Rating: 4 out of 5 stars
4/5
Ebook63 pages47 minutes
Information Systems Auditing: The IS Audit Follow-up Process
Rating: 2 out of 5 stars
2/5
()
About this ebook
This first edition of Information Systems Auditing: The IS Audit Follow-up Process is part of an electronic booklets series providing comprehensive IS audit planning, study, evaluation, testing, and reporting methods. In terms of content, these monographs convert selected audit standards into practical applications using detailed examples. These monographs also allow auditors to understand various steps and processes required to adequately initiate, document, and compile IT audit phases. Moreover, the reader will acquire an appreciation for IT financial statement, government, and external auditing. Collectively, these monographs function as study guides for CISA examination preparation as well as audit reference manuals.
IT audit area follow-up mastery reflects professional experience and training. Regarding subject mastery, this booklet presents corrective action due diligence, audit engagement responsibilities and recommendation considerations; which can be translated, if practiced, into professional experience. Chronologically, this monograph presents managerial corrective action considerations and describes required audit follow-up steps performed during an audit area engagement extension, separate engagement, or agreed-upon procedures assignment. Specifically, assessing audit responses and general follow-up activities are discussed from an information systems audit perspective, while simultaneously presenting other equivalent audit standards and guidelines.
Author
Robert E. Davis
Dr. Robert E. Davis obtained a Bachelor of Business Administration in Accounting and Business Law, a Master of Business Administration in Management Information Systems, and a Doctor of Business Administration in Information Systems Management from Temple, West Chester, and Walden University; respectively. In addition, during his twenty years of involvement in education, Dr. Davis acquired Postgraduate and Professional Technical licenses in Computer Science and Computer Systems Technology. Dr. Davis also obtained the Certified Information Systems Auditor (CISA) certificate — after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination; and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls.Since starting his career as an information systems (IS) auditor, Dr. Davis has provided data security consulting and IS auditing services to the United States Securities and Exchange Commission, United States Enrichment Corporation, Raytheon Company, United States Interstate Commerce Commission, Dow Jones & Company and Fidelity/First Fidelity (Wells Fargo) corporations as well as other organizations; in staff through management positions.Prior to engaging in the practice of IS auditing and information security consulting; Dr. Davis (as a corporate employee) provided inventory as well as general accounting services to Philip Morris, USA and general accounting services to Philadelphia National Bank (Wells Fargo). Furthermore, he has prior experience as a freelance writer of IT audit and information security training material.Dr. Davis has authored articles addressing IT issues for ITAudit magazine, ISACA Journal, and IT Governance, LTD as well as peer reviewed Carnegie Mellon University's technical report "Comparing eSCM-SP v2 and COBIT" and five chapters of Bloomsbury Publishing's "Effective Auditing for Corporates".In regards to training individuals in the information systems audit process, he has provided instruction to the Data Processing Management Association, ISACA-Philadelphia Chapter CISA Review Course participants, 3rd Annual Securasia Congress delegates, the Delaware Valley Chapter of the Information Systems Security Association and an Internet CISA study group. Additionally, Dr. Davis has presented webinars for Compliance4all, Compliance IQ, Compliance Online, and Online Compliance Panel registrants. Dr, Davis also is a former ISACA-Philadelphia Chapter Board of Directors’ member as well as Chairman of College Relations and the inaugural CISA in Residence at Temple University.Dr. Davis received recognition as an accomplished, energetic auditor, author, and speaker with a sound mix of experience and skills in monitoring and evaluating controls. Based on his accomplishments, he has been featured in Temple University's Fox School of Business and Management Alumni Newsletter as well as The Institute for Internal Controls e-newsletter. Furthermore, he is the first and inaugural Temple University CISA in Residence and a Temple University Master of Science in IT Auditing and Cyber-Security Advisory Councilmen. Lastly, he accepted invitations to join Delta Mu Delta International Honor Society, the Golden Key International Honour Society, the Thomson Reuters' Expert Witness List, the IT Governance LTD expert panel, as well as the International Association of IT Governance Standards honorary membership group.
