Integrated Auditing of ERP Systems

Practical guidelines for assessing and managing the risk factors in ERP systems
ERP systems promise revolutionary integration of a business′s transactions–eliminating errors, improving efficiency, and offering employees universal access to information. Without proper implementation and maintenance, however, ERP systems can too easily become the 800–pound gorilla in the room, accomplishing little more than trading one set of problems for another. Integrated Auditing of ERP Systems provides IT managers a hands–on, practical guide to reducing risk and operating ERP systems effectively.
IT auditing expert Yusufali Musaji presents a structured methodology for managing risks in ERP systems and helpful auditing techniques to ensure their effectiveness. This one–of–a–kind instruction:
∗ Breaks the ERP life cycle into six comprehensible steps
∗ Explains the complex multilayered structure of data
∗ Identifies risks to operational efficiency and data integrity
∗ Maps how to conduct an integrated ERP audit
∗ Includes a chapter on minimizing SAP–specific risks
IS auditors, IT managers, and chief security officers will find Integrated Auditing of ERP Systems to be an invaluable resource.

Spis treści:
Preface.
Chapter One. ERP System Implementation Overview.
Chapter Two. ERP System Vulnerabilities and Controls.
Chapter Three. ERP Life Cycle.
Appendix 3A: Project Definition and Requirements Analysis Phase Audit Tests.
Appendix 3B: External and Internal Design Phases Audit Tests.
Appendix 3C: Pre–implementation Phase.
Chapter Four. Change Management.
Example 4A: Process Framework for ERP System Group.
Example 4B: Organizational Roles and Responsibilities for ERP Systems Engineering.
Example 4C: Organizational Roles and Responsibilities for Data Management.
Example 4D: Organizational Roles and Responsibilities for ERP Prod uction System.
Chapter Five. Post–implementation Issues and Controls.
Chapter Six. SAP Overview and Basis Component Review.
Index.

Nota biograficzna:
Yusufali F. Musaji, CGA, CISA, CISSP, is Founder, Director, and President of Ali′s N Y Consulting, Inc., an IT and financial consulting firm specializing in computer publishing. Mr. Musaji′s experience embraces the full spectrum of financial, orperational, and IT disciplines required of state–of–the–art organizations.
Ash Huq is a Manager in the Deloitte & Touche Enterprise Risk Services group with over eighteen years experience in information systems assessment, implementation, accounting, risk management, and the security and control of SAP R/3 systems. He is a contributing author for this book.

Okładka tylna:
Practical guidelines for assessing and managing the risk factors in ERP systems
ERP systems promise revolutionary integration of a business′s transactions–eliminating errors, improving efficiency, and offering employees universal access to information. Without proper implementation and maintenance, however, ERP systems can too easily become the 800–pound gorilla in the room, accomplishing little more than trading one set of problems for another. Integrated Auditing of ERP Systems provides IT managers a hands–on, practical guide to reducing risk and operating ERP systems effectively.
IT auditing expert Yusufali Musaji presents a structured methodology for managing risks in ERP systems and helpful auditing techniques to ensure their effectiveness. This one–of–a–kind instruction:
∗ Breaks the ERP life cycle into six comprehensible steps
∗ Explains the complex multilayered structure of data
∗ Identifies risks to operational efficiency and data integrity
∗ Maps how to conduct an integrated ERP audit
∗ Includes a chapter on minimizing SAP–specific risks
IS auditors, IT managers, and chief security officers will find Integrated Auditing of ERP Systems to be an invaluable resource.