Journal Online - Online Exclusive Articles

ICQs & Audit Programs

Education & Conferences

Professional Resources

Downloads

Code of Professional Ethics

Chapter Leader Resources

Computer Donation

Boards & Committees

Career Centre

Billing Audit on a Mobile Operator—Call Detail Record (JOnline)

Dale Johnstone and Ellis Chung Yee Wong, CISA, CFE, CISSP - June 2008

Role Engineering: The Cornerstone of RBAC (JOnline)

Srinivasan Vanamali, CISA, CISSP - June 2008

The Art of Database Monitoring (JOnline)

Sushila Nair, CISA, CISSP, BS 7799 LA - June 2008

E-business: Trust Inhibitors (JOnline)

Ramanan R. Ramanathan, Ph.D., CISSP - March 2008

Lessons From a Fraud Case in Turkey (JOnline)

Mustafa Ayaz, CISA - March 2008

SAS 70 Reports—What Do They Really Tell You? (JOnline)

Silka Gonzalez, CISA, CISM, CISSP, CITP, CPA - March 2008

Auditing IBM AS/400 and System i (JOnline)

John Earl - January 2008

Data Warehouse Audits Promote and Sustain Reporting System Value (JOnline)

Brian Thomas, CISA, CISSP - January 2008

IS Auditing Standards in Malaysia (JOnline)

Jasber Kaur, Yap May Lin and Ainon Zarina Mohamed Nadzri - January 2008

Executive and Board Roles in Information Security (JOnline)

Paul Williams, FCA, MBCS - November 2007

Monitoring Processes and Internal Control Adequacy: Continuous Monitoring Within a Microsoft Access Database (JOnline)

Matthew Brewster, Graham Gal, Ph.D., Seth Rosen and Andrey Zubenko - November 2007

Privacy PKI: Improved Security System for Public Administration (JOnline)

Bálint Molnár, Ph.D., and Andrea Kõ, Ph.D. - November 2007

One of Today's Most Overlooked Security Threats—Six Ways Auditors Can Fight It (JOnline)

Calum MacLeod - September 2007

Turning a Security Compliance Program Into a Competitive Business Advantage (JOnline)

Sekar Sethuraman, CISA, CISM, CIA, CISSP, PGDM (IIMC), CSQA, BS 7799 LA, ISO 20000 Auditor - September 2007

Who Audits the IT Auditor: Monitoring IT Audit Tasks (JOnline)

Omar Y. Sharkasi, CRP, CFE, CBCP - September 2007

Common Ground on Segregation of Duties in Application Management (JOnline)

Richard Savage - July 2007

Federation of E-government: A Model and Framework (JOnline)

Abdelbaset Rabaiah and Eddy Vandijck - July 2007

Security and Privacy vs. Computer Forensics Capabilities (JOnline)

S. Srinivasan - July 2007

Auditing CMMI Maturity and Sarbanes-Oxley Compliance (JOnline)
Laurent Janssens, CISA, and Peter Leeson - May 2007

Certification and Accreditation: A Dilemma (JOnline)
Robert Edwards - May 2007

The Need for Legislation Like Sarbanes-Oxley for IT Governance: An Australian Perspective (JOnline)
Nguyen Huu Cuong - May 2007

Less Than Zero vs. Zero Day: An Approach to Vulnerabilities, Exploits, Patches and Security (JOnline)
Alan Shimel - April 2007

The Information Security Assessment and Evaluation Methodologies: A DoD Framework for Control Self-assessment (JOnline)
Bryan S. Cline, CISA, CISM, CISSP-ISSEP - March 2007

Using Systems Engineering to Aid in HIPAA Compliancy (JOnline)
Michael Martel, CISSP, CPP - March 2007

Change Management in Process Change (JOnline)
Ezekiel Oseni, CISA, ACA, ACIP, ACS - January 2007

Clause 49: An Opportunity for Indian-listed Corporations to Achieve IT Governance (JOnline)
Sree Krishna Rao, CISA, CA, CISSP, CEH, CCNA - January 2007

Controlling Spreadsheets (JOnline)
Raymond R. Panko, Ph.D. - January 2007

A Framework for Conducting IT Due Diligence in Mergers and Acquisitions
Barrett Sundberg, Zheng-Da Tan, Trey Baublits, Hae-Joon Lee, Grant Stanis and Huseyin Tanriverdi - November 2006

Framework for Measuring and Reporting Performance of Information Security Programs in Offshore Outsourcing
Sekar Sethuraman, CISA, CISM, CISSP, CIA, CSQA, BS 7799 LA - November 2006

Telephone Line Scanning Still Matters
Beth Rosenberg - November 2006

Implementing COBIT in Higher Education: Practices That Work Best (JOnline)
Claude L. Council, Ph.D., CISM - September 2006

