repositories • Assess end user computer devices, including PCs and mobile devices • Audit virtualized environments • Evaluate risks associated with cloud computing and outsourced operations • Drill down into applications and projects to find potential control weaknesses • Learn best practices for auditing new technologies • Use standards and frameworks, such as COBIT, ITIL, and ISO • Understand regulations, including Sarbanes-Oxley, HIPAA, and PCI • Implement proven risk management practices
Auditing For Dummies
Author: Maire Loughran
Publisher: John Wiley & Sons
ISBN: 0470530715
Category : Business & Economics
Languages : en
Pages : 397
Book Description
The easy way to master the art of auditing Want to be an auditor and need to hone your investigating skills? Look no further. This friendly guide gives you an easy-to-understand explanation of auditing — from gathering financial statements and accounting information to analyzing a client's financial position. Packed with examples, it gives you everything you need to ace an auditing course and begin a career today. Auditing 101 — get a crash course in the world of auditing and a description of the types of tasks you'll be expected to perform during a typical day on the job It's risky business — find out about audit risk and arm yourself with the know-how to collect the right type of evidence to support your decisions Auditing in the real world — dig into tons of sample business records to perform your first audit Focus on finances — learn how both ends of the financial equation — balance sheet and income statement — need to be presented on your client's financial statements Seal the deal — get the lowdown on how to wrap up your audit and write your opinion After the audit — see the types of additional services that may be asked of you after you've issued your professional opinion
Publisher: John Wiley & Sons
ISBN: 0470530715
Category : Business & Economics
Languages : en
Pages : 397
Book Description
The easy way to master the art of auditing Want to be an auditor and need to hone your investigating skills? Look no further. This friendly guide gives you an easy-to-understand explanation of auditing — from gathering financial statements and accounting information to analyzing a client's financial position. Packed with examples, it gives you everything you need to ace an auditing course and begin a career today. Auditing 101 — get a crash course in the world of auditing and a description of the types of tasks you'll be expected to perform during a typical day on the job It's risky business — find out about audit risk and arm yourself with the know-how to collect the right type of evidence to support your decisions Auditing in the real world — dig into tons of sample business records to perform your first audit Focus on finances — learn how both ends of the financial equation — balance sheet and income statement — need to be presented on your client's financial statements Seal the deal — get the lowdown on how to wrap up your audit and write your opinion After the audit — see the types of additional services that may be asked of you after you've issued your professional opinion