In May 2013, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) released its updated Internal Control-Integrated Framework. COSO is an organization that aims to improve organizational performance and corporate governance through effective internal control, enterprise risk management, and fraud deterrence. COSO is a joint initiative of five private-sector organizations: the American Accounting Association (AAA), the American Institute of Certified Public Accountants (AICPA), the Financial Executives International (FEI), the Institute of Management Accountants (IMA), and the Institute of Internal Auditors (IIA). To implement the COSO internal control framework, you need to assess the new framework’s five components, i.e., control environment, risk assessment, control activities, information and communication, and monitoring activities, as well as its 17 principles against your current…
COSO and COBIT 5 dovetail to ease IT governance concerns for organizations complying with SOX 404 financial reporting requirements
Asking "what is an IT security audit" might get you a much longer answer than you think. This primer explains everything you need to know.