Dimitris N. Chorafas
Published October 29, 2008
Reference - 305 Pages - 36 B/W Illustrations
ISBN 9781420086171 - CAT# AU6170
For Instructors Request Inspection Copy
For Librarians Available on Taylor & Francis eBooks >>
Information technology auditing and Sarbanes-Oxley compliance have several overlapping characteristics. They both require ethical accounting practices, focused auditing activities, a functioning system of internal control, and a close watch by the board’s audit committee and CEO. Written as a contribution to the accounting and auditing professions as well as to IT practitioners, IT Auditing and Sarbanes-Oxley Compliance: Key Strategies for Business Improvement links these two key business strategies and explains how to perform IT auditing in a comprehensive and strategic manner.
Based on 46 years of experience as a consultant to the boards of major corporations in manufacturing and banking, the author addresses objectives, practices, and business opportunities expected from auditing information systems. Topics discussed include the concept of internal control, auditing functions, internal and external auditors, and the responsibilities of the board of directors.
The book uses several case studies to illustrate and clarify the material. Its chapters analyze the underlying reasons for failures in IT projects and how they can be avoided, examine critical technical questions concerning information technology, discuss problems related to system reliability and response time, and explore issues of compliance.
The book concludes by presenting readers with a "what if" scenario. If Sarbannes-Oxley legislation had passed the U.S. Congress in the late 1990s or even 2000, how might this have influenced the financial statements of Enron and Worldcom? We can never truly know the answer, but if companies make use of the procedures in this book, debacles such as these – and those which led to the 2007-2008 credit and banking crisis – will remain a distant memory.
Internal Control and Information Technology
Case Studies on Internal Control’s Contribution
Internal and External Audit
The Board’s Accountability for Audit
CASE STUDIES ON AUDITING A COMPANY’S INFORMATION TECHNOLOGY
Auditing the Information Technology Functions
Strategic I.T. Auditing: A Case Study
A Constructive View – Suggestions for IT Restructuring
A Broader Perspective of IT Auditing
TECHNICAL EXAMPLES IN AUDITING IT FUNCTIONS
Auditing IT Response Time and Reliability
Auditing the Security System
CAN IT HELP IN COMPLIANCE? THE CASE OF SOX
Sarbanes-Oxley Compliance and IT’s Contribution
What If: Backtesting Sarbanes-Oxley