Information System Audit and AssuranceInformation Technology is no more an enabler it has become a part and parcel of business processes. Consequently, the asset composition of organizations has, with the concomitant vulnerabilities and risks, undergone significant changes. In the new scenario, stakeholders are apprehensive about the security of Information Systems. Regulators all over the world have therefore realized the need for a strong Information System Assurance Framework, and have issued guidelines for periodic Information System Security Assessment. |
