Auditor's Guide to Information Systems Auditing

Front Cover
John Wiley & Sons, Jun 15, 2007 - Business & Economics - 496 pages
Praise for Auditor's Guide to Information Systems Auditing

"Auditor's Guide to Information Systems Auditing is the most comprehensive book about auditing that I have ever seen. There is something in this book for everyone. New auditors will find this book to be their bible-reading it will enable them to learn what the role of auditors really is and will convey to them what they must know, understand, and look for when performing audits. For experiencedauditors, this book will serve as a reality check to determine whether they are examining the right issues and whether they are being sufficiently comprehensive in their focus. Richard Cascarino has done a superb job."
—E. Eugene Schultz, PhD, CISSP, CISM Chief Technology Officer and Chief Information Security Officer, High Tower Software

A step-by-step guide tosuccessful implementation and control of information systems

More and more, auditors are being called upon to assess the risks and evaluate the controls over computer information systems in all types of organizations. However, many auditors are unfamiliar with the techniques they need to know to efficiently and effectively determine whether information systems are adequately protected. Auditor's Guide to Information Systems Auditing presents an easy, practical guide for auditors that can be applied to all computing environments.

As networks and enterprise resource planning systems bring resources together, and as increasing privacy violations threaten more organization, information systems integrity becomes more important than ever. With a complimentary student'sversion of the IDEA Data Analysis Software CD, Auditor's Guide to Information Systems Auditing empowers auditors to effectively gauge the adequacy and effectiveness of information systems controls.


What people are saying - Write a review

Auditors Guide to Information Systems Audit

User Review  - anothervirginiabuyer -

Overall the book is well structured and supports all the general and application controls that are important. The book is not well edited for errors which can be confusing. For example in the area of ... Read full review

User Review - Flag as inappropriate

This is a ground breaking foundation for anyone desiring to build their career in Information Systems Auditing. Nice job!


Part II Information SystemsInformation Technology Governance
Part III Systems and Infrastructure Lifecycle Management
Part IV Information Technology Service Delivery and Support
Part V Protection of Information Assets
Part VI Business Continuity and Disaster Recovery
Part VII Advanced IS Auditing
Appendix A Ethics and Standards for the IS Auditor
Appendix B Audit Program for Application Systems Auditing
Appendix C Logical Access Control Audit Program
Appendix D Audit Program for Auditing UNIXLinux Environments
Appendix E Audit Program for Auditing Windows XP2000 Environments

Other editions - View all

Common terms and phrases

About the author (2007)

RICHARD CASCARINO, MBA, CIA, CFE, CISM, has, for the last eighteen years, been providing consultancy and professional development services to clients throughout the southern African region as well as in Europe, the Middle East, and the United States. Well-known in international auditing circles as one of the most knowledgeable practitioners in the field, he is a regular speaker at international conferences and has presented courses throughout Africa, Europe, the Middle East, and the United States. He is a past president of the Institute of Internal Auditors in South Africa, was the founding regional director of the Southern African Region of the IIA-Inc., and is a member of both the Information Systems Audit and Control Association and the American Institute of Certified Fraud Examiners (South African Chapter). He is also a coauthor of Internal Auditing: An Integrated Approach.

Bibliographic information