What do you think?
Rate this book
IT Auditing #10
IT Auditing: Systems and Infrastructure Life Cycle Management
Upon completion of this course, the participant will be able
1. Evaluate the business case for purposed system development and/or acquisition to ensure that it meets the entitys business goal.
2. Evaluate the project management framework and project governance practices to ensure that business objectives are achieved in a cost-effective manner, while managing risks to the entity.
3. Perform assurance services to ensure that a project is progressing in accordance with project plans, is adequately supported by documentation and status reporting is accurate.
4. Evaluate proposed control mechanisms for systems and/or infrastructure during specification, development/acquisition, and testing to ensure that they will provide safeguards and comply with the entitys policies and other requirements.
5. Evaluate the processes through which systems and/or infrastructure are developed or acquired and tested to ensure that the deliverables meet the entitys objectives.
6. Evaluate the readiness of the system and/or infrastructure for implementation and migration into production.
7. Perform post-implementation assurance services of systems and/or infrastructure to ensure that they meet the entitys objectives and are subject to effective controls.
1. Evaluate the business case for purposed system development and/or acquisition to ensure that it meets the entitys business goal.
2. Evaluate the project management framework and project governance practices to ensure that business objectives are achieved in a cost-effective manner, while managing risks to the entity.
3. Perform assurance services to ensure that a project is progressing in accordance with project plans, is adequately supported by documentation and status reporting is accurate.
4. Evaluate proposed control mechanisms for systems and/or infrastructure during specification, development/acquisition, and testing to ensure that they will provide safeguards and comply with the entitys policies and other requirements.
5. Evaluate the processes through which systems and/or infrastructure are developed or acquired and tested to ensure that the deliverables meet the entitys objectives.
6. Evaluate the readiness of the system and/or infrastructure for implementation and migration into production.
7. Perform post-implementation assurance services of systems and/or infrastructure to ensure that they meet the entitys objectives and are subject to effective controls.
Unknown Binding
First published October 27, 2009
1 person is currently reading
16 people want to read
About the author
Robert E. Davis
25 books11 followers Dr. Robert E. Davis obtained a Bachelor of Business Administration degree in Accounting and Business Law, a Master of Business Administration degree in Management Information Systems, and a Doctor of Business Administration degree in Information Systems Management from Temple, West Chester, and Walden University; respectively. In addition, during his twenty years of involvement in education, Dr. Davis acquired Postgraduate and Professional Technical licenses in Computer Science and Computer Systems Technology. Dr. Davis also obtained the Certified Information Systems Auditor (CISA) certificate -- after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination; and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls.
Since starting his career as an information systems (IS) auditor, Dr. Davis has provided data security consulting and IS auditing services to the United States Securities and Exchange Commission, United States Enrichment Corporation, Raytheon Company, United States Interstate Commerce Commission, Dow Jones & Company and Fidelity/First Fidelity (Wells Fargo) corporations as well as other organizations; in staff through management positions.
Prior to engaging in the practice of IS auditing and information security consulting; Dr. Davis (as a corporate employee) provided inventory as well as general accounting services to Philip Morris, USA and general accounting services to Philadelphia National Bank (Wells Fargo). Furthermore, he has prior experience as a freelance writer of IT audit and information security training material. Specifically, his published credits include:
•Assuring IT Legal Compliance
•Ensuring Information Assets Protection
•IT Auditing: An Adaptive Process
•IT Auditing: Assuring Information Assets Protection
•IT Auditing: Business Continuity and Disaster Recovery
•IT Auditing: Information Assets Protection
•IT Auditing: Information Security Governance
•IT Auditing: Irregular and Illegal Acts
•IT Auditing: IT Governance
•IT Auditing: IT Service Delivery and Support
•IT Auditing: Systems and Infrastructure Life Cycle Management
•IT Auditing: The Process
Dr. Davis has authored articles addressing IT issues for The Institute of Internal Auditors, IT Governance LTD and ISACA as well as furnished Internet content to Techtarget.com, Toolbox.com and Suite101.com. Additionally, his editorial experience includes reviewing Carnegie Mellon University's technical report "Comparing eSCM-SP v2 and COBIT" and five chapters of Bloomsbury's "Effective Auditing for Corporates".
In regards to training individuals in the information systems audit process, he has provided instruction to the Data Processing Management Association, ISACA-Philadelphia Chapter CISA Review Course participants, 3rd Annual Securasia Congress delegates and an Internet CISA study group.
Based on his accomplishments, Dr. Davis has been featured in Temple University's Fox School of Business and Management Alumni Newsletter as well as The Institute for Internal Controls e-newsletter. Furthermore, he has achieved recognition as the (First and Inaugural) Temple University CISA in Residence and a Temple University Master of Science in IT Auditing and Cyber-Security Advisory Councilmen. Lastly, he has accepted invitations to join Delta Mu Delta International Honor Society, the Golden Key International Honour So
Since starting his career as an information systems (IS) auditor, Dr. Davis has provided data security consulting and IS auditing services to the United States Securities and Exchange Commission, United States Enrichment Corporation, Raytheon Company, United States Interstate Commerce Commission, Dow Jones & Company and Fidelity/First Fidelity (Wells Fargo) corporations as well as other organizations; in staff through management positions.
Prior to engaging in the practice of IS auditing and information security consulting; Dr. Davis (as a corporate employee) provided inventory as well as general accounting services to Philip Morris, USA and general accounting services to Philadelphia National Bank (Wells Fargo). Furthermore, he has prior experience as a freelance writer of IT audit and information security training material. Specifically, his published credits include:
•Assuring IT Legal Compliance
•Ensuring Information Assets Protection
•IT Auditing: An Adaptive Process
•IT Auditing: Assuring Information Assets Protection
•IT Auditing: Business Continuity and Disaster Recovery
•IT Auditing: Information Assets Protection
•IT Auditing: Information Security Governance
•IT Auditing: Irregular and Illegal Acts
•IT Auditing: IT Governance
•IT Auditing: IT Service Delivery and Support
•IT Auditing: Systems and Infrastructure Life Cycle Management
•IT Auditing: The Process
Dr. Davis has authored articles addressing IT issues for The Institute of Internal Auditors, IT Governance LTD and ISACA as well as furnished Internet content to Techtarget.com, Toolbox.com and Suite101.com. Additionally, his editorial experience includes reviewing Carnegie Mellon University's technical report "Comparing eSCM-SP v2 and COBIT" and five chapters of Bloomsbury's "Effective Auditing for Corporates".
In regards to training individuals in the information systems audit process, he has provided instruction to the Data Processing Management Association, ISACA-Philadelphia Chapter CISA Review Course participants, 3rd Annual Securasia Congress delegates and an Internet CISA study group.
Based on his accomplishments, Dr. Davis has been featured in Temple University's Fox School of Business and Management Alumni Newsletter as well as The Institute for Internal Controls e-newsletter. Furthermore, he has achieved recognition as the (First and Inaugural) Temple University CISA in Residence and a Temple University Master of Science in IT Auditing and Cyber-Security Advisory Councilmen. Lastly, he has accepted invitations to join Delta Mu Delta International Honor Society, the Golden Key International Honour So
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
No one has reviewed this book yet.