Resources likely to be of interest or use to IT auditors 

Updated: Tuesday, 13 July 2010

Professional and Scholarly Societies



Association of Certified Fraud Examiners

The Association of Certified Fraud Examiners, established in 1988, is based in Austin, Texas. The 27,000-member professional organization is dedicated to educating in fighting fraud.

Association for Project Management

The Association is the largest independent professional body of its kind in Europe, with over 15,000 individual and 400 corporate members. Its mission statement is: "To develop and promote the professional disciplines of project and programme management for the public benefit". The site hosts an interesting Glossary of project management terms, and offers a Project Management Body of Knowledge.

Argentine Society for Informatics and Operations Research

SADIO was established in 1960 as a scientific association whose aims are to extend the knowledge of Computer Science, Information Technology, Management Science, and Statistics, as well as to promote the education and training in those disciplines and the free interchange of knowledge and experience among professionals.

Australian Computer Society

The mission of ACS is to advance professional excellence in information technology. ACS is a member of the Australian Council of Professions and the Information and Communications Technology Alliance, and also is a member of the International Federation of Information Processing and the South East Asian Regional Computer Confederation.

British Computer Society

With over 38,000 members world-wide, the BCS is the UK's leading professional and learned Society in the field of computers and information systems. 

Through the Information Systems Examinations Board (ISEB), BCS provide industry-recognised qualifications that measure competence, ability and performance in many areas of IS, with the aim of raising industry standards, promoting career development and providing competitive edge for employers.

Canadian Information Processing Society

Founded in 1958, CIPS represents more than 8,000 IT professionals across Canada.

Carnegie Mellon - Software Engineering Institute

The Software Engineering Institute (SEI) is a federally funded research and development centre sponsored by the U.S. Department of Defense through the Office of the Under Secretary of Defense for Acquisition, Technology, and Logistics. The SEI's core purpose is to help others make measured improvements in their software engineering capabilities. Its vision is... the right software, delivered defect free, on time and on cost, every time. See technical reports page; also "The Internal Consistency of Key Process Areas in the Capability Maturity Model  (CMM) for Software (SW-CMM)" (.pdf, 708KB)

Chilean Computer Science Society (Sociedad Chilena de Ciencia de la Computación)

SCCC was founded in 1984. Its main goal is to serve as a mean of divulgation, promotion and quality assurance of the scientific and technical development of computer science in Chile and Latin America. It also looks after the ethical and moral values that must be present in any professional activity, in order to readily contribute to bettering the quality of life of the community.

Computer Society of India

CSI was formed in 1965, has some 18000 members. Its purposes are scientific and educational directed towards the advancement of the theory and practice of computer science, computer engineering and technology, systems science and engineering, information processing and related arts and sciences.

Computer Society of Malta

CSM was founded in 1992, as the national organisation representing Information & Communications Technology (ICT) professionals in Malta. The Computer Society actively participates in initiatives related to the development of the information society. It works to promote the ICT profession, the ICT industry, and the use of ICT in the community.

Computer Society of Pakistan

The CSP is Pakistan's national organization of IT professionals. It was established in 1973 to promote the use of computers, increase general awareness among the public and to look after the professional interests of the IT personnel in the country.

Computer Society of South Africa

CSSA is the representative body of practising professionals in the computer industry. Its members come from many different backgrounds and bring together a variety of skills and experience. What they have in common is their interest in computing and in maintaining high standards of practise in the computing profession.

Council of European Professional Informatics Societies


  • Unites 32 Informatics Professional Societies across Europe

  • Is the voice of more then 150.000 ICT Professionals

  • Encourages ICT literacy and best practice in the Information Society

  • Promotes acceptance of professional standards for ICT Professionals.

Through these, CEPIS enhances ICT professionalism and the role that ICT plays in modern society.

Chilling Effects

A joint project of the Electronic Frontier Foundation and Harvard, Stanford, Berkeley, University of San Francisco, and University of Maine law school clinics. Chilling Effects encourages respect for intellectual property law, while frowning on its misuse to "chill" legitimate activity. 

The website offers background material and explanations of the (U.S.) law for people whose websites deal with topics such as Fan Fiction, Copyright, Domain Names and Trademarks, Anonymous Speech, and Defamation.

Conceived and developed at the Berkman Center for Internet & Society, Chilling Effects is a joint project of the Electronic Frontier Foundation (EFF) and clinics at Harvard Law School's Berkman Center, Stanford Law School's Center for Internet & Society, Boalt Hall's Samuelson Law, Technology and Public Policy Clinic and other law schools across the U.S.

Electronic Privacy Information Center

EPIC is a public interest research centre based in Washington, D.C. established in 1994 to focus public attention on emerging civil liberties issues, and to protect privacy, the First Amendment, and constitutional values. The site contains news and surveys on privacy issues, and publish an interesting e-mailed newsletter. "Total Information Awareness", crypto policy and wiretapping are some examples of the topical issues followed by

European Computer Driving License

ECDL is an internationally recognised qualification that enables people to certify their competence in essential computer skills & knowledge. It certifies to a set standard the IT skills people already have or the skills they attain through training. Outside Europe the programme is known as the International Computer Driving License (ICDL). To achieve an ECDL or ICDL, the candidate must successfully pass one theoretical and six practical tests. These tests can be attempted in any order and at any time and must be successfully completed within a maximum duration of three years. Each successfully completed test is endorsed on an ECDL or ICDL Skills Card. Only an accredited Test Centre can carry out testing and issue Skills Cards.

European Forum for Electronic Business

EEMA is the premier European forum for electronic business. Formed in March 1987, it is an international, non-profit making organisation which provides an independent forum for all participants in electronic business. (Publications page) (The PKI Challenge)

Finnish Information Processing Association

FIPA was founded in 1953 to promote various aspects of IT. Today it consists of 25 member societies, which jointly have some 27 000 individual members as well as nearly 700 companies and other types of organizations.

