objectivity of internal auditors, 7
objects, database, 230
omnidirectional antennas, 272
ongoing risk, managing, 367-368
creating risk baseline, 367-368
overview, 367
reassessing risk, 368
open directories, 183
Open Web Application Security Project (OWASP), 213-214
operating system
auditing, 21
controls, 261
operational software team, 300
Operator tool, 272
Ophcrack utility, 149
Oracle Corporation, 224-225
organization structure, IT, 62-63
outsourced IT support, 73
OWASP (Open Web Application Security Project), 213-214
ownership of company data, 71