Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL / Edition 1

Hardcover (Print)
Buy New
Buy New from
Used and New from Other Sellers
Used and New from Other Sellers
from $32.92
Usually ships in 1-2 business days
(Save 63%)
Other sellers (Hardcover)
  • All (8) from $32.92   
  • New (5) from $53.84   
  • Used (3) from $32.92   


Sarbanes-OxleyInternal Controls: Effective Auditing withAS5, CobiT, and ITIL

Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is essential reading for professionals facing the obstacle of improving internal controls in businesses today. This timely resourceplaces at your fingertips critical comp-liance and internal audit best practices in today's world of SOx internal controls.

Author Robert Moeller, a renowned authority on internal controls, provides a high-level overview of Sarbanes-Oxley as well as the new internal control rules for auditors, including AS5, CobiT, and ITIL. Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL prepares professionals with detailed discussions of:

  • Changes to SOx-related rules andsupporting procedures since thelegislation became U.S. law in 2002
  • The changes and evolving standards that may make compliance easier forauditors and enterprise management
  • Areas where rules are changing, such as Section 404 internal control reviews
  • The rules and caution signs that are important in SOx today for all levels of management and internal audit
  • An overview of PCAOB auditing standards, with an emphasis on the newly issued and very important AS5 standard on auditing internal controls
  • CobiT as a tool for establishing ongoing SOx compliance
  • A complete overview of the ITIL service support and service delivery frameworks

A practical introductory handbook for auditors, CFOs, CIOs, IT management, and consultants, Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is an invaluable reference guide designed to lead financial managers to revitalize their business and drive greater performance.

Read More Show Less

Product Details

  • ISBN-13: 9780470170922
  • Publisher: Wiley
  • Publication date: 4/25/2008
  • Edition number: 1
  • Pages: 384
  • Product dimensions: 6.28 (w) x 9.17 (h) x 1.29 (d)

Meet the Author

Robert R. Moeller, CPA, CISA, CISSP, is an internal audit specialist and project manager with a strong understanding of information systems, corporate governance, and security. He has over twenty-five years of experience in internal auditing, ranging from launching new internal audit functions in several companies to serving as audit director for a Fortune 50 corporation. He was the national director of computer auditing at Grant Thorton and the audit director of Sears Roebuck. A frequently published author and professional speaker, he provides insights into many of the new rules impacting internal auditors today, as well as the challenges audit committees face when dealing with Sarbanes-Oxley, internal controls, and their internal auditors.

Read More Show Less

Table of Contents


Chapter 1: Introduction: Sarbanes-Oxley and Establishing Effective Internal Controls.

Changes Since SOx Was First Introduced.

Converging Trends: ITIL, CobiT, and Others.

Chapter 2: Sarbanes-Oxley Act Today: Changing Perspectives.

Sarbanes-Oxley Act: Key Elements.

Impact of the Sarbanes-Oxley Act.

Chapter 3: AS5 Standards for Auditing Internal Controls.

AS5 Objectives.

Reviewing Section 404 Internal Controls Under AS5: Introduction

Planning the SOx AS5 Audit.

AS5’s Top-Down Approach.

Testing Internal Controls.

Evaluating Identified Audit Deficiencies.

Wrapping Up the AS5 Audit.

Reporting on AS5 Audit Internal Controls.

Improving Internal Controls Using AS5 Guidance.

Going Forward: Potential Risks and Rewards.

Chapter 4: Establishing Internal Controls Through COSO.

Importance of Effective Internal Controls.

Internal Control Standards: Background.

Events Leading to the Treadway Commission.

COSO Internal Control Framework.

Other Dimensions of the COSO Internal Control Framework.

Chapter 5: Using CobiT Framework to Improve SOx Controls and Governance.

CobiT Framework.

Using CobiT to Assess Internal Controls.

CobiT and Sarbanes-Oxley.

Chapter 6: Performing Section 404 Reviews Under AS5: An Ongoing Process.

SOx Section 404 Assessments of Internal Controls Today.

SOx Section 404 Requirements.

Section 404 Filing Rules: Changing Deadlines for Eligibility.

Gaps and Compliance Committees Under Today’s SOx Rules.

Documenting Internal Controls Going Forward.

Control Objectives and Risks Under Section 404.

Chapter 7: Other SOx Requirements: Sections 302, 409, and Others.

Other Important SOx Compliance Rules.

Section 302: Management’s Financial Report Responsibilities.

Section 401: Off–Balance Sheet Disclosures.

Section 409: Disclosures on Financial Conditions and Operations.

Section 802: Penalties for Altering Documents.

Section 806: Whistleblower Provisions.

Keeping SOx Rules in Focus.

Chapter 8: Using ITIL to Align IT with Business Processes.

Importance of the Information Technology Infrastructure.

ITIL Framework.

ITIL Service Delivery Best Practices.

ITIL Service Support Best Practices.

Security Management.

Linking ITIL with CobiT and SOx Internal Controls.

Chapter 9: Importance of Enterprise Risk Management.

Importance of Risk Management.

COSO ERM Framework.

Other Dimensions of the COSO ERM Framework.

Putting It All Together.

Auditing COSO ERM Processes.

COSO ERM in Perspective.

Chapter 10: International Standards: ISO, Quality Auditing, and SOx.

Importance of ISO Standards in Today’s Global World.

ISO Standards Overview.

Quality Audit Process.

IFAC International Accounting Standards.

Chapter 11: Internal Audit in a Sarbanes-Oxley Environment.

Profession of Internal Auditing.

Internal Audit Professional Standards.

CBOK: Internal Audit’s Common Body of Knowledge.

Chapter 12: Importance of Effective Corporate Governance.

Reporting Whistleblower Incidents: Establishing a Hotline Facility.

Building an Enterprise-Wide Ethical Culture.

Chief Compliance Officer Roles and Responsibilities.

Board of Directors and the Audit Committee.

Assessing SOx Internal Controls.


Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)