To regulate information technology (IT) changes from beginning to end, it’s important to have an IT change management pr...

Design and implement your organization’s internal controls with the COSO internal control framework included in this gui...

In this booklet, we provide guidance to Section 404 compliance project teams on the consideration of information technol...

The following sample policy outlines a set of policies and procedures governing user authentication and authorization an...

In this issue of Board Perspectives: Risk Oversight, we reveal 10 examples of business risks to consider associated with...

This sample process flow outlines the steps to manage user access changes to company IT systems.

In this booklet, we profile nine international companies that value technology-based audit and data analysis techniques ...

This booklet represents a pragmatic response to spreadsheet risk based on real business needs.

The questions answered in this booklet have risen in our discussions with clients and others in the marketplace who freq...

This issue of The Bulletin addresses the importance of integrating self-assessment, entity-level monitoring, and indepen...

In this issue of The Bulletin, we focus on the relevance of IT risks and controls to a company’s meeting the internal co...

Electronic discovery (eDiscovery) refers to the process of searching, locating and securing electronic data...