Rating: 
Summary: An Outstanding Book!
Review: "Information Technology Control and Audit" is an outstanding book! It provides a step by step of IS auditing process and tremendous amount of up to date information on IT control as well as audit related issues. This book provides information starting from the importance of control and auditability, audit role in Computer Information System, the use of Computer-Assisted Audit Tools and Techniques in audit, and the complexities of CIS operations and control issues. The appendixes of this book are also valuable. We can find audit cases that are related to real life situation, professional standards applying to IT, and samples of audit program on them. This book is really worth to read. If you can only keep one book with you, this book is the one!
Rating:
Summary: Book Review
Review: For those who know nothing about auditing, this book provides a clear understanding of what auditing is. This book has great references to organizations affiliated with the field. The examples in the book are useful for understanding how to write an auditing program, with step - by - step methods on how to start an audit. Overall, two thumbs up for those who want to know what auditing is all about. Highly recommended.
Rating:
Summary: Critique on Information Technology Control and Audit
Review: I personally love this book because of the following reasons: 1. This book is very easy to read- compared to the other books I have read, this book presents the contents in a very clear and concise way. 2. A very through book- the book provides people with detailed information about IS auditing. It covers most areas in which an IS auditor will utilize in his/her practice. 3. An informative book- the book provides people with different valuable tools, techniques as well as guidelines in addressing the audit, control and security problems. In addition, the book provides numerous research resources and case studies.However, the format of the book may be improved by the following suggestion: the book should use different font size to distinguish different level headings.
Rating:
Summary: A great tool and a great book
Review: I seem this book more than just a book, I see it as a tool as well. Unlike some other books that I have only read and hardly used, this book did provide me useful deatil and example on information auditing professional area.
Rating:
Summary: A Must-Have Reference Book
Review: I think the book is a great text book, because it provides not only profound knowledge about information technology control and audit, and also the applications in real world. For instance, in Chapter 14, The Legal Environment and Its Impart on IS Reviews, it informs readers what should be noticed in IT related contract.
Rating:
Summary: Great book to understand the IT audit process
Review: I was fortunate enough to have Dr. Gallegos as my professor and used his textbook for the class. I found it to be a great book it addresses the need for IT auditing in the Information age and the methodologies used to perform audits. I recommend this book for those who seek to understand audit concerns in the IT environment,acquire a baseline knowledge of general computer control concepts, or learn the basics of how to perform an IT audit.
Rating:
Summary: Excellent Book For Audit and Control
Review: I will take CISA on coming Saturday, in fact, this is my reference material, I found that those materials are very comprehensive and it quotes some practical cases and examples to illustrate the concept. Meanwhile, I found that some sample CISA questions are obtained from there, that's reason I persist to complete it. In addition, the most important point is that it provides some useful appendix like Sample Audit Program and Audit Cases Excercises, it is readily helpful. It do helps me to enrich myself in MIS techniques and review what I have experienced in the past once I have adopted an audit and control mindset. The 2nd edition is released and you could refer it as below:
http://www.isaca.org/Template.cfm?Section=bookstore&Template=/Ecommerce/ProductDisplay.cfm&Productid=155
Rating:
Summary: Do you want to explore IT auditing?
Review: The book "Information Technology Control and Audit" is a good reference not only for the beginners, but also for professionals in Information Systems auditing field. All aspects concerning Information Systems auditing are completely covered in the book, including the most current issues in the Information Systems auditing field such as security and privacy of Information Systems. Other aspects of Information Systems auditing are well laid out, starting from the importance of control and auditability, the development process, application risks and controls, the complexities of CIS operations, and other emerging issues on Information Systems auditing. On the appendix, there are cases to challenge our mind to think about real life situation. Standards and guidelines to professionally establish Information Technology is included as part of the appendix too. Therefore, I strongly recommend this book for those individuals who look for current issues and guidelines on Information Systems auditing field.
Rating:
Summary: Great source of information for would be IT Auditors!
Review: The book is very informative and encompasses a lot of subjects that IT Auditors would need to succeed in the work force. One of the main themes of the book would probably be using technology to audit technology.
Rating:
Summary: The Best IT Control and Audit Book!!!!
Review: This book gave me great insight to the world of IT Audit and Control. It's a very easy to read and very detailed with illustrations and exercises. This book covers all the angels when it comes to learning what audit is. This book is a keeper and shares great points of Audit. The authors being real people in real audit and or educator roles, they are able to share their knowledge through this book. This book is a great investment to grasping what IT Audit and Control is.
| 
