Skip to Main Content

TIM-6370 v1

Week 7 Resources

Information Technology Control and Audit

Otero, A. R. (2019). Information technology control and audit (5th ed.). CRC Press.

Read Chapters 10 and 11.

The readings for this week discuss the importance of change control management and how these changes impact the audit process. (Chapter 10).  The reading explores the change management procedures, configuration management and organization change management.  The second reading from this source (Chapter 11) explores Information Systems operations.  The readings discuss the importance of policies and procedures for both the organization itself and the audit process.

The Redshelf book link is located in the Getting Started module of your course. Click on the link there to access your book.

Auditing IT infrastructures for Compliance

Weiss, M., & Solomon, M. G. (2016). Auditing IT infrastructures for compliance (2nd ed.). Jones & Bartlett Learning.

Read Chapter 4.

During the previous weeks, you will explore the audit process and how to write the audit report.  This week’s chapter takes a look at auditing standards and frameworks.  It explores the ISO and IEC standards along with NIST.  These various standards help in the development process of the audit and cybersecurity framework.

The Redshelf book link is located in the Getting Started module of your course. Click on the link there to access your book.