This book is an annotated compendium of articles and checklists I wrote on the subject of Internal Auditing and to help internal auditors to identify, correct, and track nonconformities in their organizations. It is based on work I have done as an auditor and management consultant in the U.S. and in Central America and as a Military analyst for the Center for Naval Analyses, research of some very fine books, and the 27 years of military service that preceded it. The premise of this book and my reason for creating it is simple: 1. Our organizations (large and small - public and private) can audit themselves more effectively than outside consultants or registrars. The news in recent years has proven that reliance on outside "auditors" to the exclusion or minimization of internal audits is both perilous and unforgiveable. 2. It is not enough that organizations reach states of profitability and self-sustainment; they must develop a corporate character that identifies it as a good neighbor and responsible member of society. This corporate character must include Corporate Responsibility, employee safety and quality of life, and environmental compliance. 3. Our organizations, and, in fact, our lives are in danger from both physical and cyber-attacks, because we remain incredibly uneducated, unstructured, and vulnerable, when it comes to these modern-day, fact-of-life, threats. Organizational Security can be upgraded profoundly through a well-developed program of internal audits. 4. Organizations can combine resources synergistically. That is, the whole of the effort will be greater than the sum of its parts. I have kept this work as compact as possible, so as to minimize reading time and maximize productivity. I write for no-nonsense managers with big responsibilities and limited resources. I refer often to excellent ISO International Standards.

Create strong IT governance processes In the current business climate where a tremendous amount of importance is being given to governance, risk, and compliance (GRC), the concept of IT governance is becoming an increasingly strong component. Executive's Guide to IT Governance explains IT governance, why it is important to general, financial, and IT managers, along with tips for creating a strong governance, risk, and compliance IT systems process. Written by Robert Moeller, an authority in auditing and IT governance Practical, no-nonsense framework for identifying, planning, delivering, and supporting IT services to your business Helps you identify current strengths and weaknesses of your enterprise IT governance processes Explores how to introduce effective IT governance principles with other enterprise GRC initiatives Other titles by Robert Moeller: IT Audit, Control, and Security and Brink's Modern Internal Auditing: A Common Body of Knowledge There is strong pressure on corporations to have a good understanding of their IT systems and the controls that need to be in place to avoid such things as fraud and security violations. Executive's Guide to IT Governance gives you the tools you need to improve systems processes through IT service management, COBIT, and ITIL.

Essential guidance on the revised COSO internal controls framework Need the latest on the new, revised COSO internal controls framework? Executive's Guide to COSO Internal Controls provides a step-by-step plan for installing and implementing effective internal controls with an emphasis on building improved IT as well as other internal controls and integrating better risk management processes. The COSO internal controls framework forms the basis for establishing Sarbanes-Oxley compliance and internal controls specialist Robert Moeller looks at topics including the importance of effective systems on internal controls in today's enterprises, the new COSO framework for effective enterprise internal controls, and what has changed since the 1990s internal controls framework. Written by Robert Moeller, an authority in internal controls and IT governance Practical, no-nonsense coverage of all three dimensions of the new COSO framework Helps you change systems and processes when implementing the new COSO internal controls framework Includes information on how ISO internal control and risk management standards as well as COBIT can be used with COSO internal controls Other titles by Robert Moeller: IT Audit, Control, and Security, Executives Guide to IT Governance Under the Sarbanes-Oxley Act, every corporation has to assert that their internal controls are adequate and public accounting firms certifying those internal controls are attesting to the adequacy of those same internal controls, based on the COSO internal controls framework. Executive's Guide to COSO Internal Controls thoroughly considers improved risk management processes as part of the new COSO framework; the importance of IT systems and processes; and risk management techniques.

The Second Edition of The Essential Guide to Internal Auditing is a condensed version of the Handbook of Internal Auditing, Third Edition. It shows internal auditors and students in the field how to understand the audit context and how this context fits into the wider corporate agenda. The new context is set firmly within the corporate governance, risk management, and internal control arena. The new edition includes expanded coverage on risk management and is updated throughout to reflect the new IIA standards and current practice advisories. It also includes many helpful models, practical guidance and checklists.

While the Institute of Internal Auditors (IIA) has provided standards and guidelines for the practice of internal audit through the International Professional Practice Framework (IPPF), internal auditors and Chief Audit Executives (CAEs) continue to experience difficulties when attempting to balance the requirements of the IPPF with management expe