References | It Auditing: Using Controls to Protect Information Assets [IT AUDITING -OS N/D]

Auditing Standard No. 2: "An Audit of Internal Control Over Financial Reporting Performed in Conjunction with an Audit of Financial Statements" (Effective June 17, 2004), http://www.pcaobus.org.
Committee of Sponsoring Organizations of the Treadway Commission, http://www.coso.org.
http://www.en.wikipedia.org/wiki/COSO.
http://www.en.wikipedia.org/wiki/ITIL_v3.
International Organization for Standardization, "ISO-Overview", February 2004, http://www.iso.org.
ISACA, (prior to January 1, 2006 was known as Information Systems Audit and Control Association), http://www.isaca.org.
IT Infrastructure Library, http://www.itil.co.uk.
IT Governance Institute, http://www.itgi.org.
IT Governance Institute, Board Briefing on IT Governance, 2nd ed. Rolling Meadows, IL, 2003. Copyright © 2003 by the IT Governance Institute, http://www.itgi.org.
IT Governance Institute, CoBIT 4.0, Rolling Meadows, IL, 2005. Copyright © 2005 by the IT Governance Institute, http://www.itgi.org.
"NSA INFOSEC Assessment and Evaluation Methodologies", http://www.iatrp.com.
Soleil, Darcy, "Sarbanes Oxley Section 404 Compliance Tips for IT Managers," 2004, per ISACA SOX Forum listserv.
Soleil, Darcy, "Sarbanes Oxley Section 404 Compliance for IT Managers," Auditnet.org.
Software Engineering Institute, http://www.sei.cmu.edu.