Skip to Main Content
Understanding and Conducting Information Systems Auditing + Website
book

Understanding and Conducting Information Systems Auditing + Website

by Veena Hingarh, Arif Ahmed
March 2013
Beginner content levelBeginner
304 pages
8h 26m
English
Wiley
Content preview from Understanding and Conducting Information Systems Auditing + Website

Chapter Ten

Case Study: Conducting an Information Systems Audit

IN THIS CHAPTER, WE learn about the steps involved in conducting an information systems audit. We have selected a bank as a case study essentially because banks represent one of the most critical and sensitive applications of information systems assets. In addition, the multiple guidelines issued by the central banks of different countries on this matter provide a rich collection of best practices from which we have drawn. The chapter provides a step-by-step guide to conducting an information systems audit at the various levels of a bank, including its branches.

The lessons presented in this chapter are not restricted to applications in bank information systems alone. The methodology is applicable to all information systems, although the specific object of examination is likely to vary. At the end of this chapter we will be ready to conduct an information systems audit of any entities, including those with multilocation systems.

IMPORTANT SECURITY ISSUES IN BANKS

Important security issues involved in an information systems audit of a bank, as well as other organizations, include the following:

User Access Management

The auditor needs to verify the following two points:

1. The existence of formal procedures controlling the allocation of access rights for individual users.
2. The procedures must cover the entire life cycle of user access, from registration of new users to deregistration.

User Registration

The information ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Information Security Management, 2nd Edition

Information Security Management, 2nd Edition

Michael Workman
Auditing IT Infrastructures for Compliance, 3rd Edition

Auditing IT Infrastructures for Compliance, 3rd Edition

Robert Johnson, Marty Weiss, Michael G. Solomon

Publisher Resources

ISBN: 9781118343777Purchase book