Understanding and Conducting Information Systems Auditing-（英文，可编辑的pdf电子document)

Textbook:Understanding and Conducting Information Systems Auditing

Author(s): Veena Hingarh. Arif Ahmed

Course description:
This course provides an information systems audit as a management control and not a technology-driven subject. Complete with resources to understand the subject, definitions of technical terms, ready checklists to conduct an information systems audit, and multiple-choice questions to review the level of understanding, the course is designed to be an indispensable resource for the information systems practitioner and aspirant alike.


Contents
PART ONE: CONDUCTING AN INFORMATION SYSTEMS AUDIT
Chapter 1: Overview of Systems Audit
Information Systems Audit
Information Systems Auditor
Legal Requirements of an Information Systems Audit
Systems Environment and Information Systems Audit
Information System Assets
Classification of Controls
The Impact of Computers on Information
The Impact of Computers on Auditing
Information Systems Audit Coverage
Chapter 2: Hardware Security Issues
Hardware Security Objective
Peripheral Devices and Storage Media
Client-Server Architecture
Authentication Devices
Hardware Acquisition
Hardware Maintenance
Management of Obsolescence
Disposal of Equipment
Problem Management
Change Management
Network and Communication Issues
Chapter 3: Software Security Issues
Overview of Types of Software
Elements of Software Security
Control Issues during Installation and Maintenance
Licensing Issues
Problem and Change Management

。。。。。。。。