Ms. Lew says she learned about her current position in 2004 after conversations with several fellow members of the Information Systems Audit and Control Association.
In a recent survey of 4, 500 high-level IT professionals in 83 countries, ISACA (the Information Systems Audit and Control Association) discovered that organizations fear the risks of using public cloud services.
Currently, no federal regulations are in place to govern cloud computing, and according to an April 2011 Information Systems Audit and Control Association survey of 1, 800 Chief Information Officers (CIOs), compliance is a top risk.
For example, there are 189 ISO standards for information security, our National Institute of Standards and Technology ( NIST) has produced a full set of world-class materials on information security, and the Information Systems Audit and Control Association ( ISACA) has developed its best practices, the Control Objectives for Information Technology ( CobiT).
FORBES: Congress Needs to Go Back To School on Cyber Legislation
Under Auditing Standard 5, passed in mid-2007, the audit of internal control over financial reporting is now integrated with the audit of the financial statements.
FORBES: The State of Sarbanes-Oxley Compliance According To Protiviti
Did we make any progress in changing attitudes about control value of internal audit, as a very necessary cost of doing business, in the last seven years?
FORBES: The State of Sarbanes-Oxley Compliance According To Protiviti
For example, the National Air Traffic Service, which has presided over one of the worst computer-procurement failures at its much-delayed Swanwick control centre, is outside parliamentary audit.
The information came to light during an audit of some contracts started before the new Labour administration took control in last May's election.
Whether the board or audit committee understands and exercises oversight responsibility over financial reporting and internal control.
FORBES: JP Morgan Chase Named A New Chief Auditor (For Corporate!); Can You Name Him?
The failures in the confirmation process on the Satyam audit were not limited to that engagement, but were indicative of a quality control failure throughout PW India.
FORBES: The Grand Illusion: PwC Settles Satyam U.S. Class Action Claims
Further, while we also named PwC international and PwC U.S. as defendants, we only named them as control persons of PwC India as they were not the auditors and did not sign the audit opinion.
FORBES: The Grand Illusion: PwC Settles Satyam U.S. Class Action Claims
应用推荐