14.5. READING
Because of the rapidity with which information technology changes, one must budget as much time as reasonably possible to read various publications pertaining to IS audit, control, and security, as well as new technologies. The reading regimen should be something done on a daily basis. Often, new control weaknesses may be identified about information systems currently being used in an organization or that one is preparing to examine. Since new technologies are constantly being implemented within organizations, one of the most timely and effective means for one to stay current is through reading. Among the types of publications that provide current information about new technologies and IS audit, control, and security techniques are books, trade journals, magazines, national and local newspapers, various business news services, newsletters from professional auditing associations and their local chapters, and industry-specific bulletins, newsletters, flyers, and regulatory updates. Many of these publications are available on the Internet. In fact, some publications are available only on the Internet. One thing to keep in mind is to not overwhelm yourself by thinking you have to read every word of every technology-related publication. There are more publications than you can reasonably read and still be able to perform your job. The key is to be selective in what you read. Choose a few publications to read on a regular basis, including some that are pertinent to your ...
Get Auditing Information Systems, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
