IT Auditing Using Controls to Protect Information Assets, Third Edition

IT Auditing Using Controls to Protect Information Assets, Third Edition
Author :
Publisher : McGraw Hill Professional
Total Pages : 577
Release :
ISBN-10 : 9781260453232
ISBN-13 : 1260453235
Rating : 4/5 (32 Downloads)

Synopsis IT Auditing Using Controls to Protect Information Assets, Third Edition by : Chris Davis

Secure Your Systems Using the Latest IT Auditing Techniques Fully updated to cover leading-edge tools and technologies, IT Auditing: Using Controls to Protect Information Assets, Third Edition, explains, step by step, how to implement a successful, enterprise-wide IT audit program. New chapters on auditing cybersecurity programs, big data and data repositories, and new technologies are included. This comprehensive guide describes how to assemble an effective IT audit team and maximize the value of the IT audit function. In-depth details on performing specific audits are accompanied by real-world examples, ready-to-use checklists, and valuable templates. Standards, frameworks, regulations, and risk management techniques are also covered in this definitive resource. • Build and maintain an internal IT audit function with maximum effectiveness and value • Audit entity-level controls and cybersecurity programs • Assess data centers and disaster recovery • Examine switches, routers, and firewalls • Evaluate Windows, UNIX, and Linux operating systems • Audit Web servers and applications • Analyze databases and storage solutions • Review big data and data repositories • Assess end user computer devices, including PCs and mobile devices • Audit virtualized environments • Evaluate risks associated with cloud computing and outsourced operations • Drill down into applications and projects to find potential control weaknesses • Learn best practices for auditing new technologies • Use standards and frameworks, such as COBIT, ITIL, and ISO • Understand regulations, including Sarbanes-Oxley, HIPAA, and PCI • Implement proven risk management practices

IT Auditing: Using Controls to Protect Information Assets

IT Auditing: Using Controls to Protect Information Assets
Author :
Publisher : McGraw Hill Professional
Total Pages : 417
Release :
ISBN-10 : 9780071631761
ISBN-13 : 0071631763
Rating : 4/5 (61 Downloads)

Synopsis IT Auditing: Using Controls to Protect Information Assets by : Chris Davis

Protect Your Systems with Proven IT Auditing Strategies "A must-have for auditors and IT professionals." -Doug Dexter, CISSP-ISSMP, CISA, Audit Team Lead, Cisco Systems, Inc. Plan for and manage an effective IT audit program using the in-depth information contained in this comprehensive resource. Written by experienced IT audit and security professionals, IT Auditing: Using Controls to Protect Information Assets covers the latest auditing tools alongside real-world examples, ready-to-use checklists, and valuable templates. Inside, you'll learn how to analyze Windows, UNIX, and Linux systems; secure databases; examine wireless networks and devices; and audit applications. Plus, you'll get up-to-date information on legal standards and practices, privacy and ethical issues, and the CobiT standard. Build and maintain an IT audit function with maximum effectiveness and value Implement best practice IT audit processes and controls Analyze UNIX-, Linux-, and Windows-based operating systems Audit network routers, switches, firewalls, WLANs, and mobile devices Evaluate entity-level controls, data centers, and disaster recovery plans Examine Web servers, platforms, and applications for vulnerabilities Review databases for critical controls Use the COSO, CobiT, ITIL, ISO, and NSA INFOSEC methodologies Implement sound risk analysis and risk management practices Drill down into applications to find potential control weaknesses

Information Security Risk Management for ISO 27001/ISO 27002, third edition

Information Security Risk Management for ISO 27001/ISO 27002, third edition
Author :
Publisher : IT Governance Ltd
Total Pages : 181
Release :
ISBN-10 : 9781787781375
ISBN-13 : 1787781372
Rating : 4/5 (75 Downloads)

Synopsis Information Security Risk Management for ISO 27001/ISO 27002, third edition by : Alan Calder

Ideal for risk managers, information security managers, lead implementers, compliance managers and consultants, as well as providing useful background material for auditors, this book will enable readers to develop an ISO 27001-compliant risk assessment framework for their organisation and deliver real, bottom-line business benefits.

