ISACA | Reviewed by K. K. Mookhey, CISA, CISM, CISSP
A book review of the third edition of this popular ISACA title.

Based on Volume 1, 2010

Richard Tuck, CES, CPC, CIPC
The economic downturn of 2007-2010 has had a tremendous impact on auditors’ careers in comparison to other recessions.1 Using the analogy of a swinging pendulum, the auditor’s career has gone from one extreme to another.

James Reed, FCIPD
The author discusses the effects of the economic crisis on an IT professionals career, providing tips and advice.

Robert G. Parker, CA•CISA, CMC, FCA
Knowledge of business strategy, enterprise mission and goals, and monitoring objectives and key milestones may assist IT audit and assurance professionals in focusing their audit to better meet management’s and board of directors’ expectations.

Kenneth Newman, CISM, PMP, ITIL/ITSM
A conversation on information security career planning must be framed around the evolution of the industry. Security evolved from a glass house model in which there were few systems, few applications, few users and few key requirements...

Eric J. Brown and William A. Yarberry Jr., CISA, CPA
An accurate assessment of IT risk is essential for the development of a relevant and cost-effective IT control environment. This article explores the concept that IT risk is also driven by the organization’s level of commitment to agile systems.

Michael Juergens, CISA, CGEIT
Green IT initiatives occupy a unique intersection; they accomplish socially responsible goals, while providing hard monetary returns on investment and improved financial performance.

ISACA
Get 20 experts in a room and ask them to prognosticate, and you will get 30 opinions. This seems to be the case with this year’s group of IT trend spotters. This summary recaps the findings of a number of the major IT trend spotters

Thomas J. Bell III, Ph.D., CISA
Independence, objectivity and impartiality are all auditing hallmarks and are essential if an auditor is to render sound professional opinions that are constructive components of corporate governance and capital resource allocation judgments.

Charan Kumar, CISA, CGEIT, CIA, CFE, FCA (India)
Kumar began his career in programming in various roles, including systems analysis, design and development.

Gan Subramaniam, CISA, CISM, CIA, CISSP, SSCP, CCNA, CCSA, ISO 27001 LA
How does a service level agreement (SLA) for Voice-over IP (VoIP) telephony differ from any other standard SLA?

Steven J. Ross, CISA, MBCP, CISSP
Any organization planning to utilize cloud computing services should be well aware of the risks and should implement a robust control structure to counter them. Among the foremost risks is disruption of service, which includes both downtime and data loss.

Tommie W. Singleton, Ph.D., CISA, CITP, CMA, CPA
In recent months, cloud computing and Software as a Service have led the “bleeding edge” of IT. IT auditors need to understand these technologies, establish an approach for identifying the key risks and develop effectual audits of the technologies.

Gerard Wijers and Denis Verhof | Reviewed by Gail Michaelson, CISA, PMP, SSGB
This book is a how-to guide and practical key reference of best practices for the creation of a request for proposal (RFP) for the outsourcing of IT services as a strategic business alternative.

Tarak Modi, CISA, CISSP, PMP
This article explores common-sense strategies to ensure an organization’s cloud computing endeavors are successful and unproblematic.

Henk-Jan van der Molen
This article will analyze the malware situation and outline an economic model. Based on this model, the consequences of software diversification are described, with some recommendations to implement this security measure.

ISACA Member and Certification Holder Compliance
Get an up-to-date listing of the current IT Audit and Assurance Standards, Guidelines, and Tools and Techniques.

Tommie W. Singleton, Ph. D., CISA, CITP, CMA, CPA
Au cours des récents mois, l’informatique en nuage (ou infonuagique) et les services SaaS ont été à l’avant-garde des technologies de l’information.

James Reed, FCIPD
Primero le daremos las malas noticias. El sector TI, luego de resistir muchas reducciones en el nivel de actividad económica, esta vez, sin lugar a dudas, ha sido golpeado.

Michael Juergens, CISA, CGEIT
Las convenciones políticas y sociales de los últimos años han dado origen a un sinnúmero de iniciativas corporativas en relación a la responsabilidad social empresarial (RSE).

作者: Michael Juergens CISA, CGEIT
政治環境和社會風俗在過去幾年來引發無數的企業提倡企業社會責任（CSR）.

作者: Thomas J. Bell III, Ph.D., CISA
獨立性、客觀性與公正性皆為重要的稽核指標，但若稽核者希望其專業意見能為企業治理與資源分配評估帶來具建設性的見解，上述指標將更是稽核必要條件。