Auditing Information Systems / Edition 2

Hardcover (Print)
Buy New
Buy New from BN.com
$107.95
Buy Used
Buy Used from BN.com
$88.23
(Save 41%)
Item is in good condition but packaging may have signs of shelf wear/aging or torn packaging.
Condition: Used – Good details
Used and New from Other Sellers
Used and New from Other Sellers
from $1.99
Usually ships in 1-2 business days
(Save 98%)
Other sellers (Hardcover)
  • All (18) from $1.99   
  • New (9) from $6.99   
  • Used (9) from $1.99   

Overview

Increasingly, auditors, information security professionals, managers, and audit committees are being called upon to assess the risks and evaluate the controls over computer information systems in all types of organizations. However, many of these stakeholders are unfamiliar with the techniques they can use to efficiently and effectively determine whether information systems are adequately protected. Auditing Information Systems, Second Edition presents an easy, practical guide to auditing information systems that can be applied to all computing environments.

With the Second Edition of this popular resource, auditors will be able to examine an organization’s hardware, software, data protection, and processing methods to ensure that adequate controls and security are in place. Little in the way of prerequisite technical know-how is required. Author Jack Champlain begins by explaining the basics of any computer system–the central processing unit, operating system, and application system–giving every auditor the tools needed to begin an audit. This is followed by a step-by-step approach for conducting information systems audits, detailing specific procedures that auditors can readily apply to their own organizations. The Second Edition devotes special attention to the issues of most concern to information managers today. It provides over 80 case studies that demonstrate how concepts can be applied in real-world situations. Chapter topics include:

  • Information systems audit approach (physical, logical, environmental security)
  • Security certifications such as SAS 70, TruSecure, CPA SysTrust, and WebTrust
  • Computer forensics
  • E-commerce and Internet security (including encryption and cryptography)
  • Information privacy laws and regulations
  • Information systems project management controls
  • New technologies and future risks

As networks and enterprise resource planning (ERP) systems bring resources together, and as increasing privacy violations and international political volatility threaten more organizations, information systems integrity becomes more important than ever. Auditing Information Systems, Second Edition empowers auditors, information security professionals, managers, and audit committees to effectively gauge the adequacy and effectiveness of information systems controls.

Read More Show Less

Product Details

  • ISBN-13: 9780471281177
  • Publisher: Wiley
  • Publication date: 2/24/2003
  • Edition description: REV
  • Edition number: 2
  • Pages: 430
  • Product dimensions: 9.21 (w) x 6.14 (h) x 1.00 (d)

Meet the Author

JACK J. CHAMPLAIN, CPA, CISA, CIA, CFSA, is the Information Systems Audit Manager with the Boeing Employee’s Credit Union. Of his 22 years in the banking industry, Mr. Champlain has over 15 years of internal auditing experience, including 12 years of information systems auditing. He is a contributor to numerous publications and is a frequent speaker and consultant in the area of information systems auditing. He holds a Masters Degree in Business Administration from Seattle University and a Bachelors Degree in Finance from the University of Washington. Jack was elected to two three-year terms on the national board of directors of the Association of Credit Union Internal Auditors (ACUIA) and is currently the Vice Chair. He is a past president of the Puget Sound Chapter of the Information Systems Audit Control Association (ISACA) and is currently the CISA Coordinator and Chair of the Academic Relations Committee. He is also a member of the American Institute of Certified Public Accountants (AICPA), and the Washington Society of Certified Public Accountants (WSCPA).

Read More Show Less

Table of Contents

Preface.

Acknowledgments.

PART ONE: CORE CONCEPTS.

Chapter 1. Basics of Computing Systems.

Chapter 2. Identifying Computer Systems.

PART TWO: STANDARD INFORMATION SYSTEMS AUDIT APPROACH.

Chapter 3. Information Systems Audit Program.

Chapter 4. Information Systems Security Policies, Standards, and/or Guidelines.

Chapter 5. Auditing Service Organization Applications.

Chapter 6. Assessing the Financial Stability of Vendor Organizations, Examining Vendor Organization Contracts, and Examining Accounting Treatment of Computer Equipment and Software.

Chapter 7. Physical Security.

Chapter 8. Logical Security.

Chapter 9. Information Systems Operations.

PART THREE: CONTEMPORARY INFORMATION SYSTEMS AUDITING CONCEPTS.

Chapter 10. Control Self-Assessment and an Application in an Information Systems Environment.

Chapter 11. Encryption and Cryptography.

Chapter 12. Computer Forensics.

Chapter 13. Other Contemporary Information Systems Auditing Challenges.

Chapter 14. Humanistic Aspects of Information Systems Auditing.

Chapter 15. Information Systems Project Management Audits.

Chapter 16. Conclusion.

Appendix A: Professional Auditing Associations and Other Organizations Related to Information Systems Auditing and Computer Security.

Appendix B: Common Criteria for Information Technology Security Evaluation.

Appendix C: The International Organization for Standardization: Seven-Layer Open Systems Interconnection Reference Model.

Selected References.

Glossary.

Index.

Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star

(0)

4 Star

(0)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)