Sarbanes-Oxley Act Compliance: Strategies for Implementing an Audit Committee Complaints Procedure (JOnline)
Mathias Strasser, Ph.D., and Edgar Weippl, Ph.D., CISA - September 2006

Understanding Data Classification Based on Business and Security Requirements (JOnline)
Rafael Etges, CISA, CISSP, and Karen McNeil - September 2006

Beyond Checklists: A Socratic Approach to Building a Sustainable Change Auditing Practice (JOnline)
Dwayne Melançon - July 2006

Technology Platform or Application—Which Will Best Fulfill Compliance Needs? (JOnline)
Simon Wiltshire - July 2006

The Need for and Implementation of Audit Trails (JOnline)
D.K. Agarwal, CIQA - July 2006

Concept Mapping—A Learning Tool for the Information Systems Audit Profession (JOnline)
Kristine M. Protzman and Vasant Raval, CISA, DBA - May 2006

Information Assurance—Online Lottery Systems (JOnline)
Huzeifa Unwala, CISA, FCA - May 2006

Virtualization Usage, Risks and Audit Tools (JOnline)
Michael Hoesing, CISA, CISSP, CCP, CIA, CPA, CMA - May 2006

Delegating Root Authority and Auditing (JOnline)
Edward Blunt, CISA - March 2006

Road Map for Information Security: What to Do After BS 7799 Certification (JOnline)
Sekar Sethuraman, CISA, CIA, CISSP, CSQA - March 2006

Strengthening Access Control: Using Smart Cards (JOnline)
Tara Kissoon, CISA, CISSP - March 2006

ID Theft: Fraudster Techniques for Personal Data Collection, the Related Digital Evidence and Investigation Issues (JOnline)
Theodore Tryfonas, Ph.D., CISA, Paula Thomas and Paul Owen - January 2006

Network Intrusion Detection: Know What You Do (Not) Need (JOnline)
Tarlok Birdi, CCNP, CCSE, CISSP, and Kees Jansen, CISA, CISSP, PMP - January 2006

The SAP Landscape That Warrants Audit (JOnline)
Yusuf Musaji, CISM, CISA, CISSP, CGA - January 2006

Creating and Enforcing an Effective Information Security Policy (JOnline)
Mark Ungerman - November 2005

On a Mission to Merge (JOnline)
Ray O’Hara, CPP; Tim Williams, CPP; and Karl Perman - November 2005

Trazabilidad de las Operaciones Electrónicas. Un Reto para la Gerencia de Tecnologías de Información (JOnline)
Jeimy J. Cano, Ph.D, CFA, CFE - November 2005

An Approach to Vulnerability Management (JOnline)
Umesh Chavan, CISSP - September 2005

Security Information Management: Not Just the Next Big Thing (JOnline)
Nicole Pauls, CISSP-ISSAP, ISSMP - September 2005

ERP Postimplementation Problems (JOnline)
Yusuf Musaji, CISA, CISM, CISSP, CGA - July 2005

How Does Information Security Fit Into a Governance Framework? (JOnline)
Rupert Dodds, CISA, CISM - July 2005

How the New Standards and Regulations Affect an Auditor's Assessment of Compliance With Internal Controls (Jonline)
M. Virginia Cerullo, Ph.D., CPA, CIA, CFE, and Michael J. Cerullo, Ph.D., CPA, CITP, CFE - July 2005

Information Security and the Human Factor (JOnline)
Mark Egan - May 2005

IT Governance—Practical Case Using COBIT (JOnline)
Greet Volders - May 2005

The 10 Most Important Things an IT Person Must Understand About Security Across the Enterprise (JOnline)
Reed Harrison - May 2005

The Development of a Shared CIO/Executive Management Understanding and Its Impact on Information Systems Strategic Alignment (JOnline)
David Preston, Ph.D., and Elena Karahanna, Ph.D. - May 2005

Generic Exploit Blocking: Prevention, Not Cure (JOnline)
Carey Nachenberg - March 2005

IT Governance: Pass or Fail? (JOnline)
Ken Doughty, CISA, CBCP, and Frank Grieco, CISA - March 2005

Potential Control Processes for Sarbanes-Oxley Compliance (JOnline)
Charles W. Butler, Ph.D., and Gary L. Richardson, Ph.D. - March 2005

A Network Is Threatened by Its Own Endpoints (JOnline)
Mitchell Ashley - January 2005

Enterprise Instant Messaging: Taking Control (JOnline)
Christophe Hug-Heuveneers, CISSP - January 2005

Fingerprint Identification: An Aid to the Authentication Process (JOnline)
Rodger Jamieson, Ph.D., CA, Greg Stephens and Santhosh Kumar - January 2005

Strategies and Influence for Information Security (JOnline)
George Wang, CISA, CISM, CISSP - January 2005