Information Technology Control and Audit, Fifth Edition

Information Technology Control and Audit, Fifth Edition
Author :
Publisher : CRC Press
Total Pages : 514
Release :
ISBN-10 : 9780429877322
ISBN-13 : 0429877323
Rating : 4/5 (22 Downloads)

Synopsis Information Technology Control and Audit, Fifth Edition by : Angel R. Otero

The new fifth edition of Information Technology Control and Audit has been significantly revised to include a comprehensive overview of the IT environment, including revolutionizing technologies, legislation, audit process, governance, strategy, and outsourcing, among others. This new edition also outlines common IT audit risks, procedures, and involvement associated with major IT audit areas. It further provides cases featuring practical IT audit scenarios, as well as sample documentation to design and perform actual IT audit work. Filled with up-to-date audit concepts, tools, techniques, and references for further reading, this revised edition promotes the mastery of concepts, as well as the effective implementation and assessment of IT controls by organizations and auditors. For instructors and lecturers there are an instructor’s manual, sample syllabi and course schedules, PowerPoint lecture slides, and test questions. For students there are flashcards to test their knowledge of key terms and recommended further readings. Go to http://routledgetextbooks.com/textbooks/9781498752282/ for more information.

Third in Command

Third in Command
Author :
Publisher : Xlibris Corporation
Total Pages : 185
Release :
ISBN-10 : 9781456871062
ISBN-13 : 1456871064
Rating : 4/5 (62 Downloads)

Synopsis Third in Command by : Matthew Skala

Speaker of the House Anita Killington is thrust into temporary power when a hostage situation at a State Funeral leaves both the President and Vice-President incapacitated. As she battles to save the lives of the thousands of people held hostage, she realizes nothing is what it appears to be and nobody seems to be telling her the truth. Teaming up with a young Secret Service Agent and untrusti ng members of her own government, Killington must sort through the evidence to determine how security was compromised, who on the inside can be trusted, and what the real moti vati on behind the attack is, all while attempting to avert a seemingly-related International crisis. One thing is for sure, getting there will be no easy task for the Speaker whose limited time frame leaves the President, the hostages, and the nation in jeopardy. From the majestic beauty of the Basilica, to the deep-dark secrets of the White House bunker, to the backwoods of Maryland and the rough airspace above South Korea, one thing is certain; with every new piece of information comes twists and turns that leave her trusting nobody and questioning the most basic tenets of her beliefs.

Network Security Auditing

Network Security Auditing
Author :
Publisher : Cisco Press
Total Pages : 700
Release :
ISBN-10 : 9781587059421
ISBN-13 : 1587059428
Rating : 4/5 (21 Downloads)

Synopsis Network Security Auditing by : Chris Jackson

This complete new guide to auditing network security is an indispensable resource for security, network, and IT professionals, and for the consultants and technology partners who serve them. Cisco network security expert Chris Jackson begins with a thorough overview of the auditing process, including coverage of the latest regulations, compliance issues, and industry best practices. The author then demonstrates how to segment security architectures into domains and measure security effectiveness through a comprehensive systems approach. Network Security Auditing thoroughly covers the use of both commercial and open source tools to assist in auditing and validating security policy assumptions. The book also introduces leading IT governance frameworks such as COBIT, ITIL, and ISO 17799/27001, explaining their values, usages, and effective integrations with Cisco security products.

