Page no:94
9
short term plans , steering and other committees , HR policies , segregation of duties IT crimes , viruses , security , privacy issues Broad introduction to concepts and practice of e-commerce and legal framework for e-commerce Case studies and assignments
2
2,3
10
2
11
4
2,3
Note : • • • • Two case studies and two assignments need also be covered. The syllabus is expected to be completed within approx 40 sessions of 90 minutes each. Session-wise suggested contents are enclosed Many topics will have to be covered at a broad level only. Role of IS auditor and relation of each topic to ISA controls and review should be part of all lectures. Emphasis should be on Audit , security, control, review and documentation aspects and usage of relevant standards as relevant to all the IT facets.
References : 1. Names of ISA related material is given. For all other IT related topics, e.g. EIT , SSAD , DBMS , Network etc various standard books are available in the market and also recommended by the University. 2. “EDP Auditing Conceptual Foundations And Practices” by Ron Weber – McGraw-Hill publication 3. Latest CISA review manual by ISACA , USA – This may be procured by individual institutes and made available to students on library basis 4. IS audit standards and control objectives of ISAXA which are non-copyrighted and relevant , refer www.isaca.org 5. IS control journals from ISACA