IT Auditing: Using Controls to Protect Information Assets
by Chris Davis, Mike Schiller, Kevin Wheeler
List Price:
Our Price: $32.69
You Save: $27.30 (46%)
Availability: Usually ships in 1-2 business days
Category: Book
See more book details and other editions
Book Summary Information
Author: Chris Davis, Kevin Wheeler, Mike SchillerEdition: Paperback
Published: 2006-12-22
ISBN: 0072263431
Number of pages: 387
Publisher: McGraw-Hill Osborne Media
Book Reviews of IT Auditing: Using Controls to Protect Information Assets
Book Review: Excellent practical coverage of IT Auditing
Summary: 5 Stars
This is by far the most useful book I've seen covering the subject matter of IT Audits in more than 20 years of IT Auditing. I noticed that ISACA picked up this book as part of their bookstore. The narrative is easy to read throughout the book and the book is laid out and formatted thoughtfully.
I now manage the IT Audit function for a large US-based bank and found the first three chapters (Building an Effective IT Audit Function; The Audit Process; and Auditing Entity Level Controls) particularly well done for understanding how to build the IT Audit team into your environment technically and politically.
The next section of the book, Chapters 4-12 (Data Centers/DR; Switches, Routers, Firewalls; Windows; UNIX and Linux; Web Servers; Databases; Applications; WLAN/Mobile; Company Projects) is solid, very well done, and consistent with other checklists we've used. The checklists are written from an auditor's perspective and contain an excellent level of detail covering what you should do, why, and how. Any more detail and a real world audit would never get completed before it was time to move on to the next audit. IT Audits provided my team members excellent guidance on two recent audits. My team liked the book's layout and level of detail. It's written at an appropriate and realistic level that an auditor can work his or her way through a checklist without getting overwhelmed.
Finally, the last section of the book (Frameworks and Standards; Regulations; and Risk Management) provides a good overview of the several standards and regulations we deal with every day. The chapter on Risk Management is one of the best reviews on that topic in a while.
Overall I think this is an exceptional book and I wouldn't hesitate to recommend this to someone in the IT Audit field.
Summary of IT Auditing: Using Controls to Protect Information Assets
Protect Your Systems with Proven IT Auditing Strategies"A must-have for auditors and IT professionals." -Doug Dexter, CISSP-ISSMP, CISA, Audit Team Lead, Cisco Systems, Inc.
Plan for and manage an effective IT audit program using the in-depth information contained in this comprehensive resource. Written by experienced IT audit and security professionals, IT Auditing: Using Controls to Protect Information Assets covers the latest auditing tools alongside real-world examples, ready-to-use checklists, and valuable templates. Inside, you'll learn how to analyze Windows, UNIX, and Linux systems; secure databases; examine wireless networks and devices; and audit applications. Plus, you'll get up-to-date information on legal standards and practices, privacy and ethical issues, and the CobiT standard.
Build and maintain an IT audit function with maximum effectiveness and value
- Implement best practice IT audit processes and controls
- Analyze UNIX-, Linux-, and Windows-based operating systems
- Audit network routers, switches, firewalls, WLANs, and mobile devices
- Evaluate entity-level controls, data centers, and disaster recovery plans
- Examine Web servers, platforms, and applications for vulnerabilities
- Review databases for critical controls
- Use the COSO, CobiT, ITIL, ISO, and NSA INFOSEC methodologies
- Implement sound risk analysis and risk management practices
- Drill down into applications to find potential control weaknesses
General Books
- Computers & Internet: Networking: Networks, Protocols & APIs: General
- Computers & Internet: General
- Business & Investing > Industries & Professions > Accounting > Auditing
- Computers & Internet > Business & Culture > Privacy
- Networking > Networks, Protocols & APIs
- Network Security
- Home Computing > Internet
Book Subjects
- Arts & Photography
- Audiobooks on Cassette
- Audiobooks on CD
- Biographies & Memoirs
- Business & Investing
- Children's Books
- Comics & Graphic Novels
- Computers & Internet
- Cooking, Food & Wine
- e-Books
- Engineering
- Entertainment
- Gay & Lesbian
- Health, Mind & Body