The Basics of IT Audit

The Basics of IT Audit
Author :
Publisher : Elsevier
Total Pages : 271
Release :
ISBN-10 : 9780124171763
ISBN-13 : 0124171761
Rating : 4/5 (63 Downloads)

Synopsis The Basics of IT Audit by : Stephen D. Gantz

The Basics of IT Audit: Purposes, Processes, and Practical Information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA. IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements. This guide provides you with all the necessary information if you're preparing for an IT audit, participating in an IT audit or responding to an IT audit. - Provides a concise treatment of IT auditing, allowing you to prepare for, participate in, and respond to the results - Discusses the pros and cons of doing internal and external IT audits, including the benefits and potential drawbacks of each - Covers the basics of complex regulations and standards, such as Sarbanes-Oxley, SEC (public companies), HIPAA, and FFIEC - Includes most methods and frameworks, including GAAS, COSO, COBIT, ITIL, ISO (27000), and FISCAM

Accounting Information Systems

Accounting Information Systems
Author :
Publisher : John Wiley & Sons
Total Pages : 592
Release :
ISBN-10 : 9781119577836
ISBN-13 : 1119577837
Rating : 4/5 (36 Downloads)

Synopsis Accounting Information Systems by : Leslie Turner

Accounting Information Systems provides a comprehensive knowledgebase of the systems that generate, evaluate, summarize, and report accounting information. Balancing technical concepts and student comprehension, this textbook introduces only the most-necessary technology in a clear and accessible style. The text focuses on business processes and accounting and IT controls, and includes discussion of relevant aspects of ethics and corporate governance. Relatable real-world examples and abundant end-of-chapter resources reinforce Accounting Information Systems (AIS) concepts and their use in day-to-day operation. Now in its fourth edition, this popular textbook explains IT controls using the AICPA Trust Services Principles framework—a comprehensive yet easy-to-understand framework of IT controls—and allows for incorporating hands-on learning to complement theoretical concepts. A full set of pedagogical features enables students to easily comprehend the material, understand data flow diagrams and document flowcharts, discuss case studies and examples, and successfully answer end-of-chapter questions. The book’s focus on ease of use, and its straightforward presentation of business processes and related controls, make it an ideal primary text for business or accounting students in AIS courses.

Access Control and Identity Management

Access Control and Identity Management
Author :
Publisher : Jones & Bartlett Learning
Total Pages : 397
Release :
ISBN-10 : 9781284198355
ISBN-13 : 1284198359
Rating : 4/5 (55 Downloads)

Synopsis Access Control and Identity Management by : Mike Chapple

Revised and updated with the latest data from this fast paced field, Access Control, Authentication, and Public Key Infrastructure defines the components of access control, provides a business framework for implementation, and discusses legal requirements that impact access control programs.

Fundamentals of Information Systems Security

Fundamentals of Information Systems Security
Author :
Publisher : Jones & Bartlett Publishers
Total Pages : 569
Release :
ISBN-10 : 9781284031645
ISBN-13 : 1284031640
Rating : 4/5 (45 Downloads)

Synopsis Fundamentals of Information Systems Security by : David Kim

PART OF THE JONES & BARTLETT LEARNING INFORMATION SYSTEMS SECURITY & ASSURANCE SERIES Revised and updated with the latest information from this fast-paced field, Fundamentals of Information System Security, Second Edition provides a comprehensive overview of the essential concepts readers must know as they pursue careers in information systems security. The text opens with a discussion of the new risks, threats, and vulnerabilities associated with the transformation to a digital world, including a look at how business, government, and individuals operate today. Part 2 is adapted from the Official (ISC)2 SSCP Certified Body of Knowledge and presents a high-level overview of each of the seven domains within the System Security Certified Practitioner certification. The book closes with a resource for readers who desire additional material on information security standards, education, professional certifications, and compliance laws. With its practical, conversational writing style and step-by-step examples, this text is a must-have resource for those entering the world of information systems security. New to the Second Edition: - New material on cloud computing, risk analysis, IP mobility, OMNIBus, and Agile Software Development. - Includes the most recent updates in Information Systems Security laws, certificates, standards, amendments, and the proposed Federal Information Security Amendments Act of 2013 and HITECH Act. - Provides new cases and examples pulled from real-world scenarios. - Updated data, tables, and sidebars provide the most current information in the field.