April Dinner
Meeting
Topic: IT Audit Quality
Speaker: Douglas Havelka, Ph.D., Jeffrey W. Merhout Ph.D.
Time: April 6, 2010; 5:30 Networking, 6-6:15 Chapter Update,
6:15-7:05 presentation, 7-8 dinner
Location: Montgomery Inn, Montgomery
Overview
The importance of information technology (IT) auditing has grown with increased reliance on IT for business operations and new regulations regarding the assurance of IT for these operations. Prior work on IT and financial auditing has suggested several independent constructs that may affect IT audit quality; however, the prior work has not considered how these independent items may be related and whether they are the same or different constructs. We expand on prior work that has proposed models of IT audit quality by including identifying and evaluating potential alternative constructs suggested by the financial auditing literature. We then validate this expanded model by performing a survey of IT auditors to rate the potential impact of each construct and perform a factor analysis to refine the set of IT audit quality factors identified. In comparison to prior research, we find additional factors are significant for IT audit quality and that the relative importance of the factors to audit quality is different for IT versus financial audits.
Bio:
Douglas Havelka is an Associate Professor of Management Information Systems in the Farmer School of Business at Miami University. He earned a Ph.D. in MIS from Texas Tech University. Professor Havelka is a C.P.A. and prior to joining Miami was the project manager for electronic communication industry standards at AT&T.
Jeff Merhout is an Assistant Professor of Management Information Systems in the Farmer School of Business at Miami University. He earned a Ph.D. in Business with a major in MIS from Virginia Commonwealth University. Professor Merhout is an inactive C.P.A. and, prior to joining the Miami faculty, worked in transportation, internal audit, and corporate tax at James River Corporation, an international paper products manufacturer.
Registration:
If you do not want to use Paypal and would rather pay
at the door you, please email isaca_meetings@yahoo.com to
make your reservation. Please include your name and company in the email. Check
or cash accepted at door.
May Dinner
Meeting - Registration available after April meeting
Protecting Your Applications from Backdoors: How to Secure Your Business Critical Applications from Time Bombs, Backdoors & Data
With the increasing practice of outsourcing and using 3rd party libraries, it is nearly impossible for an enterprise to identify the pedigree and security of the software running its business critical applications. As a result backdoors and malicious code are increasingly becoming the prevalent attack vector used by hackers.
Whether you manage internal development activities, work with third party developers or are developing a COTS application for enterprise, your mandate is clear- safeguard your code and make applications security a priority for internal and external development teams.
In this session we will cover;
· Prevalence of backdoors and malicious code in third party attacks
· Definitions and classifications of backdoors and their impact on your applications
· Methods to identify, track and remediate these vulnerabilities
Speaker Bio:
Clint Pollock is a Senior Solutions Architect at Veracode. Since 1997, he has also created security solutions for large-scale enterprise environments on behalf of CREDANT Technologies and Netegrity. In his current role, Clint helps globally distributed organizations evaluate, track, and mitigate their online business risk. Clint’s greatest strengths are his enthusiasm, experience and determination to help customers succeed in maintaining secure, compliant systems, and avoid the consequences and bad headlines that come with application security breaches. Clint resides in Chicago, IL.
|
