Kategorier Priser Virksomhedsløsninger
Professional eBook

IT Governance Controls - Book 2

Managing IT Operations and Systems Better

0 Anmeldelser
59
Language:  English
Description of the basic IT General Controls (organization, administration, strategy, systems development, etc.) and Application Controls for specific business systems.
Professionel Plus abonnementet gratis de første 30 dage, derefter $8.99 /måned
Læs denne bog i vores online eReader. Ingen reklamer
Beskrivelse
Indhold

Description of the main controls (policies, procedures, practices, etc.) in organizing and managing the IT function, developing or acquiring application systems, crafting an IT strategy, managing a data center and running computerized application systems, etc.

About the author

John Kyriazoglou obtained a B.A. (Honours) from the University of Toronto, Canada, also earning a Scholastic award for Academic Excellence in Computer Science. John has worked in Canada, England, Switzerland, Luxembourg, Greece and other countries for over 40 years, as a Senior IT manager, Managing Director, IT auditor and consultant, in a variety of clients and projects, in both the private and the public sectors. He has published several books and articles in professional publications, has served in numerous scientific committees and is a member of several professional and cultural associations.
He is currently the Editor-in-Chief for the Internal Controls Magazine (U.S.A.) and consulting on Data Privacy and Security Issues (GDPR, e-Privacy, etc.) to a large number of private and public clients.


  • Overview and Contents
  • Preface
  1. IT Organization Controls
    1. Management Responsibility
    2. Purpose of IT Organization Controls
    3. Main Types of IT Organization Controls
    4. Control Type 1: IT Department Overall Terms of Reference
    5. Control Type 2: IT Department Organization Chart
    6. Control Type 3: Information Technology (IT) Committee
    7. Control Type 4: Information Technology (IT) Policy
    8. IT Managers, IT Auditors and IT Organization Controls
  2. IT Administration Controls
    1. Management Responsibility
    2. Purpose of IT Administration Controls
    3. Main Types of IT Administration Controls
    4. Control Type 1: IT Standards, Policies and Procedures
    5. Control Type 2: IT Budget
    6. Control Type 3: IT Asset Controls
    7. Control Type 4: IT Personnel Administration Controls
    8. Control Type 5: IT Personnel Job Descriptions
    9. Control Type 6: IT Personnel Education and Training Controls
    10. Control Type 7: IT Procurement Controls
    11. Control Type 8: IT Management Reporting
    12. IT Managers, IT Auditors and IT Administration Controls
  3. Enterprise Architecture Controls
    1. Management Responsibility
    2. Purpose of EA Controls
    3. Main Types of EA Controls
    4. Control Type 1: EA Frameworks
    5. Control Type 2: EA Framework Implementation Plan
    6. Control Type 3: EA Development Roles
    7. Control Type 4: EA Elements Documentation
    8. Control Type 5: Other EA Business Controls
    9. IT Managers, IT Auditors and EA Controls
  4. IT Strategic Controls
    1. Management Responsibility
    2. Purpose of IT Strategic Controls
    3. Main Types of IT Strategic Controls
    4. Control Type 1: IT Strategy Analysis Methodology
    5. Control Type 2: IT Strategic Plan
    6. Control Type 3: IT Strategy Implementation Action Plan
    7. Control Type 4: IT Strategic Budgets
    8. Other IT Strategic Controls
    9. IT Managers, IT Auditors and IT Strategic Controls
  5. Systems Development Controls
    1. Management Responsibility
    2. Purpose of Systems Development Controls
    3. Main Types of Systems Development Controls
    4. Control Type 1: IT Systems Development Methodology
    5. Control Type 2: System Development Products
    6. Control Type 3: IT Systems Testing Process
    7. Control Type 4: End User Application Development Controls
    8. Control Type 5: Audit Trails
    9. Control Type 6: Software Package Controls
    10. Control Type 7: System Development Quality Controls
    11. IT Managers, IT Auditors and Systems Development Controls
  6. IT Security Controls
    1. Management Responsibility
    2. Purpose of IT Security Controls
    3. Main Types of IT Security Controls
    4. Control Type 1: IT Security Policy
    5. Control Type 2: Personnel Security Management Controls
    6. Control Type 3: Social Engineering Controls
    7. Control Type 4: Password Controls
    8. IT Managers, IT Auditors and IT Security Controls
  7. Data Center Operations Controls
    1. Management Responsibility
    2. Purpose of Data Center Operations Controls
    3. Main Types of Data Center Operations Controls
    4. Control Type 1: Data Centre Environmental Controls
    5. Control Type 5: IT Contingency Planning and Disaster Recovery Controls
    6. Other Disaster Controls
    7. IT Managers, IT Auditors and Data Center Operations Controls
  8. Systems Software Controls
    1. Management Responsibility
    2. Purpose of Systems Software Controls
    3. Main Types of Systems Software Controls
    4. Control Type 1: Systems Operating Environment Controls
    5. Control Type 2: Systems Software Change Management Procedure
    6. Other Controls
    7. IT Managers, IT Auditors and Systems Software Controls
  9. Computerized Application Controls
    1. Management Responsibility
    2. Purpose of Computerized Application Controls
    3. Main Types of Computerized Application Controls
    4. Control Type 1: Input Controls
    5. Control Type 2: Processing Controls
    6. Control Type 3: Output Controls
    7. Other Computerized Application Controls
    8. IT Managers, IT Auditors and Computerized Application Controls
  • Appendix 1. Technology Management Standards
  • Bibliography
  • Disclaimer

About the Author

John Kyriazoglou

John Kyriazoglou obtained a B.A. (Honours) from the University of Toronto, Canada, also earning a Scholastic award for Academic Excellence in Computer Science. John has worked in Canada, England, Switzerland, Luxembourg, Greece, Saudi Arabia and other countries for over 49 years, as a Senior IT manager, Managing Director, IT auditor and consultant, in a variety of clients and projects, in both the private and the public sectors. He has published several books and articles in professional publications, has served in numerous scientific committees and is a member of several professional and cultural associations.

He is currently the Editor-in-Chief for the Internal Controls Magazine (U.S.A.) and consulting on Data Privacy and Security Issues (GDPR, e-Privacy, etc.) to a large number of private and public clients.

To support your organization in any issues related to John's work, books and experience you may contact him, at jkyriazoglou@hotmail.com