Rating: 4 out of 5 stars
4/5
Ebook57 pages39 minutes
Information Systems Auditing: The IS Audit Planning Process
Rating: 3.5 out of 5 stars
3.5/5
()
About this ebook
IS audit area planning mastery reflects professional experience and training. Regarding subject mastery, this booklet contains a detail plan preparation, documentation, and presentation process for IS audits; which can be translated, if practiced, into professional experience.
Author
Robert E. Davis
Dr. Robert E. Davis obtained a Bachelor of Business Administration in Accounting and Business Law, a Master of Business Administration in Management Information Systems, and a Doctor of Business Administration in Information Systems Management from Temple, West Chester, and Walden University; respectively. In addition, during his twenty years of involvement in education, Dr. Davis acquired Postgraduate and Professional Technical licenses in Computer Science and Computer Systems Technology. Dr. Davis also obtained the Certified Information Systems Auditor (CISA) certificate — after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination; and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls.Since starting his career as an information systems (IS) auditor, Dr. Davis has provided data security consulting and IS auditing services to the United States Securities and Exchange Commission, United States Enrichment Corporation, Raytheon Company, United States Interstate Commerce Commission, Dow Jones & Company and Fidelity/First Fidelity (Wells Fargo) corporations as well as other organizations; in staff through management positions.Prior to engaging in the practice of IS auditing and information security consulting; Dr. Davis (as a corporate employee) provided inventory as well as general accounting services to Philip Morris, USA and general accounting services to Philadelphia National Bank (Wells Fargo). Furthermore, he has prior experience as a freelance writer of IT audit and information security training material.Dr. Davis has authored articles addressing IT issues for ITAudit magazine, ISACA Journal, and IT Governance, LTD as well as peer reviewed Carnegie Mellon University's technical report "Comparing eSCM-SP v2 and COBIT" and five chapters of Bloomsbury Publishing's "Effective Auditing for Corporates".In regards to training individuals in the information systems audit process, he has provided instruction to the Data Processing Management Association, ISACA-Philadelphia Chapter CISA Review Course participants, 3rd Annual Securasia Congress delegates, the Delaware Valley Chapter of the Information Systems Security Association and an Internet CISA study group. Additionally, Dr. Davis has presented webinars for Compliance4all, Compliance IQ, Compliance Online, and Online Compliance Panel registrants. Dr, Davis also is a former ISACA-Philadelphia Chapter Board of Directors’ member as well as Chairman of College Relations and the inaugural CISA in Residence at Temple University.Dr. Davis received recognition as an accomplished, energetic auditor, author, and speaker with a sound mix of experience and skills in monitoring and evaluating controls. Based on his accomplishments, he has been featured in Temple University's Fox School of Business and Management Alumni Newsletter as well as The Institute for Internal Controls e-newsletter. Furthermore, he is the first and inaugural Temple University CISA in Residence and a Temple University Master of Science in IT Auditing and Cyber-Security Advisory Councilmen. Lastly, he accepted invitations to join Delta Mu Delta International Honor Society, the Golden Key International Honour Society, the Thomson Reuters' Expert Witness List, the IT Governance LTD expert panel, as well as the International Association of IT Governance Standards honorary membership group.