- History
- Home & Garden
- Horror
- Law
- Literature & Fiction
- Medicine
- Mystery & Thrillers
- Nonfiction
- Outdoors & Nature
- Parenting & Families
- Professional & Technical
- Reference
- Religion & Spirituality
- Romance
- Science
- Science Fiction & Fantasy
- Sports
- Teens
- Travel
Most talked about in General Books
The Five Dysfunctions of a Team: A Leadership Fableby Patrick M. Lencioni
Jossey-Bass; Published: 2002-03-19; Hardcover; Book
Best price: $10.00
Price in other shops:
Rich Dad, Poor Dad: What the Rich Teach Their Kids About Money--That the Poor and Middle Class Do Not!by Robert T. Kiyosaki, Sharon L. Lechter
Business Plus; Published: 2000-04-01; Paperback; Book
Best price: $5.00
Price in other shops:
Presentation Zen: Simple Ideas on Presentation Design and Delivery (Voices That Matter)by Garr Reynolds
New Riders Press; Published: 2008-01-04; Paperback; Book
Best price: $17.74
Price in other shops:
Predictably Irrational: The Hidden Forces That Shape Our Decisionsby Dan Ariely
HarperCollins; Published: 2008-02-19; Hardcover; Book
Best price: $15.04
Price in other shops:
![Freakonomics [Revised and Expanded]: A Rogue Economist Explores the Hidden Side of Everything Image](/images/Freakonomics-Revised-and-Expanded-A-Rogue-Economist-Explores-the-Hidden-Side-of-Everything-0061234001-X.jpg)
Freakonomics [Revised and Expanded]: A Rogue Economist Explores the Hidden Side of Everythingby Steven D. Levitt, Stephen J. Dubner
William Morrow; Published: 2006-10-02; Hardcover; Book
Best price: $14.99
Price in other shops:
When Markets Collide: Investment Strategies for the Age of Global Economic Changeby Mohamed El-Erian
McGraw-Hill; Published: 2008-05-23; Hardcover; Book
Best price: $15.75
Price in other shops:
The Art of Influence: Persuading Others Begins With Youby Chris Widener
Doubleday Business; Published: 2008-07-08; Hardcover; Book
Best price: $8.18
Price in other shops:
Good to Great: Why Some Companies Make the Leap... and Others Don'tby Jim Collins
Collins Business; Published: 2001-10; Hardcover; Book
Best price: $8.95
Price in other shops:
StrengthsFinder 2.0: A New and Upgraded Edition of the Online Test from Gallup's Now, Discover Your Strengthsby Tom Rath
Gallup Press; Published: 2007-02-01; Hardcover; Book
Best price: $8.28
Price in other shops:
Tuned In: Uncover the Extraordinary Opportunities That Lead to Business Breakthroughsby Craig Stull, Phil Myers, David Meerman Scott
Wiley; Published: 2008-06-30; Hardcover; Book
Best price: $12.00
Price in other shops:
Similar Books and other products
CISSP All-in-One Exam Guide, Third Edition (All-in-One)by Shon Harris
McGraw-Hill Osborne Media; Published: 2005-09-15; Hardcover; Book
Best price: $48.90
Price in other shops:
Sarbanes-Oxley IT Compliance Using COBIT and Open Source Toolsby Christian Lahti, Roderick Peterson
Syngress; Published: 2005-09-01; Paperback; Book
Best price: $29.94
Price in other shops:
Manager's Guide to Compliance: Sarbanes-Oxley, COSO, ERM, COBIT, IFRS, BASEL II, OMB's A-123, ASX 10, OECD Principles, Turnbull Guidance, Best Practices, and Case Studies (Manager's Guide Series)by Anthony Tarantino
Wiley; Published: 2006-04-21; Hardcover; Book
Best price: $39.25
Price in other shops:
Implementing Database Security and Auditing: Includes Examples for Oracle, SQL Server, DB2 UDB, Sybaseby Ron Ben Natan
Digital Press; Published: 2005-04-18; Paperback; Book
Best price: $51.71
Price in other shops:
Sarbanes-Oxley For Dummiesby Jill Gilbert, JD, CPA Welytok
For Dummies; Published: 2008-02-26; Paperback; Book
Best price: $11.80
Price in other shops:
CISSP Certification All-in-One Exam Guide, 4th Ed. (All-in-One)by Shon Harris
McGraw-Hill Osborne Media; Published: 2007-11-09; Hardcover; Book
Best price: $44.41
Price in other shops:
CISA Exam Cram: Certified Information Systems Auditor (Exam Cram 2)by Allen Keele, Keith Mortier
Que; Published: 2005-04-30; Paperback; Book
Best price: $19.99
Price in other shops:
Security Metrics: Replacing Fear, Uncertainty, and Doubtby Andrew Jaquith
Addison-Wesley Professional; Published: 2007-04-05; Paperback; Book
Best price: $29.45
Price in other shops:
Information Technology Control and Audit, Second Editionby Frederick Gallegos, Daniel P. Manson, Sandra Senft, Carol Gonzales
Auerbach Publication; Published: 2004-03-26; Hardcover; Book
Best price: $56.54
Price in other shops:
CISA Certified Information Systems Auditor Study Guideby David L. Cannon
Sybex; Published: 2008-03-24; Paperback; Book
Best price: $31.70
Price in other shops: