Skip to Main Content
Fundamentals of Information Risk Management Auditing

Fundamentals of Information Risk Management Auditing

SKU: 4758
Authors: Christopher Wright
Publishers: ITGP
Format: PDF
ISBN13: 9781849288163
Pages: 161
Published: 21 Apr 2016
Availability: Always Available

Provides insight and guidance into information risk management, ideal for those considering a career in information risk management, and for non-specialist auditors and managers.

This book provides an introduction to:

  • Risk and risk management;
  • Information security and management risks; and
  • The concepts of application controls.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account.  Apply online today or call our service centre team on 00 800 48 484 484.

Preis: 15,95 €

Kick-start your career in information risk management with this introductory guide.

New information and IT risks seem to be everywhere, and so it is essential that organisations address these risks in the context of enterprise risk management. Fundamentals of Information Risk Management Auditing provides insight and guidance on this practice for those considering a career in information risk management, and is an introduction for non-specialist auditors and managers.

Fundamentals of Information Risk Management Auditing gives an interesting and useful insight into the risks and controls/mitigations that you may encounter when performing or managing an audit of information risk.

This book also features case studies and chapter summaries to provide the best grounding in information risk available for risk managers and non-specialists alike.

Look inside this book >>

This book covers:

  • What is risk and why is it important?
    • Risks and controls
    • Enterprise risk management (ERM) frameworks
    • Risk management assurance and audit
    • Information risks and frameworks
  • Introduction to general IT and management risks
    • Overview of general IT and management risks
    • Security and data privacy
    • System development and change control
    • Service management and disaster planning
  • Introduction to application controls
    • Overview of application controls (integrity)
  • Life as an information risk management specialist
    • Planning, running and reviewing risk management assignments
    • Personal development and qualifications
About the author

Christopher Wright

Christopher Wright is a former qualified accountant, Certified Information Systems Auditor and Certified ScrumMaster™ with over 30 years’ experience providing financial and IT advisory and risk management services. For 16 years, he worked at KPMG, where he was head of information risk training in the UK and also ran training courses overseas, including in India and throughout mainland Europe. He managed a number of major IS audit and risk assignments, including project risk and business control reviews. He has worked in a wide range of industry sectors, including oil and gas, the public sector, aviation, and travel. For the past eight years, he has been an independent consultant specialising in financial, SOX and operational controls for major ERP implementations, mainly at oil and gas/utilities enterprises.

He is an international speaker and trainer on Agile audit and governance, and is the author of two other titles, also published by ITGP: Agile Governance and Audit and Reviewing IT in Due Diligence.