Information Technology/Information Systems Audit Resources
Protiviti KnowledgeLeader Internal Audit Community is a web-based internal auditing tool that will help you identify risks, develop best practices and add value to your organization. We give you internal audit tools, checklists, and templates as well as news and updates on the latest business risks and controls.
CobIT which are the Control Objectives for Information Technology from ISACA are online. The Executive Summary, the framework and the Control Objectives are available for download in Adobe Acrobat (pdf) format.
COBIT Listserv (COBIT-List) created to facilitate discussion about COBIT among members, ISACA has created a COBIT listserv. By exchanging knowledge through the listserv, subscribers are sure to find answers to their questions and advice for improving implementation procedures. Subscribe to the COBIT listserv by sending an email message to join-COBIT-L@share.isaca.org SUBJECT: (leave blank) BODY OF MESSAGE: (leave blank). You will receive an acknowledgment and instructions on how to unsubscribe by email.
Enterprising Associates
is an information technology audit, computer security and consulting practice. The site includes The Computer Advisory with articles on computer security and auditing. A free ram resident utility providing a fix to the year 2000 problem for PCS is also available for download.
Central Indiana Chapter ISACA created a list for information systems
auditors called CISACA-L. The list is meant to encourage professional
discussion and is open to all information system auditors. To subscribe send
an email to majordomo@purdue.edu with
SUBJECT: (leave blank)
BODY OF MESSAGE: SUBSCRIBE CISACA-L
Global Technology Audit Guides The IIA produced a series of publications with guidance on information technology. Written primarily for the chief internal audit executive (CAE) and audit supervisors, the guides address concerns of the board of directors and chief-level executives.
- GTAG 1: Information Technology Controls
- GTAG 2: Change and Patch Management Controls: Critical for Organizational Success
- GTAG 3: Continuous Auditing: Implications for Assurance, Monitoring, and Risk Assessment
- GTAG 4: Management of IT Auditing
-
GTAG 8: Auditing Application Controls
-
GTAG 9: Identity and Access Management
-
GTAG 10: Business Continuity Management
-
GTAG 11: Developing the IT Audit Plan
Information Technology Resources
from the IIAIS Audit and Security Review Kits includes ready-to-use IS/IT audit program and security review kits. The kits contain a statement of purpose, scope, review steps, and/or a set of questions organized to lead you through the audit or review. This is an excellent site for jumpstarting an IS security review or audit.
IS Audit Procedures -procedures for Information Systems Auditing from ISACA
IS Audit Guidelines - from ISACA
IT Compliance Institute The IT Compliance Institute (ITCi) strives to be a global authority on the role of technology in business governance and regulatory compliance. Through comprehensive education, research, and analysis related to emerging government statutes and affected business and technology practices, we help organizations overcome the challenges posed by today's regulatory environment and find new ways to turn compliance efforts into capital opportunities.
Standards for Information Systems Control Professionals
ABOUT TRUST ONLINE |