This website uses cookies. View our cookie policy
Close
United Kingdom
Select regional store:
Fundamentals of Information Risk Management Auditing

Fundamentals of Information Risk Management Auditing

SKU: 4758
Authors: Christopher Wright
Publishers: ITGP
Format: Softcover
ISBN13: 9781849288156
Pages: 170
Published: 21 Apr 2016
Availability: In Stock
Format: Adobe eBook
ISBN13: 9781849288163
Pages: 161
Published: 21 Apr 2016
Availability: Always Available
Format: ePub
ISBN13: 9781849288170
Pages: 161
Published: 21 Apr 2016
Availability: Always Available

Book of the month: Provides insight and guidance into information risk management, ideal for those considering a career in information risk management, and for non-specialist auditors and managers.

  • Introduction to risk and risk management
  • Introduction to information security and management risks
  • Introduction to the concepts of application controls

Buy before the end of July to save 10%

What format do I need?

Options:
Regular Price: £12.95
On Sale For: £11.65

Description

Kick-start your career in information risk management with this introductory guide

 

“This book will be particularly useful for anyone involved in the audit of information security and risk in all organizations that have related issues and concerns.”

Antonio Velasco, CEO of Sinersys Technologies

 

New information and IT risks seem to be everywhere, and so it is essential that organisations address these risks in the context of enterprise risk management. Fundamentals of Information Risk Management Auditing provides insight and guidance on this practice for those considering a career in information risk management, and is an introduction for non-specialist auditors and managers.

Gain an insight into life as an information risk management auditor

Fundamentals of Information Risk Management Auditing gives an interesting and useful insight into the risks and controls/mitigations that you may encounter when performing or managing an audit of information risk.

This book also features case studies and chapter summaries to provide the best grounding in information risk available for risk managers and non-specialists alike.

Look inside this book >>

 

This book covers:

  • What is risk and why is it important?
    • Risks and controls
    • Enterprise risk management (ERM) frameworks
    • Risk management assurance and audit
    • Information risks and frameworks
  • Introduction to general IT and management risks
    • Overview of general IT and management risks
    • Security and data privacy
    • System development and change control
    • Service management and disaster planning
  • Introduction to application controls
    • Overview of application controls (integrity)
  • Life as an information risk management specialist
    • Planning, running and reviewing risk management assignments
    • Personal development and qualifications

 

About the author

 

Christopher Wright is a former qualified accountant, Certified Information Systems Auditor and Certified ScrumMaster™ with over 30 years’ experience providing financial and IT advisory and risk management services. For 16 years, he worked at KPMG, where he was head of information risk training in the UK and also ran training courses overseas, including in India and throughout mainland Europe. He managed a number of major IS audit and risk assignments, including project risk and business control reviews. He has worked in a wide range of industry sectors, including oil and gas, the public sector, aviation, and travel. For the past eight years, he has been an independent consultant specialising in financial, SOX and operational controls for major ERP implementations, mainly at oil and gas/utilities enterprises.

He is an international speaker and trainer on Agile audit and governance, and is the author of two other titles, also published by ITGP: Agile Governance and Audit and Reviewing IT in Due Diligence.

Customer Reviews

(2# of Ratings:)
07/03/2016
0 people found this comment helpful
0 did not
Was this comment helpful?
|
This book will be particularly useful for anyone involved in the audit of information security and risk in all organizations that have related issues and concerns. It provides practical approaches to address information risk auditing, even for those with limited technical knowledge. This approach provides understandable examples, which will help readers to consider different aspects, methods and technical options when auditing information security and risk.
07/03/2016
0 people found this comment helpful
0 did not
Was this comment helpful?
|
It is good to have such a useful guide for our chosen profession, Information Risk Management and auditing. This will be very useful to those entering this area for the first time, either as audit practitioners or managers. Especially for those working in multi-national industries as it provides useful oversight of internationally accepted standards.
Showing comments 1-2 of 2
Loading...