Related to Information Systems Auditing
Titles in the series (5)
Information Systems Auditing: The IS Audit Planning Process Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process Rating: 3 out of 5 stars3/5Information Systems Auditing: The IS Audit Testing Process Rating: 1 out of 5 stars1/5Information Systems Auditing: The IS Audit Reporting Process Rating: 5 out of 5 stars5/5Information Systems Auditing: The IS Audit Follow-up Process Rating: 2 out of 5 stars2/5
Related ebooks
Information Systems Auditing: The IS Audit Reporting Process Rating: 5 out of 5 stars5/5Auditing Information Systems: Enhancing Performance of the Enterprise Rating: 0 out of 5 stars0 ratingsInformation Systems Auditing: The IS Audit Testing Process Rating: 1 out of 5 stars1/5Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process Rating: 3 out of 5 stars3/5IS Auditor - Process of Auditing: Information Systems Auditor, #1 Rating: 0 out of 5 stars0 ratingsInformation Systems Auditing: The IS Audit Planning Process Rating: 4 out of 5 stars4/5Auditing Essentials Rating: 3 out of 5 stars3/5IT Security Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsExternal Audit Staff A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsAudit Function A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsIT Risk Management Process A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsFinancial Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsGuidelines for Organization of Working Papers on Operational Audits Rating: 0 out of 5 stars0 ratingsCertified Information System Auditor A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsFundamentals of Information Security Risk Management Auditing: An introduction for managers and auditors Rating: 5 out of 5 stars5/5The Basics of IT Audit: Purposes, Processes, and Practical Information Rating: 4 out of 5 stars4/5Auditing Information Systems and Controls: The Only Thing Worse Than No Control Is the Illusion of Control Rating: 0 out of 5 stars0 ratingsCISA Exam-Testing Concept-Knowledge of Risk Assessment Rating: 3 out of 5 stars3/5The Executive’S Guide to Internal Auditing Rating: 0 out of 5 stars0 ratingsIT Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsCISA A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsAuditor's Guide to IT Auditing Rating: 5 out of 5 stars5/5A Step By Step Guide: How to Perform Risk Based Internal Auditing for Internal Audit Beginners Rating: 4 out of 5 stars4/5Auditing and Reporting A Complete Guide Rating: 0 out of 5 stars0 ratingsIT Security Audit A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsRisk-Based Internal Audit Rating: 5 out of 5 stars5/5Audit. Review. Compilation. What's the Difference? Rating: 5 out of 5 stars5/5CISA A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsAudit Process A Complete Guide - 2019 Edition Rating: 0 out of 5 stars0 ratings
Certification Guides For You
AWS Certified Cloud Practitioner: Study Guide with Practice Questions and Labs Rating: 5 out of 5 stars5/5CompTIA Security+ Get Certified Get Ahead: SY0-701 Study Guide Rating: 5 out of 5 stars5/5CompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5CAPM Certified Associate in Project Management Practice Exams Rating: 5 out of 5 stars5/5Coding All-in-One For Dummies Rating: 4 out of 5 stars4/5Coding For Dummies Rating: 5 out of 5 stars5/5Mike Meyers' CompTIA A+ Certification Passport, Seventh Edition (Exams 220-1001 & 220-1002) Rating: 2 out of 5 stars2/5AWS Certified Cloud Practitioner All-in-One Exam Guide (Exam CLF-C01) Rating: 5 out of 5 stars5/5Microsoft Office 365 for Business Rating: 4 out of 5 stars4/5Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5CompTIA Data+ Study Guide: Exam DA0-001 Rating: 0 out of 5 stars0 ratingsCompTIA Network+ Certification Guide (Exam N10-008): Unleash your full potential as a Network Administrator (English Edition) Rating: 0 out of 5 stars0 ratingsCompTIA A+ Complete Review Guide: Core 1 Exam 220-1101 and Core 2 Exam 220-1102 Rating: 5 out of 5 stars5/5CompTIA Network+ Practice Tests: Exam N10-008 Rating: 0 out of 5 stars0 ratingsCompTIA Network+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Exam N10-008 Rating: 0 out of 5 stars0 ratingsCompTIA CySA+ Cybersecurity Analyst Certification Passport (Exam CS0-002) Rating: 5 out of 5 stars5/5CompTIA Security+ Certification Practice Exams, Fourth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5CompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsHacking : Guide to Computer Hacking and Penetration Testing Rating: 5 out of 5 stars5/5How to Get Started as a Technical Writer Rating: 4 out of 5 stars4/5CompTIA A+ Complete Study Guide: Exam Core 1 220-1001 and Exam Core 2 220-1002 Rating: 4 out of 5 stars4/5Excel Guide for Success Rating: 5 out of 5 stars5/5CompTIA A+ Certification All-in-One For Dummies Rating: 3 out of 5 stars3/5Understanding Cisco Networking Technologies, Volume 1: Exam 200-301 Rating: 0 out of 5 stars0 ratingsCompTIA A+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Core 1 Exam 220-1101 Rating: 0 out of 5 stars0 ratings
Related podcast episodes
