The auditor's guide to ensuring correct security and privacy practices in a cloud computing environment
Many organizations are reporting or projecting a significant cost savings through the use of cloud computing—utilizing shared computing resources to provide ubiquitous access for organizations and end users. Just as many organizations, however, are expressing concern with security and privacy issues for their organization's data in the "cloud." Auditing Cloud Computing provides necessary guidance to build a proper audit to ensure operational integrity and customer data protection, among other aspects, are addressed for cloud based resources.

Knapp's CONTEMPORARY AUDITING: REAL ISSUES AND CASES, Eighth Edition, uses real-world cases to acquaint you with the work environment of auditors. It also helps you recognize the red flags that often accompany problem audits. This new edition offers exciting new cases that cover the massive economic crisis that the U.S. and global economies have recently faced. In addition, new cases have been added to the "International Cases" section, examining auditing challenges in Australia, China, India, Japan, Russia, South Africa, and several others. The eighth edition fully integrates risk assessment standards recently adopted by the auditing community. What better training for the real world of auditing than to learn by studying real companies and situations!

Reap the benefits of social media. Help your business achieve its social media goals. Protect it from possible risks involved. Auditing Social Media shows you how to leverage the power of social media for instant business benefits--such as reaching new markets and increasing sales, while evaluating the risks involved.

Nmap is a well known security tool used by penetration testers and system administrators. The Nmap Scripting Engine (NSE) has added the possibility to perform additional tasks using the collected host information. Tasks like advanced fingerprinting and service discovery, information gathering, and detection of security vulnerabilities.

This book discusses the fundamental skills, techniques, and tools of auditing, and the characteristics of a good process safety management system. A variety of approaches are given so the reader can select the best methodology for a given audit.

An integrated and current approach to auditing.

Auditing and Assurance Services: An Integrated Approach presents an integrated concepts approach that shows readers the auditing process from start to finish. This text prepares readers for real-world audit decision making by using illustrative examples of key audit decisions, with an emphasis on audit planning, risk assessment processes and collecting and evaluating evidence in response to risks.

An evolving agenda of Information Technology Auditing is subject of this book. The author presents various current and future issues in the domain of IT Auditing in both scholarly as well as highly practice-driven manner so as to make those issues clear in the mind of an IT auditor. The aim of the book is not to delve deep on the technologies but the impact of these technologies on practices and procedures of IT auditors.

This book focuses on installing, configuring and optimizing Nessus, which is a remote security scanner for Linux, BSD, Solaris, and other Unices. It is plug-in-based, has a GTK interface, and performs over 1200 remote security checks. It allows for reports to be generated in HTML, XML, LaTeX, and ASCII text, and suggests solutions for security problems. As with many open source programs, Nessus is incredibly popular, incredibly powerful, and incredibly under-documented. There are many Web sites (including nessus.org) where thousands of users congregate to share tips, tricks, and hints, yet no single, comprehensive resource exists. This book, written by Nessus lead developers, will document all facets of deploying Nessus on a production network.

Fully updated to cover leading-edge tools and technologies, IT Auditing: Using Controls to Protect Information Assets, Second Edition, explains, step by step, how to implement a successful, enterprise-wide IT audit program. New chapters on auditing cloud computing, outsourced operations, virtualization, and storage are included. This comprehensive guide describes how to assemble an effective IT audit team and maximize the value of the IT audit function. In-depth details on performing specific audits are accompanied by real-world examples, ready-to-use checklists, and valuable templates. Standards, frameworks, regulations, and risk management techniques are also covered in this definitive resource.

Understand how audits take place in the real world with INFORMATION TECHNOLOGY AUDITING! With coverage of traditional auditing as well as auditing of information systems, this accounting text provides you with the background you need to succeed in the real world. Up-to-date coverage of auditor responsibilities and legislation, fraud techniques and detection, and expanded end-of-chapter questions, problems and cases are just a few of the tools that will prepare you for success in your future career.

Gain the thorough understanding of today's auditing process with the hands-on practice that's critical for your business success with AUDITING: A BUSINESS RISK APPROACH, 6th Edition. This book introduces the audit process within the context of business risk--teaching you why it is important to first understand the organization's business environment and how you can apply the risk model. An emphasis on the integrated audit in this edition guides you through how to perform it effectively as well as what decisions and management commitments are necessary to complete it. You gain first-hand experience in using the well-known professional ACL Audit software, which accompanies each new book, as you practice audit techniques and work with specialized cases. AUDITING, 6th Edition prepares you to succeed amidst today's numerous auditing changes with the latest look at audit regulations, concepts, and practices as they apply in today's technological, systems-oriented environment.