Skip to Main Content
IT Auditing Using Controls to Protect Information Assets, 2nd Edition, 2nd Edition
book

IT Auditing Using Controls to Protect Information Assets, 2nd Edition, 2nd Edition

by Chris Davis, Mike Schiller, Kevin Wheeler
February 2011
Intermediate to advanced content levelIntermediate to advanced
512 pages
15h 37m
English
McGraw-Hill
Content preview from IT Auditing Using Controls to Protect Information Assets, 2nd Edition, 2nd Edition

CHAPTER 2The Audit Process

In this chapter, we’ll discuss the basic stages of the audit process, how to conduct each one effectively, and the following:

• The different types of internal controls

• How you should choose what to audit

• How to conduct the basic stages of the audit

• Planning

• Fieldwork and documentation

• Issue discovery and issue validation

• Solution development

• Report drafting and issuance

• Issue tracking

This chapter is not intended to be an “Auditing 101” course, because entire volumes have already been written on that topic. Nor is it intended to be a recitation of auditing standards and guidelines, which also are subjects of other books. This chapter will, however, provide some guidance on how best to execute the audit ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Legal and Privacy Issues in Information Security, 3rd Edition

Legal and Privacy Issues in Information Security, 3rd Edition

Joanna Lyn Grama
Auditing IT Infrastructures for Compliance, 3rd Edition

Auditing IT Infrastructures for Compliance, 3rd Edition

Robert Johnson, Marty Weiss, Michael G. Solomon

Publisher Resources

ISBN: 9780071742382