Buch, Englisch, 464 Seiten, Format (B × H): 183 mm x 260 mm, Gewicht: 1056 g
Reihe: Wiley Corporate F&A
Buch, Englisch, 464 Seiten, Format (B × H): 183 mm x 260 mm, Gewicht: 1056 g
Reihe: Wiley Corporate F&A
ISBN: 978-1-118-14761-0
Verlag: Wiley
Step-by-step guide to successful implementation and control of IT systems--including the Cloud
Many auditors are unfamiliar with the techniques they need to know to efficiently and effectively determine whether information systems are adequately protected. Now in a Second Edition, Auditor's Guide to IT Auditing presents an easy, practical guide for auditors that can be applied to all computing environments.
* Follows the approach used by the Information System Audit and Control Association's model curriculum, making this book a practical approach to IS auditing
* Serves as an excellent study guide for those preparing for the CISA and CISM exams
* Includes discussion of risk evaluation methodologies, new regulations, SOX, privacy, banking, IT governance, CobiT, outsourcing, network management, and the Cloud
As networks and enterprise resource planning systems bring resources together, and as increasing privacy violations threaten more organization, information systems integrity becomes more important than ever. Auditor's Guide to IT Auditing, Second Edition empowers auditors to effectively gauge the adequacy and effectiveness of information systems controls.
Autoren/Hrsg.
Fachgebiete
Weitere Infos & Material
Preface
PART I IT Audit Process
Chapter 1 Technology and Audit
Chapter 2 IT Audit Function Knowledge
Chapter 3 IT Risk and Fundamental Auditing Concepts
Chapter 4 Standards and Guidelines for IT Auditing
Chapter 5 Internal Controls Concepts Knowledge
Chapter 6 Risk Management of the IT Function
Chapter 7 Audit Planning Process
Chapter 8 Audit Management
Chapter 9 Audit Evidence Process
Chapter 10 Audit Reporting Follow-up
Part II Information Technology Governance
Chapter 11 Management
Chapter 12 Strategic Planning
Chapter 13 Management Issues
Chapter 14 Support Tools and Frameworks
Chapter 15 Governance Techniques
Part III Systems and Infrastructure Lifecycle Management
Chapter 16 Information Systems Planning
Chapter 17 Information Management and Usage
Chapter 18 Development, Acquisition, and Maintenance of Information Systems
Chapter 19 Impact of Information Technology on the Business Processes and Solutions
Chapter 20 Software Development
Chapter 21 Audit and Control of Purchased Packages and Services
Chapter 22 Audit Role in Feasibility Studies and Conversions
Chapter 23 Audit and Development of Application Controls
Part IV Information Technology Service Delivery and Support
Chapter 24 Technical Infrastructure
Chapter 25 Service Center Management
Part V Protection of Information Assets
Chapter 26 Information Assets Security Management
Chapter 27 Logical Information Technology Security
Chapter 28 Applied Information Technology Security
Chapter 29 Physical and Environmental Security
Part VI Business Continuity and Disaster Recovery
Chapter 30 Protection of the Information Technology Architecture and Assets: Disaster Recovery Planning
Chapter 31 Displacement Control
PART VII Advanced IT Auditing
Chapter 32 Auditing E-commerce Systems
Chapter 33 Auditing UNIX/Linux
Chapter 34 Auditing Windows VISTA and Windows 7
Chapter 35 Foiling the System Hackers
Chapter 36 Preventing and Investigating Information Technology Fraud
Appendix A Ethics and Standards for the IS Auditor
Appendix B Audit Program for Application Systems Auditing
Appendix C Logical Access Control Audit Program
Appendix D Audit Program for Auditing UNIX/Linux Environments
Appendix E Audit Program for Auditing Windows VISTA and Windows 7 Environments
About the Author
About the Website
Index
