Information Technology Control and Audit

The book's major strength is that it provides good and detailed descriptions of IT audit and controls. The authors shared several practical experiences in IT auditing along with actual audit projects. The book provides great tools and technique for solving audit, control, and security problems. The career planning and development chapter was really helping me establish a career development plan. The appendixes also include valuable case studies, professional standards, and sample audit programs.

Rating:
Summary: Information Technology Control and Audit
Review: "Information Technology Control and Audit" was an excellent book. This book is for anyone interested in learning about IS Auditing. It provides indepth information about the IS Auditing field. This book does a good job of going over the different concepts and procedures as well as techniques that are used in the auditing profession. I found this book very helpful.

Rating:
Summary: Review of Information Technology Control and Audit
Review: This text is an essential tool for auditors and auditors-to-be to gain an understanding of the auditing profession in Information Systems. The text was easy to understand and simple to apply the techniques learned. It instructed me to prepare for many types of audits and develop sufficient documentation for management. I used this text as an undergraduate taking EDP auditing as an elective course in the Computer Information Systems Department at Cal Poly Pomona University.

Rating:
Summary: outstanding
Review: This book offers a basic and general undrstanding of IS Auditing to beginners. For those trying to choose a career in IS Auditing
it gives excellent insights.

Rating:
Summary: Information Technology Control and Audit
Review: I find out that this book is very useful source for everyone who is in the IS audit field or everyone who wants to learn more about IS audit field. This book not only discusses the IS audit materials in detail, but also briefly reviews the Professional Organizations relate to IS audit field and gives a good sample of audit programs that I find to be very helpful. However, the one star missed from this book is for the book layout. Using more color will be nice !

Rating:
Summary: A good and useful reference book for IS Auditor
Review: If you want to know what is IT auditor and want to choose IT auditor as your career, this is the right book for you! This book explains auditor role in computer information systems and the step-by-step auditing procedures. It is really helpful for the entry level IT auditor to understand the basic auditing skills and procedures which are you need to know and follow. Besides those, these book addresssed lots of technical issues, such as operating system, networking, DBMS, and using computer-assisted audit tools and techniques. If you bought this one, it's no necessary to waste your money to buy another one. You can find everything you need for your auditing purpose! Two commends and suggestions for this book: one is font size in the title and subtitle need to be changed and make user more easily to distinguish. Another is to update and add more concepts in Glossary.

Rating:
Summary: IS Audit Bible
Review: I read the book and give me the concept, methodologies, and technique to perform the audit tasks. You can learn and practice the IS audit tasks through the guideline and professional standards from the book. Also, the book provides audit tools and technique to accomplish the internal and external auditor tasks. I strongly recommend this book for who wish to learn more about IS audit and an IS auditor.

Rating:
Summary: It's a great book!
Review: As an IS auditing student, I found this book very helpful and useful. It is for everyone in this field, but especially for the one who just enters in IS auditing field. This book contains everything related to IS auditing, it includes the topics such as current IS environment, audit role in CIS, auditing CIS applications and networks, CAATTs, as well as the legal issues and career planning development. Most importantly, this book is very practical. The Appendixes consists of cases, samples of auditing programs and glossary. Again, if you are interested in this pretty challenging career and you would like to know more about it, that's the right book for you. It's a great book, but it could be even better if the format was improved. For example, the font of the sub-titles are not clearly distinguishable from that of the titles.

Rating:
Summary: A good book to understand IT control and auditing
Review: I found this book extremely helpful for beginners to build understandings of what IT control is and how IT auditing is performed. This book tries to present a general but complete picture of IT control and auditing, and guides readers step by step to understand IT auditing processes and methodologies from both a theoretical and a practical perspective. The major contents covered in this book include IT auditability and controls, system development controls and auditing processes, CIS application controls and audits, IT operational controls and audits, and legal issues involving IT auditing. The concepts and practices introduced under these topics are of particular value for IT auditing beginners. This is also a well-structured book. Followed the major texts are appendixes of practical audit cases, bibliography of publications, professional standards, glossary, and sample audit programs, all of which provide both IT auditing beginners and professionals with valuable references for further research and study of IT auditing.

I did find some spelling errors and structure confusion in a few chapters that affect readability and understanding of the texts. But they don't affect the overall content quality of the book. This is still a good book to have for learning and referencing.