062: The Difference Between a Safety Inspection and Safety Audit: 3 Criteria Needed for Both 0% found this document useful049: 8 Tips for Selecting Key Safety Performance Indicators: Important Key Performance Indicators for Safety 0% found this document usefulPMP BUSINESS (Task 1) COMPLIANCE ??Day #32 0% found this document usefulPMP BUSINESS Environment CHANGES (Agile_PMBOK) - ??Day #34 0% found this document useful083: SMS Pt 4 - What Does ISO 45001 Require?: Safety Management System overview 0% found this document useful#85 ISO 50001 Steps to Success Part 2: With guest Paul Robinson 0% found this document useful084: SMS Pt 5 - Breaking Down ANSI/ASSP Z10: Safety Management System Defined 0% found this document usefulThe Power of Benchmarks - with Lauren Kelley, Founder and CEO OPEX Engine (Episode 1) 0% found this document usefulWhy Lean Portfolio Management? 0% found this document usefulPMP Exam in 40 Days - Evaluate Benefits and Value ??Day #33 0% found this document usefulEnterprise Solution Delivery . Why Enterprise Solution Delivery? 0% found this document usefulEnterprise Solution Delivery-Why Enterprise Solution Delivery? 0% found this document usefulTransforming Data-Driven Decisions into Success - with Allan Willie, Founder and CEO Klipfolio 0% found this document useful058: 4 Safety & Health Investments You Need to Make: Own your safety culture! 0% found this document usefulWHAT IS THE INSPECT AND ADAPT EVENT? 0% found this document useful
Related articles
Act, Don't React: A Leader's Guide to Cybersecurity Rotman ManagementArticle
Act, Don't React: A Leader's Guide to Cybersecurity
Sep 1, 2019
9 min readCyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readArtificial Intelligence: The Next Step for Cybersecurity Cannabis & Tech TodayArticle
Artificial Intelligence: The Next Step for Cybersecurity
Apr 1, 2019
3 min readFive Lessons Of Cybersecurity The Public Sector Can Offer The European Business ReviewArticle
Five Lessons Of Cybersecurity The Public Sector Can Offer
Jun 1, 2022
15 min readHow Operation Managers Can Convince Executives To Solve Problems They Can’t See Facility ManagementArticle
How Operation Managers Can Convince Executives To Solve Problems They Can’t See
Aug 29, 2019
2 min readIso 41000 – Game-changer Or White Elephant? Facility ManagementArticle
Iso 41000 – Game-changer Or White Elephant?
Aug 23, 2018
4 min readWhy You Need A Portfolio Change Manager Facility ManagementArticle
Why You Need A Portfolio Change Manager
Jun 24, 2018
4 min readConquering Compliance Issues Shop TalkArticle
Conquering Compliance Issues
Jun 1, 2022
3 min readSix Business Processes You Need To Rethink For The Agile Age The European Business ReviewArticle
Six Business Processes You Need To Rethink For The Agile Age
May 25, 2021
4 min readThe Complexity Of Executive Remuneration NZBusiness and ManagementArticle
The Complexity Of Executive Remuneration
Jun 24, 2019
A TOPIC that draws mixed opinions, determining executive remuneration, can be a complex process. Typically, the responsibility of a board of directors, it is considered a particularly important duty of their corporate governance. Awarding executive p
2 min readKnow Before Your Inspection Cannabis & Tech TodayArticle
Know Before Your Inspection
Jun 22, 2020
2 min readBoards Must Up Strategy Play Business TodayArticle
Boards Must Up Strategy Play
Jan 7, 2019
4 min readAgile Anarchy Is The Name Of The Future The European Business ReviewArticle
Agile Anarchy Is The Name Of The Future
Sep 30, 2020
15 min readChoosing The Best Fit Finweek - EnglishArticle
Choosing The Best Fit
Aug 7, 2020
all investments have an impact – either positive or negative. A positive impact can be generated deliberately or unintentionally. Selecting the right metrics is an important tenet of the impact measurement and management process. But simply measuring
2 min readCULTURE SHIFT – An Indispensable Shift To Building An AI-Powered Organisation TechfastlyArticle
CULTURE SHIFT – An Indispensable Shift To Building An AI-Powered Organisation
May 3, 2021
5 min readThe Procurement Call For Agile, What Does It Mean? The European Business ReviewArticle
The Procurement Call For Agile, What Does It Mean?
Dec 3, 2019
11 min readBe Prepared Australasian Transport News (ATN)Article
Be Prepared
Aug 19, 2019
3 min readJobs Of The Future True LoveArticle
Jobs Of The Future
Jan 26, 2023
5 min readStartup Due Diligence: What You Need to Know Home Business MagazineArticle
Startup Due Diligence: What You Need to Know
Jun 29, 2023
4 min readUnderstanding Your Technological Risks NZBusiness and ManagementArticle
Understanding Your Technological Risks
Jul 21, 2021
2 min readLeading IT And IT Leads Facility ManagementArticle
Leading IT And IT Leads
Dec 23, 2018
This article discusses technology in a workplace project and the important role of the IT work stream. It details the journey the IT lead and change manager will take together and the many elements of user discovery, through to user training, that ma
6 min readYou Thought Performance Appraisal Was Bad? GET READY FOR WORSE. The European Business ReviewArticle
You Thought Performance Appraisal Was Bad? GET READY FOR WORSE.
