Audit Serve, Inc.
 |
Technical Articles |
|
|
Conferences |
|
|
Audit Programs |
|
|
Audit Serve Seminars |
|
|
Consulting Services |
|
|
Audit Vision Email Newsletter Free! |
|
|
What's New |
|
|
Contact Us |
The Premier Audit, Security and Sarbanes-Oxley Consulting Company
Technical IT Audit,
Sarbanes-Oxley and Security Articles
Web Page Sponsor:
Sarbanes-Oxley
SOX Re-Engineering: Establishing and
Testing Entity-Level Controls
SOX Initiatives to Reduce the Overall
Project Scope
Five Decisions Which Must be
Made Regarding the
SOX 404 Project Strategy (Part 1
of 2)
Sustaining SOX Compliance
Hidden Secrets: Reliance on a
SAS 70 for SOX Testing (Part 1
of 2)
Hidden Secrets: Reliance on a SAS 70
for SOX Testing (Part 2
of 2)
Assessing
the Adequacy of IT General Controls SOX Testing (Part 1
of 2)
Assessing the Adequacy of IT General Controls SOX
Testing (Part 2 of 2)
How
IT Audits are Different from the SOX IT General Controls Project
Evaluating Data Interfaces
SOX 404 Year II: Lessons Learned, Initiatives to Pursue and
Interpretation of Guidance Provided by the SEC & PCAOB
(Part 1 of 2)
SOX 404 Year II: Lessons Learned, Initiatives to Pursue and
Interpretation of Guidance Provided by the SEC & PCAOB
(Part 2 of 2)
Pre-Implementation Reviews of Sarbanes-Oxley Impacted Systems
Sarbanes-Oxley Section 404: Finalizing the IT General
Controls Portion of the Review (1 of 2) Sarbanes-Oxley Section 404: Finalizing the IT General
Controls Portion of the Review (2 of 2)
Project Scope for Sarbanes-Oxley
Implementation
Establishing Processes to Comply with Section 409 of the Sarbanes-Oxley Act
Auditing Sarbanes-Oxley Compliance
PCI
Understanding
the Differences and Similarities Between the PCI and SOX Projects
Infrastructure
Performing an
Audit of a SaaS Deployed Application (Part 1 of
2)
Performing an
Audit of a SaaS Deployed Application (Part
2 of 2)
Database Security: Controlling Service Accounts
Performing a Data Warehouse Audit
Alternative Project Initiatives for Controlling the UAT Environment (Part 1 of 2)
Alternative Project Initiatives for Controlling the UAT Environment
(Part
2 of 2)
General Audit Articles
The
Realities of Trying to Control System Support Personnel
Continuous Audit Monitoring for IT Impacted Areas
(Part 1 of 2)
Controlling Vendor Access
Auditing External Data Interfaces
The Control Impact of Data Center Consolidations
System Software Product Implementation Review Methodology
The Auditor's Role In A Data Center Outsourcing Contract
Using Software Management Products as a Checkpoint to Enforce SDLC
Is All Data Input Being Properly Controlled?
Security Restructuring Using the Entitlement Matrix Approach
Analyzing the deliverables produced in the SDLC
Assessing the Adequacy of a QA Test Environment
Performing an Audit of an Automated Software Change Management System
Performing an Audit of an Incident Management System
Outsourcing
Insider Tips on Conducting an Audit of an Outsourced Entity
IT Cost Management
Integrating IT Cost Management Controls into Regularly Scheduled Audits
Performing an IT Cost Management Review (Part 1 of 3)
Performing an IT Cost Management Review (Part 2 of 3)
Performing an IT Cost Management Review (Part 3 of 3)
Disaster Recovery
Continuity of Business in an MVS Environment
Corporate
Preparations for a Pandemic
Client/Server Articles
Performing
an Audit of a PVCS Implementation
Security Assessments
Audit Serve Security Evaluation Criteria (ASSEC)
Security Evaluation of the MVS Operating System Using RACF
Security Evaluation of the OpenVMS Operating System
Performing an Audit of Security Entitlements
IBM OS/390Articles
Software Management Control Requirements
IBM MVS System SDLC Control Approaches
Session Manager Control Offerings and Potential Exposures
Auditors Misconception of the Exposures Related to PPT Entries
Using JESEXIT6 to Prevent Prod Programs From Being Retrieved From
Non-Prod Load Libraries
Preventing Top Secret Users From Submitting Jobs That Run Under The
Authority of Batch ACIDS
Tape Management Security within an MVS Environment
Control Requirements when running MVS as a Guest Operating System
under VM
Control available within CA-7
Access Requirements for Sensitive Operation Functions within an MVS
Environment
Understanding the MVS IPL Process
Restricting MVS and JES Commands
The Control Impact of the JES2 Concatenation
Open VMS Articles
Change Management Approaches Used in the VAX/VMS Environment
IBM VSE Articles
What Security is Available for IBM VSE?
CICS/VSE Security Within a VSE/ESA Environment
Tandem Guardian 90 Articles
What Security is Available for Tandem Guardian 90?
On-line Security in a Tandem Guardian 90 Environment
IBM AS/400 Articles
AS/400 Change Management Approaches
Security Approaches Used in the AS/400 Environment
Technical Articles | Conferences | Audit Programs | Audit Serve Seminars | Consulting Services | Audit Vision Newsletter | What's New | Contact US
This website has been optimized for Netscape and Internet Explorer 4.0
and above. Your comments and suggestions are always welcome, please email webmaster@auditserve.com.
Copyright © 2000 All rights reserved. 27 Pine Street, Suite 700, New Canaan,
CT 06840 USA.