ISACA Journal - 2012 Volume 6

Volume 6, 2012

Journal

Columns

4 Information Security Matters: The Cost of Cyberattacks Steven J. Ross, CISA, CISSP, MBCP

6 Cloud Computing: Leveraging the Cloud for Added Value Steven C. Markey

8 Information Ethics: Risk and Responsibility Vasant Raval, DBA, CISA

12 IT Audit Basics: What Every IT Auditor Should Know About Proper Segregation of Incompatible IT Activities Tommie W. Singleton, Ph.D., CISA, CGEIT, CITP, CPA

15
Five Questions With…
Brian Schaeffer, CISA, CISSP
Features

49
Preparing for HTML5 Capabilities
and Threats
Hongwen Zhang
Plus

The ISACA ® Journal seeks to enhance the proficiency and competitive advantage of its international readership by providing managerial and technical guidance from experienced global authors. The Journal’s noncommercial, peer-reviewed articles focus on topics critical to professionals involved in IT audit, governance, security and assurance.

Want more of the practical, peer-reviewed articles you have come to expect from the Journal Additional online-only articles will be available on the first business day of each month in which no Journal is released, i.e., February, April, June, August, October and December. These articles will be available exclusively to ISACA® members during their first year of release. Use your unique member login credentials to access them at

www.isaca.org/journalonline.

Online Features

The following articles will be available to ISACA members online on 3 December 2012.

A Strategic Framework for IT Disaster Recovery Assessments

Klaus Julisch, Ph.D., and Damian Walch

Book Review: Security Metrics—A Beginner’s Guide

Reviewed by Upesh Parekh, CISA

Journal Online

Journal authors are
now blogging at
www.isaca.org/journal/blog.
Visit the ISACA Journal
Author Blog to gain more
insight from colleagues and
to participate in the growing
ISACA community.
Read more from these
Journa l authors…