IT Audit, Control, and Security

IT Audit, Control, and Security

Volumn , Issue , 2012, Pages

  Moeller, Robert ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84891583562     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.1002/9781118269138     Document Type: Book

References (48)

1. Robert Moeller, Brink's Modern Internal Auditing, 7th ed. (Hoboken, NJ: John Wiley & Sons, 2009).
2. Internal Control-Integrated Framework, www.coso.org/publications.htm Note: This reference is for the COSO internal controls report, which can be ordered through the AICPA at www.cpa2biz.com.
3. Robert Moeller, Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL (Hoboken, NJ: John Wiley & Sons, 2008).
4. COSO, Guidance on Monitoring Internal Control Systems (2009). www.coso.org/documents/ COSO_Guidance_On_Monitoring_Intro_online1.pdf.
5. As a public document, the text of the law can be found in many Web locations. One source is http://fl1.findlaw.com/news.findlaw.com/hdocs/docs/gwbush/sarbanesoxley 072302.pdf. Notes & 31
6. IT Governance Institute, CobiT-Governance, Control and Audit for Information and Related Technology, 4th ed. (Rolling Meadows, IL: Author, 2000).
7. IT Governance Institute, CobiT 4.1 (Rolling Meadows, IL: Author, 2007).
8. IT Governance Institute, IT Control Objectives for Sarbanes-Oxley, 2nd ed. (Rolling Meadows, IL: Author, September 2006).
9. IT Governance Institute, ITAFTM: A Professional Practices Framework for IT Assurance (Rolling Meadows, IL: Author, 2008).
10. Institute of Internal Auditors, Standards for the Professional Practice of Internal Auditing (Altamonte Springs, FL: Author, 2004).
11. Robert Moeller, Brink's Modern Internal Auditing, 7th ed. (Hoboken, NJ: John Wiley & Sons, 2009).
12. www.theiia.org.
13. Institute of Internal Auditors, GAIT for Business and IT Risk (Altamonte Springs, FL: www.theiia.org.
14. ''COSO Releases a New Risk Management Framework,'' Accounting Today, October 25, 2004.
15. Robert Moeller, Brink's Modern Internal Auditing: A Common Body of Knowledge, 7th ed. (Hoboken, NJ: John Wiley & Sons, 2009).
16. The .NET or dot-NET framework is Microsoft's comprehensive and consistent programming model for building applications. See www.microsoft.com/net/.
17. BEA is a unit of Oracle Corporation. Information on its WebLogic application can be found at www.oracle.com/bea/index.html.
18. While this is more of a marketing site, information on LEGO blocks can be found at: http://shop.lego.com/ByTheme/Leaf.aspx?cn392&d104.
19. http://thecaq.aicpa.org/Resources/Sarbanes+Oxley/Archive++Schedule+for+ Congressional+Hearings+on+Enron+Situation.htm.
20. Institute of Internal Auditors, ''Survey Says Internal Auditors Need More Information about XBRL,'' news release, October 7, 2008.
21. Accounting Today (September 2000).
22. Microsoft PressPass, ''Microsoft Becomes First Technology Company to Report Financials in XBRL,'' March 5, 2002, Microsoft.com.
23. IT Financial Management, Gartner Consulting, www.gartner.com/it/products/consulting/ GTACaseStudy.pdf.
24. IT Spending Survey 2009, Goldman Sachs, www.scribd.com/doc/7737986/Goldman- Sachs-IT-Spending-Survey.
25. John Thorp, Val IT Framework 2.0-Adding Breadth and Depth to the Value Management Road Map. ISACA Journal June, 2008
26. IT Governance Institute, ''Val IT Framework 2.0-Adding Breadth and Depth to the Value Management Road Map,'' Information Systems & Control Journal 5 (2008).
27. Project Management Institute, Project Management Body of Knowledge (PMBOK), 4th ed. (Newtown Square, PA: Author, 2008).
28. Project Management Institute, A Guide to the Project Management Book of Knowledge (PMBOK), 4th ed. (Newtown Square, PA: Author, 2004).
29. www.qualitydigest.com/june99/html/body_iso_9000.html.
30. The Institute of Internal Auditors GAIN Network, ''International Organization for Standardization (ISO) 9001:2000 Quality Management System Type: Executive Summary Report,'' April 10, 2008.
31. Marjory Blumenthal, Computers at Risk: Safe Computing in the Information Age, National Research Council, System Security Study Committee, DEC, 1990.
32. www.ul.com/global/eng/pages/.
33. Generally Accepted System Security Principles (GASSP), Version 2.0, June 1999, www .isaca.org.
34. Guidance for Best Practices in Information Security and IT Audit, 2009, www .itpolicycompliance.com.
35. Numerous Web accounts have been published of this breach, such as: http://www .associatedcontent.com/article/128326/tj_maxx_and_marshalls_customers_data .html.
36. More information on the standard can be found in PCI's Web site: www.pcisecurity standards.org.
37. Robert Lenzner, ''Bernie Madoff's $50 Billion Ponzi Scheme,'' Forbes magazine, December 12, 2008,www.forbes.com/2008/12/12/madoff-ponzi-hedge-pf-ii-in_rl_1212croesus_ inl.html.
38. Ernst & Young, ''Corruption of Compliance-10th Global Fraud Survey,'' 2008, www .ey.com.
39. There are numerous Web references to the fraud statute. Wikipedia at http://en.wikipedia.org/wiki/Federal_crime is a good reference.
40. Institute of Internal Auditors, Identity and Access Management, Global Technology Audit Guide (GTAG) series, www.theiia.org/technology.
41. ''The Business Case for Disaster Recovery Planning: Calculating the Cost of Downtime,'' Iron Mountain Corporation, January 2001, www.ironmountaincorp.com.
42. ''Technology on the Web,'' Forbes, March 29, 2004.
43. ''Google E-mail Crash Hits Millions,'' Financial Times, February 29, 2009.
44. National Institute of Standards and Technology, ''Creating a Patch and Vulnerability Management Program,'' Special Publication 800-40 Version 2.0 (November 2005), http://csrc.nist.gov/publications/nistpubs/800-40-Ver2/SP800-40v2.pdf.
45. A very basic reference is Craig Gygi and Neil DeCarlo, Six Sigma for Dummies (Hoboken, NJ: John Wiley & Sons, 2005).
46. Risk Assessments Six Sigma Style, Internal Auditor Online Edition (December 2009), www.theiia.org
47. ''Information Worth Billions,'' Fortune, July 21, 2008, p. 73.
48. Robert R. Moeller, Brink's Modern Internal Auditing: A Common Body of Knowledge, 7th ed. (Hoboken, NJ: John Wiley & Sons, 2009).