COBIT 5 for Assurance
COBIT 5 for Assurance

Author: ISACA

Publisher: ISACA

Published: 2013

Total Pages: 318

ISBN-13: 1604203390

DOWNLOAD EBOOK

Building on the COBIT 5 framework, this guide focuses on assurance and provides more detailed and practical guidance for assurance professionals and other interested parties at all levels of the enterprise on how to use COBIT 5 to support a variety of IT assurance activities.

Guide
Guide

Author: AICPA

Publisher: John Wiley & Sons

Published: 2018-03-26

Total Pages: 573

ISBN-13: 1945498617

DOWNLOAD EBOOK

Updated as of January 1, 2018, this guide includes relevant guidance contained in applicable standards and other technical sources. It explains the relationship between a service organization and its user entities, provides examples of service organizations, describes the description criteria to be used to prepare the description of the service organization’s system, identifies the trust services criteria as the criteria to be used to evaluate the design and operating effectiveness of controls, explains the difference between a type 1 and type 2 SOC 2 report, and provides illustrative reports for CPAs engaged to examine and report on system and organization controls at a service organization. It also describes the matters to be considered and procedures to be performed by the service auditor in planning, performing, and reporting on SOC 2 and SOC 3 engagements. New to this edition are: Updated for SSAE No. 18 (clarified attestation standards), this guide has been fully conformed to reflect lessons learned in practice Contains insight from expert authors on the SOC 2 working group composed of CPAs who perform SOC 2 and SOC 3 engagements Includes illustrative report paragraphs describing the matter that gave rise to the report modification for a large variety of situations Includes a new appendix for performing and reporting on a SOC 2 examination in accordance with International Standards on Assurance Engagements (ISAEs) or in accordance with both the AICPA’s attestation standards and the ISAEs

Information Assurance Handbook: Effective Computer Security and Risk Management Strategies
Information Assurance Handbook: Effective Computer Security and Risk Management Strategies

Author: Corey Schou

Publisher: McGraw Hill Professional

Published: 2014-09-12

Total Pages: 481

ISBN-13: 0071826319

DOWNLOAD EBOOK

Best practices for protecting critical data and systems Information Assurance Handbook: Effective Computer Security and Risk Management Strategies discusses the tools and techniques required to prevent, detect, contain, correct, and recover from security breaches and other information assurance failures. This practical resource explains how to integrate information assurance into your enterprise planning in a non-technical manner. It leads you through building an IT strategy and offers an organizational approach to identifying, implementing, and controlling information assurance initiatives for small businesses and global enterprises alike. Common threats and vulnerabilities are described and applicable controls based on risk profiles are provided. Practical information assurance application examples are presented for select industries, including healthcare, retail, and industrial control systems. Chapter-ending critical thinking exercises reinforce the material covered. An extensive list of scholarly works and international government standards is also provided in this detailed guide. Comprehensive coverage includes: Basic information assurance principles and concepts Information assurance management system Current practices, regulations, and plans Impact of organizational structure Asset management Risk management and mitigation Human resource assurance Advantages of certification, accreditation, and assurance Information assurance in system development and acquisition Physical and environmental security controls Information assurance awareness, training, and education Access control Information security monitoring tools and methods Information assurance measurements and metrics Incident handling and computer forensics Business continuity management Backup and restoration Cloud computing and outsourcing strategies Information assurance big data concerns

Audit Guide
Audit Guide

Author: AICPA

Publisher: John Wiley & Sons

Published: 2017-09-08

Total Pages: 509

ISBN-13: 1119473349

DOWNLOAD EBOOK

This new edition provides up-to-date information and expert guidance on single audits and Uniform Guidance compliance audit requirements, including example auditor reports for both the financial statement audit and the Uniform Guidance compliance audit. It provides nonfederal entities receiving federal awards with important information on implementing the Uniform Guidance.

Guidelines for Auditing Process Safety Management Systems
Guidelines for Auditing Process Safety Management Systems

Author: CCPS (Center for Chemical Process Safety)

Publisher: John Wiley & Sons

Published: 2011-11-30

Total Pages: 960

ISBN-13: 9781118021620

DOWNLOAD EBOOK

This book discusses the fundamental skills, techniques, and tools of auditing, and the characteristics of a good process safety management system. A variety of approaches are given so the reader can select the best methodology for a given audit. This book updates the original CCPS Auditing Guideline project since the implementation of OSHA PSM regulation, and is accompanied by an online download featuring checklists for both the audit program and the audit itself. This package offers a vital resource for process safety and process development personnel, as well as related professionals like insurers.