Skip to Main Content
Learn for less: Save 10% on high-quality foundation and auditor training. Find out more
Fundamentals of Information Risk Management Auditing

Fundamentals of Information Risk Management Auditing

SKU: 4758
Authors: Christopher Wright
Publishers: ITGP
Format: PDF
ISBN13: 9781849288163
Pages: 161
Published: 21 Apr 2016
Availability: Always Available
Format: ePub
ISBN13: 9781849288170
Pages: 161
Published: 21 Apr 2016
Availability: Always Available

Provides insight and guidance into information risk management, ideal for those considering a career in information risk management, and for non-specialist auditors and managers.

This book provides an introduction to:

  • Risk and risk management;
  • Information security and management risks; and
  • The concepts of application controls.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our service centre team on +44 (0)333 800 7000.

 
Options:
Price: £12.95
Overview

Kick-start your career in information risk management with this introductory guide 

New information and IT risks seem to be everywhere, and so it is essential that organisations address these risks in the context of enterprise risk management. Fundamentals of Information Risk Management Auditing provides insight and guidance on this practice for those considering a career in information risk management, and is an introduction for non-specialist auditors and managers.


Gain an insight into life as an information risk management auditor

Fundamentals of Information Risk Management Auditing gives an interesting and useful insight into the risks and controls/mitigations that you may encounter when performing or managing an audit of information risk.

This book also features case studies and chapter summaries to provide the best grounding in information risk available for risk managers and non-specialists alike.

Look inside this book


This book covers:

  • What is risk and why is it important?
    • Risks and controls
    • Enterprise risk management (ERM) frameworks
    • Risk management assurance and audit
    • Information risks and frameworks
  • Introduction to general IT and management risks
    • Overview of general IT and management risks
    • Security and data privacy
    • System development and change control
    • Service management and disaster planning
  • Introduction to application controls
    • Overview of application controls (integrity)
  • Life as an information risk management specialist
    • Planning, running and reviewing risk management assignments
    • Personal development and qualifications
About the author

Christopher Wright

Christopher Wright is a former qualified accountant, Certified Information Systems Auditor and Certified ScrumMaster™ with over 30 years’ experience providing financial and IT advisory and risk management services. For 16 years, he worked at KPMG, where he was head of information risk training in the UK and also ran training courses overseas, including in India and throughout mainland Europe. He managed a number of major IS audit and risk assignments, including project risk and business control reviews. He has worked in a wide range of industry sectors, including oil and gas, the public sector, aviation, and travel. For the past eight years, he has been an independent consultant specialising in financial, SOX and operational controls for major ERP implementations, mainly at oil and gas/utilities enterprises.

He is an international speaker and trainer on Agile audit and governance, and is the author of two other titles, also published by ITGP: Agile Governance and Audit and Reviewing IT in Due Diligence

Customer Reviews

(5.00)stars out of 5
Number of reviews: 2
1. on 07/03/2016, said:
5 stars out of 5
This book will be particularly useful for anyone involved in the audit of information security and risk in all organizations that have related issues and concerns. It provides practical approaches to address information risk auditing, even for those with limited technical knowledge. This approach provides understandable examples, which will help readers to consider different aspects, methods and technical options when auditing information security and risk.
2. on 07/03/2016, said:
5 stars out of 5
It is good to have such a useful guide for our chosen profession, Information Risk Management and auditing. This will be very useful to those entering this area for the first time, either as audit practitioners or managers. Especially for those working in multi-national industries as it provides useful oversight of internationally accepted standards.
Showing comments 1-2 of 2
This website uses cookies. View our cookie policy
SAVE 10%
ON SELECTED
TRAINING
Loading...