Instructor’s manual available with qualifying course adoption
The headline-grabbing financial scandals of recent years have led to a great urgency regarding organizational governance and security. Information technology is the engine that runs modern organizations, and as such, it must be well-managed and controlled. Organizations and individuals are dependent on network environment technologies, increasing the importance of security and privacy. The field has answered this sense of urgency with advances that have improved the ability to both control the technology and audit the information that is the lifeblood of modern business.
Reflects the Latest Technological Advances
Updated and revised, this third edition of Information Technology Control and Audit continues to present a comprehensive overview for IT professionals and auditors. Aligned to the CobiT control objectives, it provides a fundamental understanding of IT governance, controls, auditing applications, systems development, and operations.
Demonstrating why controls and audits are critical, and defining advances in technology designed to support them, this volume meets the increasing need for audit and control professionals to understand information technology and the controls required to manage this key resource.
A Powerful Primer for the CISA and CGEIT Exams
Supporting and analyzing the CobiT model, this text prepares IT professionals for the CISA and CGEIT exams. With summary sections, exercises, review questions, and references for further readings, it promotes the mastery of the concepts and practical implementation of controls needed to effectively manage information technology resources.
New in the Third Edition:
I. A Foundation for IT Audit and Control
Information Technology Environment: Why Are Controls and Audit Important?
The Legal Environment and Its Impact on Information Technology
Audit and Review: Its Role in Information Technology
The Audit Process in an Information Technology Environment
Auditing Information Technology Using Computer-Assisted Audit Tools and Techniques
Managing IT Audit
IT Auditing in the New Millennium
II. Auditing IT Planning and Organization
Strategy and Standards
Process and Quality Management
III. IT Acquisition and Implementation
IT Project Management
Software Development and Implementation
Application Controls and Maintenance
IV. IT Delivery and Support
Service Desk and Problem Management
Security and Service Continuity
V. Advanced Topics
Enterprise Resource Planning
Praise for the First Edition:
The book is very useful for beginners as well as practitioners …well written and presented. ... should provide resiliency to IT security in the emerging cyberworld.
— Information Systems Control Journal
|Cross Platform||October 30, 2009||Resources that aid in developing and teaching the various subject areas covered in IT audit courses.||click on http://www.itcontrolandaudit.com/|