Issues of particular interest to the Association include the creation and revisions of Finnish law, such as questions about data security and copyright protection. One of the key tasks of FIPA is to act as a sponsor and organizer of research projects of national significance in the IT field.

German Informatics Society (Gesellschaft für Informatik)

GI has some 21,000 members who work in informatics or who are interested in its development.


The IEEE (Eye-triple-E) is a non-profit, technical professional association of more than 377,000 individual members in 150 countries. The full name is the Institute of Electrical and Electronics Engineers, Inc., although the organization is most popularly known and referred to by the letters I-E-E-E.

Information Processing Society of Japan

The Information Processing Society of Japan is a leading non-profit society in Japan for developing, advancing and disseminating IT relating to computers and communications. It was established on April 22, 1960 and approved as a public-service corporation by the Japanese government in 1963.

Internet Society

The Internet SOCiety (ISOC) is a professional membership society with more than 150 organization and 16,000 individual members in over 180 countries. It provides leadership in addressing issues that confront the future of the Internet, and is the organization home for the groups responsible for Internet infrastructure standards, including the Internet Engineering Task Force and the Internet Architecture Board. See publications page for a wide range of Internet-related material.


With 86,000 constituents in 160 countries, ISACA® ( is a leading global provider of knowledge, certifications, community, advocacy and education on information systems (IS) assurance and security, enterprise governance of IT, and IT-related risk and compliance. Founded in 1969, ISACA sponsors international conferences, publishes the ISACA® Journal, and develops international IS auditing and control standards. It also administers the globally respected Certified Information Systems Auditor™ (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) designations. ISACA offers the COBIT® framework, which helps enterprise leaders fulfill their responsibilities for providing governance of IT and deliver value to the business.

Irish Computer Society

The Irish Computer Society was founded in 1967 as the national body for Information and Communication Technology (ICT) Professionals in Ireland. Since its foundation the ICS has promoted the continuous development of professional ICT knowledge and skills in Ireland by organising seminars, lectures and related activities.

Institute of Internal Auditors

Claims approximately 85,000 members in more than 120 countries and territories. IIA members come from a wide variety of public and private sectors, which include agriculture, forestry, and fisheries; mining; contract construction; manufacturing; transportation, communications, and utility services; wholesale and retail trade; financial, insurance, and real estate; services; education; and government. Members within the United States, Canada, and Caribbean nations participate in The IIA through local chapters. Members outside these areas participate through affiliated chapters and institutes, or as members at large.

Institute of Internal Auditors - UK & Ireland

The primary body in the UK and Ireland representing, promoting and developing the practice of internal auditing. QiCA - Qualification in Computer Auditing - is designed especially for those specialising in information systems auditing or seeking to establish themselves as computer auditors.

International Federation of Accountants

IFAC is an organization of national professional accountancy organizations that represent accountants employed in public practice, business and industry, the public sector, and education, as well as some specialized groups that interface frequently with the profession. IFAC strives to develop the profession and harmonize its standards worldwide to enable accountants to provide services of consistently high quality in the public interest.

International Records Management Trust

The Trust was set up in 1989 to help develop new strategies for managing public sector records. Records are so fundamental to democracy that governments and international organisations often take it for granted that records will be there to underpin constitutional arrangements. However, over the last several decades there has been a deterioration in the management of official records, with consequences for efficiency, effectiveness, accountability, the protection of human rights services to citizens, poverty reduction strategies and the rule of law. The loss of control of evidence has been as insidious and gradual as the deterioration of the environment. The site hosts a lot of training material.

Korea Information Science Society

KISS is the professional organization in Korea for those in computer and information sciences. It was established on March 3rd, 1973 and incorporated as a non profit organisation on October 8th, 1977 under jurisdiction of the Ministry of Science and Technology. 

London University (External Programme)

Over 30,000 students are registered with and study through the External Programme, which was established in 1858 to make University of London degrees accessible to students who, for one reason or another, could not come to the University to study in the conventional way.

As from September 2003, the Royal Holloway College will offer a distance learning M.Sc. in information security.

New Zealand Computer Society

The Society aims to:

(a) develop the practice of the profession of information processing and related disciplines in New Zealand.

(b) foster the training, education and qualification of persons practicing or intending to practice the profession in New Zealand;

(c) promote proper conduct within its membership and to set ethical standards for the profession;

(d) grant diplomas, certificates and classes of membership to members in recognition of their proficiency in the profession;

(e) develop or provide lectures. meetings, conferences and publications and to promote research in information processing and computer technology;

(f) promote any other related activities which are in the interests of the Society.

Stanford Law School Center for Internet and Society

CIS is a public interest technology law and policy program at Stanford Law School and a part of Law, Science and Technology Program at Stanford Law School. The CIS brings together scholars, academics, legislators, students, hackers, and scientists to study the interaction of new technologies and the law and to examine how the synergy between the two can either promote or harm public goods like free speech, privacy, public commons, diversity, and scientific inquiry. The CIS strives as well to improve both technology and law, encouraging decision makers to design both as a means to further democratic values.

Cases under litigation are listed here.

Secure Programming Group, University of Oulu, Finland

World renown centre for identifying security flaws in software. "Purpose of the OUSPG is to study, evaluate and develop methods of implementing and testing application and system software in order to prevent, discover and eliminate implementation level security vulnerabilities in a pro-active fashion. Our focus is on implementation level security issues and software security testing". Glossary of Vulnerability Testing Terminology. Vulnerability disclosure publications and discussion tracking.

For enquiries or comments about this site, please use our Feedback form.