Provides insight and guidance into information risk management, ideal for those considering a career in information risk management, and for non-specialist auditors and managers.
This book provides an introduction to:
New information and IT risks seem to be everywhere, and so it is essential that organisations address these risks in the context of enterprise risk management. Fundamentals of Information Risk Management Auditing provides insight and guidance on this practice for those considering a career in information risk management, and is an introduction for non-specialist auditors and managers.
Fundamentals of Information Risk Management Auditing gives an interesting and useful insight into the risks and controls/mitigations that you may encounter when performing or managing an audit of information risk.
This book also features case studies and chapter summaries to provide the best grounding in information risk available for risk managers and non-specialists alike.
Christopher Wright is a former qualified accountant, Certified Information Systems Auditor and Certified ScrumMaster™ with over 30 years’ experience providing financial and IT advisory and risk management services. For 16 years, he worked at KPMG, where he was head of information risk training in the UK and also ran training courses overseas, including in India and throughout mainland Europe. He managed a number of major IS audit and risk assignments, including project risk and business control reviews. He has worked in a wide range of industry sectors, including oil and gas, the public sector, aviation, and travel. For the past eight years, he has been an independent consultant specialising in financial, SOX and operational controls for major ERP implementations, mainly at oil and gas/utilities enterprises.
He is an international speaker and trainer on Agile audit and governance, and is the author of two other titles, also published by ITGP:
Agile Governance and Audit and
Reviewing IT in Due Diligence.