journal header

Volume 6, 2016

This Week's Online-Exclusive Feature

The Tone at the Top: Assessing the Board’s Effectiveness
30 November 2016
Gary Roboff

Thought leaders have long recognized that strong leadership and ethical culture are foundational building blocks of enterprises with top-performing risk management programs. However, it is only in the past few years that the striking number of operating-risk-related events, such as data breaches and Bank Secrecy Act/Anti-Money Laundering (BSA/AML) problems in the United States and money laundering issues in the United Kingdom, have made the consequences of a lack of such leadership conspicuously evident. Consensus is quickly growing that a strong risk culture cannot be developed without a top-of-the-house attitude that continuously demonstrates the board and C-suite care about building and maintaining an effective enterprise risk program, inclusive of both cyber security and third-party risk issues. Read More >>

Indicates Online-Exclusive Content



This Week's Featured Blog

The Keys to Using Analytic Techniques
14 November 2016
Spiros Alexiou, Ph.D, CISA

Modern companies routinely collect a large amount of data, which are used for a variety of purposes, including audits. Analyzing the data and deciphering the story that they are telling could be done with very simple techniques or can require quite complex and sophisticated techniques. A number of software packages, some of them free, perform such complex analyses. These techniques can be applied by most auditors, provided they understand what the techniques do, not necessarily how they work. In my recent Journal article, I present a number of such techniques that have proven useful in audits. These techniques have different scopes and purposes, e.g., clustering automatically finds groups of similar behavior, while case-based reasoning finds the most closely related data instance in the database. Read More >>

Indicates Online-Exclusive Content



What's New for Nonmembers

IS Audit Basics Articles

The Soft Skills Challenge, Part 6

The Soft Skills Challenge, Part 5

The Soft Skills Challenge, Part 4

Elements of an IS/IT Audit Strategy, Part 2

Elements of an IS/IT Audit Strategy, Part 1

Auditing IS/IT Risk Management, Part 3


Full Journal Issues

Volume 6, 2015 The Internet of Things

Volume 5, 2015 Cybersecurity

Volume 4, 2015 Regulations & Compliance

Volume 3, 2015 Governance and Management of Enterprise IT (GEIT)

Volume 2, 2015 Opportunities and Challenges of New Technology

Volume 1, 2015 Analytics and Risk Intelligence