13. Desired
state of system
Goals and plans
Observe
actual state
of system
Observations Document
actual state
of system
Documentation
Evaluate
systemEvaluation
Recommend
changes to
system
Recommendations
13
14. CRITERIA
via CobiT
Goals and plans
Observe
the process
& controls
Gain Understanding
Observations Document
The process
& controls
AWP & Work Papers
Test & Evaluate
Process &
controls
Draw
Conclusions
Recommend
Changes if
needed
Report Recommendations
14
23. اجعرمو منابع
1. Kerr, D.S., Murthy, U.S., “The importance of the COBIT framework IT processes for effective internal
control over financial reporting in organizations”, Information & Management, 50 (2013) 590–597.
2. Shi, W., Wang, R., “Dynamic internal control performance over financial reporting and external
financing”, Journal of Contemporary Accounting & Economics, 8 (2012) 92–109.
3. Spatacean, I.O., ”Addressing Fraud Risk by Testing the Effectiveness of Internal Control over
Financial Reporting Case of Romanian Financial Investment Companies”, Procedia Economics and
Finance, 3 ( 2012 ) 230 – 235.
4. Enslin, Z., “Cloud computing adoption: Control objectives for information and related technology
(COBIT) – mapped risks and risk mitigating controls”, African Journal of Business Management, 6
(2012) 10185-10194.
5. Bernroider, E.,Ivanov, M., ” IT project management control and the Control Objectives for IT and
related Technology (COBIT) framework”, International Journal of Project Management, 29 (2011)
325–336.
6. Qian, J., Ward, K., Blaskovich , J., “Integrating IT Frameworks into the AIS Course”, AIS Educator
Journal, 7 (2012) Page 2.
7. Yang, M.H., Lin, W.SH., Koo, T.L., “The impact of computerized internal controls adaptation on
operating performance”, African Journal of Business Management, 5(2011)8204-8214.
8. Omari, L.A., Barnes, P., Pitman, G., ”Optimizing COBIT 5 for IT Governance: Examples from the
Public Sector”, International Conference on Applied and Theoretical Information Systems Research,
December 27-29, 2012, Taipei, Taiwan.
23