Related to Information Systems Auditing
Titles in the series (5)
Information Systems Auditing: The IS Audit Planning Process Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process Rating: 3 out of 5 stars3/5Information Systems Auditing: The IS Audit Testing Process Rating: 1 out of 5 stars1/5Information Systems Auditing: The IS Audit Reporting Process Rating: 5 out of 5 stars5/5Information Systems Auditing: The IS Audit Follow-up Process Rating: 2 out of 5 stars2/5
Related ebooks
Information Systems Auditing: The IS Audit Testing Process Rating: 1 out of 5 stars1/5Information Systems Auditing: The IS Audit Reporting Process Rating: 5 out of 5 stars5/5Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process Rating: 3 out of 5 stars3/5Information Systems Auditing: The IS Audit Follow-up Process Rating: 2 out of 5 stars2/5IT Risk Management Process A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsIS Auditor - Process of Auditing: Information Systems Auditor, #1 Rating: 0 out of 5 stars0 ratingsAuditing Information Systems: Enhancing Performance of the Enterprise Rating: 0 out of 5 stars0 ratingsIT Security Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsCISA A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsInternal Auditing A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsISO 20000 A Complete Guide - 2020 Edition Rating: 4 out of 5 stars4/5Risk Based Internal Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsAuditing Information Systems and Controls: The Only Thing Worse Than No Control Is the Illusion of Control Rating: 0 out of 5 stars0 ratingsIT Audit A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsAuditor's Guide to IT Auditing Rating: 5 out of 5 stars5/5Hardening by Auditing: A Handbook for Measurably and Immediately Iimrpving the Security Management of Any Organization Rating: 0 out of 5 stars0 ratingsIT GRC A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsIT Audit A Complete Guide - 2019 Edition Rating: 0 out of 5 stars0 ratingsAuditors A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsThe Basics of IT Audit: Purposes, Processes, and Practical Information Rating: 4 out of 5 stars4/5CISA A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsSeparation Of Duties A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsCISA Exam-Testing Concept-Knowledge of Risk Assessment Rating: 3 out of 5 stars3/5Internal Auditor A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsIT Security Audit A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsCISA Exam-Testing Concept-Classification of Information Assets (Domain-5) Rating: 3 out of 5 stars3/5Sarbanes Oxley Internal Controls A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsAssuring IT Legal Compliance Rating: 5 out of 5 stars5/5
Certification Guides For You
AWS Certified Cloud Practitioner: Study Guide with Practice Questions and Labs Rating: 5 out of 5 stars5/5Coding All-in-One For Dummies Rating: 4 out of 5 stars4/5PHR and SPHR Professional in Human Resources Certification Complete Study Guide: 2018 Exams Rating: 0 out of 5 stars0 ratingsAWS Certified Cloud Practitioner All-in-One Exam Guide (Exam CLF-C01) Rating: 5 out of 5 stars5/5Coding For Dummies Rating: 5 out of 5 stars5/5CompTIA A+ Complete Review Guide: Core 1 Exam 220-1101 and Core 2 Exam 220-1102 Rating: 5 out of 5 stars5/5CCNA Certification Study Guide, Volume 2: Exam 200-301 Rating: 0 out of 5 stars0 ratingsCompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5Understanding Cisco Networking Technologies, Volume 1: Exam 200-301 Rating: 0 out of 5 stars0 ratingsCompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsCompTIA Security+ Get Certified Get Ahead: SY0-701 Study Guide Rating: 5 out of 5 stars5/5Microsoft Office 365 for Business Rating: 4 out of 5 stars4/5CompTIA Security+ Certification Practice Exams, Fourth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Mike Meyers' CompTIA Network+ Certification Passport, Sixth Edition (Exam N10-007) Rating: 1 out of 5 stars1/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5CompTIA PenTest+ Study Guide: Exam PT0-002 Rating: 0 out of 5 stars0 ratingsCompTIA Data+ Study Guide: Exam DA0-001 Rating: 0 out of 5 stars0 ratingsHow to Get Started as a Technical Writer Rating: 4 out of 5 stars4/5AWS Certified Solutions Architect Study Guide with 900 Practice Test Questions: Associate (SAA-C03) Exam Rating: 0 out of 5 stars0 ratingsCompTIA Security+ Practice Tests: Exam SY0-501 Rating: 0 out of 5 stars0 ratingsAZ-900: Microsoft Azure Fundamentals Practice Questions Third Edition Rating: 0 out of 5 stars0 ratingsCompTIA CySA+ Study Guide: Exam CS0-003 Rating: 0 out of 5 stars0 ratingsMike Meyers' CompTIA A+ Certification Passport, Seventh Edition (Exams 220-1001 & 220-1002) Rating: 2 out of 5 stars2/5CompTIA CySA+ Practice Tests: Exam CS0-002 Rating: 0 out of 5 stars0 ratingsMike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5CompTIA A+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Core 1 Exam 220-1101 Rating: 0 out of 5 stars0 ratings
Related podcast episodes
