Information Technology Control and Audit, Third Edition

Now in its third edition, this book is an excellent introductory reference to IT governance, controls, and auditing. It covers a wide range of topics in the field. It reviews pertinent legislation, discusses the future of auditing in the 21st century, and examines governance, strategy and standards, and acquisition and implementation. In a section on delivery and support, it explores service management, service continuity, systems management, and operations management. Finally, the authors review advanced topics such as virtual environment, virtual security, e-commerce, and enterprise resource planning. This new edition also includes guidelines for preparing for CISA Exam, and includes numerous illustrations, graphs and charts to help readers visualize the concepts.