Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL [Hardcover]

Robert Moeller (Author)

Book Description

ISBN-10: 0470170921 | ISBN-13: 978-0470170922 | Publication Date: April 25, 2008 | Edition: 1

Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is essential reading for professionals facing the obstacle of improving internal controls in their businesses. This timely resource provides at-your-fingertips critical compliance and internal audit best practices for today's world of SOx internal controls. Detailed and practical, this introductory handbook will help you to revitalize your business and drive greater performance.

Editorial Reviews

From the Inside Flap

Sarbanes-OxleyInternal Controls: Effective Auditing withAS5, CobiT, and ITIL

Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is essential reading for professionals facing the obstacle of improving internal controls in businesses today. This timely resourceplaces at your fingertips critical comp-liance and internal audit best practices in today's world of SOx internal controls.

Author Robert Moeller, a renowned authority on internal controls, provides a high-level overview of Sarbanes-Oxley as well as the new internal control rules for auditors, including AS5, CobiT, and ITIL. Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL prepares professionals with detailed discussions of:

• Changes to SOx-related rules andsupporting procedures since thelegislation became U.S. law in 2002

• The changes and evolving standards that may make compliance easier forauditors and enterprise management

• Areas where rules are changing, such as Section 404 internal control reviews

• The rules and caution signs that are important in SOx today for all levels of management and internal audit

• An overview of PCAOB auditing standards, with an emphasis on the newly issued and very important AS5 standard on auditing internal controls

• CobiT as a tool for establishing ongoing SOx compliance

• A complete overview of the ITIL service support and service delivery frameworks

A practical introductory handbook for auditors, CFOs, CIOs, IT management, and consultants, Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is an invaluable reference guide designed to lead financial managers to revitalize their business and drive greater performance.

From the Back Cover

Praise for Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL

"Having managed several dozen consultants assisting numerous clients to become SOx compliant, I can say Bob Moeller truly knows his stuff. This book should be read as much as a technical reference source as for its value as a pragmatic how-to guide. It's packed with winning methods that can be implemented immediately."
—Michael Shapow, Regional Vice President–Consulting ServicesRobert Half International

"The SOx Act has become a major challenge and an opportunity for most complying organizations. Mr. Moeller presents an excellent discussion of disparate topics such as SOx, internal and external audits, IT, internal controls, risk management, quality audits, and ISO standards."
—S. Rao Vallabhaneni, author of Corporate Management, Governance, and Ethics Best Practices

Introducing important new and evolving processes for internal auditors and management in general, Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL explores:

• AS5 standards for auditing internal controls

• Using the CobiT framework to improve SOx controls and governance

• Using ITIL to align IT with business processes

• Areas an internal auditor should consider when reviewing the adequacy of SOx-related internal control procedures in place

• Important new and evolving processes for internal auditors andmanagement in general

• Establishing internal controls through COSO

Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL is a source ofdetailed internal control best practices to help companies continue to meet the complex internal control requirements of Sarbanes-Oxley.

See all Editorial Reviews

Product Details

• Hardcover: 384 pages
• Publisher: Wiley; 1 edition (April 25, 2008)
• Language: English
• ISBN-10: 0470170921
• ISBN-13: 978-0470170922
• Product Dimensions: 9.3 x 6.3 x 1.2 inches
• Shipping Weight: 1.5 pounds (View shipping rates and policies)
• Average Customer Review: 5.0 out of 5 stars  See all reviews (1 customer review)
• Amazon Best Sellers Rank: #242,928 in Books (See Top 100 in Books)

More About the Author

Robert Moeller is a Chicago-based IT project management and internal audit specialist. He has a University of Minnesota engineering degree and a University of Chicago MBA. His professional certifications include a CPA, CISA, PMP, CISSP and others. He started his working career developing IT systems, then moved to IT internal auditing, and then project management.

Moeller has launched IT audit functions in several companies, was National Director of IT Audit for Grant Thornton, became Internal Audit director for Sears Roebuck and then went on to project management internal control project assignments throughout North and South America. He has been very active professionally where he chaired or served on state and national committees for the AICPA, the IIA, ISACA and others.

Robert developed his first book on IT auditing when he felt there was not enough adequate and up to date guidance on the profession. His many and ongoing books since include multiple editions of Brink's Modern Internal Auditing where he has defined a Common Body of Knowledge for the Profession of Internal Auditing.

Robert's other interests include sailing on Lake Michigan, skiing in the Western U.S., gardening as well as cooking vegetables, international travel, and participating with his wife Lois in Chicago area theater, music and arts activities.

Customer Reviews

Most Helpful Customer Reviews

3 of 4 people found the following review helpful:

5.0 out of 5 stars Must read for CFOs, CEOs, Auditors, and Consultants, June 4, 2008

By 

Michael J. Ruddick (Chicago IL) - See all my reviews
(REAL NAME)   

Amazon Verified Purchase

This review is from: Sarbanes-Oxley Internal Controls: Effective Auditing with AS5, CobiT, and ITIL (Hardcover)

This book is a must read for CFOs, CEOs, consultants, internal and external auditors who want to know best how to navigate in a Sarbanes-Oxley world. The book is very well written and deals with a technical subject in an easy to understand style. The author obviously knows his subject inside and out. The book bring the reader up to date with the latest interpretations and developments with one of the most sweeping laws to affect the business world in a generation.

CEOs can learn not only the pitfalls of non compliance, but probably more importantly how to view, quantify, and manage risk in a more constructive framework. Proper internal controls and risk management can be very good for business and long term profitability.

For CFOs concerned about the bottom line, the book lays out strategies for reducing compliance costs by highlighting recent changes and developments supporting a more risk based and ultimately more cost effective approach.

Consultants will find the author's sweeping knowledge of current practices and trends invaluable as they advise clients on effective coping strategies for enterprises of all sizes. Internal and external auditors will find support for implementing and refining a more risk based approach to auditing, and in particular a proper review of internal controls.

The book goes beyond a simple review of Sarbanes-Oxley to incorporate other important frameworks necessary to a proper implementation. I will spare you the acronyms involved, but suffice it to say that these evolving audit, information technology, and risk management frameworks which the author outlines so well, are critical to a proper understanding of the implications of Sarbanes-Oxley and the possible path of future developments. Those who do not take the opportunity to read this book, do so at their own and their company's peril.