Dec 2, 2022
6 min readLeadership Forum: Making Digital Transformation A Reality Rotman ManagementArticle
Leadership Forum: Making Digital Transformation A Reality
Jan 1, 2018
Glenda Crisp Senior Vice President and Chief Data Officer, TD Bank Group + Connie Bonello Associate Partner, Financial Services, IBM Canada IN MOST OF TODAY’S ORGANIZATIONS, data underpins every transaction, operation and interaction. And yet, the ab
8 min readHow Mature Is Your Organisation With Regards To Digital And Web Analytics? NZ MarketingArticle
How Mature Is Your Organisation With Regards To Digital And Web Analytics?
Jun 9, 2021
1 min readA Commitment To Best Practice Farmer's WeeklyArticle
A Commitment To Best Practice
Feb 10, 2020
Few retailers or brand owners will consider doing business with a supplier that does not have certification to a global standard. Certification helps a business improve its product, management systems, quality control and overall competitiveness. The
2 min readAre You Making the Most of Your Data? Rotman ManagementArticle
Are You Making the Most of Your Data?
Jan 1, 2023
8 min readIndustry Assurance Schemes Australasian Transport News (ATN)Article
Industry Assurance Schemes
Dec 16, 2019
4 min readThis Is The End Of The Financial Year Architectural Review Asia PacificArticle
This Is The End Of The Financial Year
Jun 6, 2018
4 min readMore Than The Numbers Facility ManagementArticle
More Than The Numbers
Jun 24, 2018
5 min readIn an Era of Digital Everything, Is Lean Still Relevant? Rotman ManagementArticle
In an Era of Digital Everything, Is Lean Still Relevant?
Jan 1, 2024
6 min read
Reviews for Information Systems Auditing
Rating: 2 out of 5 stars
2/5
1 rating0 reviews
Book preview
Information Systems Auditing - Robert E. Davis
Information Systems Auditing
The IS Audit Follow-up Process
Robert E. Davis, MBA, CISA, CICA
Published by Robert E. Davis at Smashwords
Copyright 2010 Robert E. Davis, MBA, CISA, CICA. All rights reserved.
Smashwords Edition, License Notes
This ebook is licensed for your personal enjoyment only. This ebook may not be re-sold or given away to other people. If you would like to share this book with another person, please purchase an additional copy for each recipient. If you’re reading this book and did not purchase it, or it was not purchased for your use only, then please return to Smashwords.com and purchase your own copy. Thank you for respecting the hard work of this author.
Preface
As computing power has advanced, organizations have become increasingly dependent on technology to carry out their operational requirements and to collect, process, maintain, and report essential data. This reliance on electronically encoded data and on the systems that affect managerial decisions are a major concern of audit professionals. Consequently, Information Technology (IT) auditors examine the adequacy of controls in information systems and related operations to assure effectiveness and efficiency in business processes. In addition, among other assurance services, IT auditors evaluate the reliability of computer generated data supporting financial statements and analyze specific programs and their processing results. To ensure maximum value delivery from audit area assessments, IT auditors need a practice methodology that enables confidence in the work performed.
Objectives
This first edition of Information Systems Auditing: The IS Audit Follow-up Process is part of an electronic booklets series providing comprehensive IS audit planning, study, evaluation, testing, and reporting methods. In terms of content, these monographs convert selected audit standards into practical applications using detailed examples. These monographs also allow auditors to understand various steps and processes required to adequately initiate, document, and compile IT audit phases. Moreover, the reader will acquire an appreciation for IT financial statement, government, and external auditing. Collectively, these monographs function as study guides for CISA examination preparation as well as audit reference manuals.
IT audit area follow-up mastery reflects professional experience and training. Regarding subject mastery, this booklet presents finding form analysis, draft report writing and presentation; which can be translated, if practiced, into professional experience. Chronologically, this monograph presents managerial corrective action considerations and describes required audit follow-up steps performed during an audit area engagement extension, separate engagement, or agreed-upon procedures assignment. Specifically, assessing audit responses and general follow-up activities are discussed from an information systems audit perspective, while simultaneously presenting other equivalent audit standards and guidelines.
Related Material
As a training companion, Pleier
Enjoying the preview?
Page 1 of 1