Tuesday, October 30, 2007

Privacy, Personal Information At Risk On Campuses -- Data Security -- InformationWeek

A new report suggests that little progress has been made in protecting data security and privacy at Universities. CDW government surveyed 151 University IT directors, who indicated this despite the establshed need for better security and privacy and the attention that has been given to this need in recent years. Shortage of funding is given as a prime reason. Privacy, Personal Information At Risk On Campuses -- Data Security -- InformationWeek

Sunday, October 28, 2007

UWCISA Symposium

The University of Waterloo Center for Information Systems Assurance (UWCISA) held its fifth symposium on Information Systems Assurance on Sept 11 - 13, 2007 in Toronto. It was attended by many of the world's foremost thought leaders in the area. The papers and presentations are available at the following link. UWCISA Symposium

Friday, October 26, 2007

The 8 most dangerous consumer technologies

The security of information systems is continually being complicated by the emergence/ integration of small mobile devices like PDAs and Cell Phones and other PC applications, particularly the social networking variety. This article in computerworld summarizes the eight most dangerous technologies. The 8 most dangerous consumer technologies

14th World Continuous  Auditing

The 14th World Continuous Auditing and Reporting Symposium will be held on November 2 - 3 at Rutgers Business School, Newark NJ. 14th World Continuous Auditing

Wednesday, October 24, 2007

European Journal of Information Systems - Table of Contents

The European Journal of Information Systems in their August issue includes a section on Model Driven Systems Development (MDSD) with several papers listed. There is a good explanation of MDSD in the IBM Systems journal at http://www.research.ibm.com/journal/sj/453/balmelli.html This is an important source for those researching in this area. European Journal of Information Systems - Table of Contents

Tuesday, October 23, 2007

Data level assurance is an important area of current research. For example, the CICA is conducting a research study on the subject. One approach to DLA is the use of continuous assurance techniques. Alles, Kogan and Vasarhelji published a paper on this subject last fall, which is available at the following link. http://raw.rutgers.edu/MiklosVasarhelyi/079.pdf

Monday, October 22, 2007

IT Audit - The Institute of Internal Auditors

The Institute of Internal Auditors through its GTAG series issued in February a document describing continuous auditing. It provides a sound overview of continuous auditing which is a technique of growing importance in controls auditing and in all auditing generally, as the need for real time audit reports emerges. IT Audit - The Institute of Internal Auditors

Thursday, October 11, 2007

The Index of Information Systems Journals

Deakin University has an index of Information Systems Journals which can be very useful for research purposes. It is at the following link: The Index of Information Systems Journals

Wednesday, October 10, 2007

ISO - News

The ISO standards comprise an important element of strong quality systems. The standards are now available on CD through the ISO Organization. ISO - News

Tuesday, October 9, 2007

CERT: Secure Systems

CERT, located at Carnegie Mellon University, publishes periodic research reports, studies and papers dealing with systems issues that are comprehensive and useful. Several of them are available from this website: CERT: Secure Systems

Wednesday, October 3, 2007

Rutgers Accounting Web

Continuous Auditing is one of the emerging and important areas involving IS Assurance. A major center of research in this area is the Continuous Auditing and Reporting Lab at Rutgers University, under the leadership of Miklos Vasarhelyi. Information on the Lab, and numerous free papers, can be found at Rutger's Account Web at the following link. It's definitely worth a look. Rutgers Accounting Web

IT Governance Compliance Conference - Overview

The Information Systems Audit and Control Association (ISACA) is holding its annual Governance and Compliance conference in Boston from November 14 - 16. For further details check this link. IT Governance Compliance Conference - Overview