Computer systems require routine maintenance and upkeep to keep current and secure. Likewise, system security also follows a routine maintenance path and is itself an eternally ongoing work-in-progress—a constant cycle of evaluation, implementation, and monitoring. Security maintenance demands a breadth of expertise and wealth of knowledge across a broad range of disciplines within any real-world computing environment. In a constant struggle to keep the wolves at bay, knowledgeable security maintenance personnel should be prepared to thwart threats of attack to their company assets. Procedures and methods that include routine assessments, evaluations, identifications, implementations, resolutions, validations and verifications are among the many activities through which security must be maintained. Learn More>>

Free Access to CAQ Webcast Series on AS 5 Implementation for Audits of Non-Accelerated Filers

The Center for Audit Quality, which is affiliated with the AICPA, is launching a three-part webcast series on the implementation of PCAOB Auditing Standard No. 5, An Audit of Internal Control Over Financial Reporting That Is Integrated with An Audit of Financial Statements. For the first time, thousands of smaller public companies and their auditors are required to comply with the auditor attestation requirements under Section 404(b) of the Sarbanes-Oxley Act of 2002 for fiscal years ending on or after Dec. 15, 2009. This first webcast addresses the fundamentals of an integrated audit, including using a top-down, risk-based approach in planning tests of controls; an overview of SEC, PCAOB, COSO and CAQ information; and more. To access the archived version of Part I, visit CAQ’s Web site on the “Events” page.  To participate in the future installments of the Webcasts, Register here.

ABCs of IT Security for CPAs #6: Introduction to Perimeter Security