Rating: 
Summary: Chills Up and Down the Spine
Review: Let's say I want to feel ASSURED, in the sense of QUALITY ASSURED, on my complexed computer-based information systems, that it's not Jose-In-Jose-Out, worse Jose-In-No Idea What It Is-Out, then I want to read this book thoroughly. Look I paid lots of duck for my I.S. and if somehow it is unscrupulously being manhandled by antifirewall troopers, then I definitely want to know. How that's happened. Why that could happened, I know, there was never CONTROL and AUDIT done on it. So this book galantly walked across the field of fiery mines which might explode anytime, as hackers alike learn and relearn from the same springs of life.
Rating:
Summary: Far ahead of the pack !
Review: Another classic by Gallegos, et al. This comprehensive book contains practical information for IT professional. In addition, the book addresses emerging issues in IS audit which serve as a valuable tool for any IT executives interested in addressing the future of IS audit.The book is easy to read with ample real-life examples and references. I highly recommend this book to anyone who wants to gain a solid understanding of Information Technology Control and Audit.
Rating:
Summary: A must have complete guide for any information professionals
Review: I have gone through many series of Information Audit & Control books but by far this one is the most comprehensive one. Not only it succeeds in explaining all the objectives of audit and control in a language that is easy to understand, it also encompasses all the issues starting from IT development through implementation. What I particularly love is the provision of all the IT standards towards the end of the book.
Rating:
Summary: Excellent reference book
Review: This is an excellent book for IT Auditors and IT Security Professionals. There are professional standards that apply to information technology, along with sample audit cases and audit programs which can be used to assist IT auditors in an audit or when drafting a security policy. With rapid changes of the technology such as the concept of LAN, WAN, MAN, firewall, e-commerce, etc., IT Auditors and IT Security Professionals need to stay current with the changes. Information Technology Control and Audit provides the latest information on auditing new environment, improving information systems security, and maintaining effective control over all computing functions.
Rating:
Summary: Excellent Book For Audit and Control
Review: I will take CISA on coming Saturday, in fact, this is my reference material, I found that those materials are very comprehensive and it quotes some practical cases and examples to illustrate the concept. Meanwhile, I found that some sample CISA questions are obtained from there, that's reason I persist to complete it. In addition, the most important point is that it provides some useful appendix like Sample Audit Program and Audit Cases Excercises, it is readily helpful. It do helps me to enrich myself in MIS techniques and review what I have experienced in the past once I have adopted an audit and control mindset. The 2nd edition is released and you could refer it as below:
http://www.isaca.org/Template.cfm?Section=bookstore&Template=/Ecommerce/ProductDisplay.cfm&Productid=155
Rating:
Summary: Great book to understand the IT audit process
Review: I was fortunate enough to have Dr. Gallegos as my professor and used his textbook for the class. I found it to be a great book it addresses the need for IT auditing in the Information age and the methodologies used to perform audits. I recommend this book for those who seek to understand audit concerns in the IT environment,acquire a baseline knowledge of general computer control concepts, or learn the basics of how to perform an IT audit.
Rating:
Summary: The Best IT Control and Audit Book!!!!
Review: This book gave me great insight to the world of IT Audit and Control. It's a very easy to read and very detailed with illustrations and exercises. This book covers all the angels when it comes to learning what audit is. This book is a keeper and shares great points of Audit. The authors being real people in real audit and or educator roles, they are able to share their knowledge through this book. This book is a great investment to grasping what IT Audit and Control is.
Rating:
Summary: My favorite IT auditing, control and security book
Review: This book is gets an A+. I've read a lot of technical books concerning IT auditing and security and this is one of the best. The book was easy to follow and the information was comprehensive and interesting. This is definitely going to be one of my first-hand reference books. Great all around information regarding legal, security, methods, techniques, tools, risks, controls, strategy and standards, career planning and development, and more! This book is well worth its value and I recommend it as a must for anyone who wants to get serious in the IT auditing and security field.
Rating:
Summary: Great source of information for would be IT Auditors!
Review: The book is very informative and encompasses a lot of subjects that IT Auditors would need to succeed in the work force. One of the main themes of the book would probably be using technology to audit technology.
Rating:
Summary: Book Review
Review: For those who know nothing about auditing, this book provides a clear understanding of what auditing is. This book has great references to organizations affiliated with the field. The examples in the book are useful for understanding how to write an auditing program, with step - by - step methods on how to start an audit. Overall, two thumbs up for those who want to know what auditing is all about. Highly recommended.
| 