049: 8 Tips for Selecting Key Safety Performance Indicators: Important Key Performance Indicators for Safety 0% found this document useful084: SMS Pt 5 - Breaking Down ANSI/ASSP Z10: Safety Management System Defined 0% found this document useful062: The Difference Between a Safety Inspection and Safety Audit: 3 Criteria Needed for Both 0% found this document usefulThe Power of Benchmarks - with Lauren Kelley, Founder and CEO OPEX Engine (Episode 1) 0% found this document useful058: 4 Safety & Health Investments You Need to Make: Own your safety culture! 0% found this document useful083: SMS Pt 4 - What Does ISO 45001 Require?: Safety Management System overview 0% found this document usefulWBSP212: Grow Your Business by Understanding the Nuances of Internal Audit w/ Michael Venner 0% found this document usefulWBSP400: Grow Your Business by Learning General Ledger Best Practices, a Live Interview w/ a Panel of Experts 0% found this document usefulStart Your Business Analysis Career With Certification 0% found this document useful#85 ISO 50001 Steps to Success Part 2: With guest Paul Robinson 0% found this document useful
Related articles
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readManaging the Risks of Digital Lending Business TodayArticle
Managing the Risks of Digital Lending
Feb 18, 2022
TECHNOLOGY HAS BEEN the crux of the Indian banking system and the advent of Covid-19 has fuelled the shift of business models from ‘physical’ to ‘digital’. The journey of innovation, which started with internet banking and digital means of payments,
6 min readHow Operation Managers Can Convince Executives To Solve Problems They Can’t See Facility ManagementArticle
How Operation Managers Can Convince Executives To Solve Problems They Can’t See
Aug 29, 2019
2 min readChoosing The Best Fit Finweek - EnglishArticle
Choosing The Best Fit
Aug 7, 2020
all investments have an impact – either positive or negative. A positive impact can be generated deliberately or unintentionally. Selecting the right metrics is an important tenet of the impact measurement and management process. But simply measuring
2 min readSix Business Processes You Need To Rethink For The Agile Age The European Business ReviewArticle
Six Business Processes You Need To Rethink For The Agile Age
May 25, 2021
4 min readBoards Must Up Strategy Play Business TodayArticle
Boards Must Up Strategy Play
Jan 7, 2019
4 min readIso 41000 – Game-changer Or White Elephant? Facility ManagementArticle
Iso 41000 – Game-changer Or White Elephant?
Aug 23, 2018
4 min readShould Your 401(k) Be ‘Custom Made’? KiplingerArticle
Should Your 401(k) Be ‘Custom Made’?
Oct 11, 2021
The term “custom made” has long been associated with the finest products. But custom-made products aren’t limited to cars, clothes and furniture. In fact, 7% of 401(k) plan participants on Vanguard’s platform have their 401(k) asset allocation custo
5 min readThe Complexity Of Executive Remuneration NZBusiness and ManagementArticle
The Complexity Of Executive Remuneration
Jun 24, 2019
A TOPIC that draws mixed opinions, determining executive remuneration, can be a complex process. Typically, the responsibility of a board of directors, it is considered a particularly important duty of their corporate governance. Awarding executive p
2 min readStartup Due Diligence: What You Need to Know Home Business MagazineArticle
Startup Due Diligence: What You Need to Know
Jun 29, 2023
4 min readCOVERING BLIND SPOTS. Does The Board Have The Right Information For Effective Decision Making? The European Business ReviewArticle
COVERING BLIND SPOTS. Does The Board Have The Right Information For Effective Decision Making?
Sep 25, 2021
6 min readConquering Compliance Issues Shop TalkArticle
Conquering Compliance Issues
Jun 1, 2022
3 min readSensing From Within: The Insight-Driven Organization Rotman ManagementArticle
Sensing From Within: The Insight-Driven Organization
Sep 1, 2019
8 min readAre You Making the Most of Your Data? Rotman ManagementArticle
Are You Making the Most of Your Data?
Jan 1, 2023
8 min readBuilding A Future-proof Company – Four Cornerstones Of Transformative Corporate Foresight The European Business ReviewArticle
Building A Future-proof Company – Four Cornerstones Of Transformative Corporate Foresight
Feb 25, 2021
5 min readDESIGN THINKING: Eight Mistakes to Avoid The European Business ReviewArticle
DESIGN THINKING: Eight Mistakes to Avoid
Feb 4, 2019
3 min readHow Should YOU Measure Your Investment Performance? KiplingerArticle
How Should YOU Measure Your Investment Performance?
Aug 22, 2018
I've spent over 25 years in the financial advisory profession but recently had a startling realization about investment performance. During a friendly debate with a friend who manages a small-cap mutual fund, I realized even seasoned investment profe
2 min readCalled To Account Money MagazineArticle
Called To Account
Apr 1, 2020
2 min readThis Is The End Of The Financial Year Architectural Review Asia PacificArticle
This Is The End Of The Financial Year
Jun 6, 2018
4 min readJobs Of The Future True LoveArticle
Jobs Of The Future
Jan 26, 2023
5 min readHow To Turn Customer Insight Into Growth Rotman ManagementArticle
How To Turn Customer Insight Into Growth
May 1, 2017
10 min readCULTURE SHIFT – An Indispensable Shift To Building An AI-Powered Organisation TechfastlyArticle
CULTURE SHIFT – An Indispensable Shift To Building An AI-Powered Organisation
May 3, 2021
5 min readHow Do You Know You Are Okay? NZBusiness and ManagementArticle
How Do You Know You Are Okay?
May 27, 2019
2 min readThe Procurement Call For Agile, What Does It Mean? The European Business ReviewArticle
The Procurement Call For Agile, What Does It Mean?
Dec 3, 2019
11 min readRun Sales on Data, Not Hunches ThinkSalesArticle
Run Sales on Data, Not Hunches
Nov 2, 2016
4 min readA Scorecard for Your Financial Adviser KiplingerArticle
A Scorecard for Your Financial Adviser
Apr 24, 2019
Sometimes it can be difficult to fully grasp the value of a financial adviser. Do they mostly manage my money? Are they doing a good job for me? How would I even know? These are important questions that can often be difficult to answer. There ar
2 min readBRIDGING SILOS: Aligning Innovators with Strategic Leaders The European Business ReviewArticle
BRIDGING SILOS: Aligning Innovators with Strategic Leaders
Jul 20, 2018
5 min readKnow Before Your Inspection Cannabis & Tech TodayArticle
Know Before Your Inspection
Jun 22, 2020
2 min readIs It Time To Hire A Sales Execution Auditor? ThinkSalesArticle
Is It Time To Hire A Sales Execution Auditor?
Jun 26, 2019
3 min readDesigning Results-Oriented Leadership Development Programmes The European Business ReviewArticle
Designing Results-Oriented Leadership Development Programmes
May 22, 2018
6 min read
Reviews for Information Systems Auditing
Rating: 3.5 out of 5 stars
3.5/5
2 ratings0 reviews
Book preview
Information Systems Auditing - Robert E. Davis
Information Systems Auditing
The IS Audit Planning Process
2nd Edition
Robert E. Davis, MBA, CISA, CICA
Published by Robert E. Davis at Smashwords
Copyright 2009 Robert E. Davis, MBA, CISA, CICA. All rights reserved.
Smashwords Edition, License Notes
This ebook is licensed for your personal enjoyment only. This ebook may not be re-sold or given away to other people. If you would like to share this book with another person, please purchase an additional copy for each recipient. If you’re reading this book and did not purchase it, or it was not purchased for your use only, then please return to Smashwords.com and purchase your own copy. Thank you for respecting the hard work of this author.
Preface
The global Information Technology (IT) community considers becoming a Certified Information Systems Auditor (CISA) a major accomplishment. To obtain the CISA designation information systems auditors, controls, or security professionals must pass a rigorous test demonstrating knowledge in a multitude of information systems audit process areas. Information Systems Audit and Control Association (ISACA) standards and guidelines, audit risk, and audit objectives are just a few knowledge requirements CISA candidates must master.
Objectives
Information Systems Auditing: The IS Audit Planning Process is part of an electronic booklets series providing comprehensive IS audit planning, study, evaluation, and testing methods. Systemically, the series covers major steps in the IS audit processes not chronicled in ISACA standards and guidelines. In terms of content, these monographs convert selected audit standards into practical applications using detailed examples. These monographs also allow auditors to understand various steps and processes required to adequately initiate, document, and compile IT audit phases. Through these study assistants, a CISA student will acquire an appreciation for IT financial statement, government, and external auditing. Collectively, these monographs function as study guides for CISA examination preparation as well as audit reference manuals.
IS audit area planning mastery reflects professional experience and training. Regarding subject mastery, this booklet contains a detail plan preparation, documentation, and presentation process for IS audits; which can be translated, if practiced, into professional experience. Chronologically, this monograph describes required audit steps performed during an audit area assignment. Specifically, audit objectives, risk, and materiality, are described from an ISA’s perspective, while simultaneously presenting other equivalent audit standards and guidelines. Furthermore, auditor opening conference communication is discussed at this monograph’s conclusion.
Related Material
To enhance certification candidate preparation, Boson Software offers practice tests traversing the ISACA CISA examination domains. These practice tests are excellent knowledge diagnostic and test simulation tools, furnishing a variety of question formats for the purchaser. Lastly, the practice tests are customizable, therefore, allowing selected CISA domain study.
Table of Contents
Introduction
1.0 Auditors
1.1 Audit Objectives
1.2 Business Objectives
1.3 Organizational Practices
1.4 Materiality
1.5 Audit Risk Assessment
1.6 Internal Control Assessment
2.0 Audit Plan
2.1 Engagement Letter
3.0 Opening Conference
Appendix A
Enjoying the preview?
Page 1 of 1