EnterpriseGRC Solutions Reading Room (out of date - to be updated soon)


Publications Update March 2012  -  Looking for something? Please don't hesitate to Contact US


Book Grass



Week of January 8th, 2012
If you haven't got the news on these published resources, here's one more chance.  EnterpriseGRC Solutions recommends the following as recent critical reading.  These are not paid advertisements and there are no marketing hooks.  We just recommend this reading.


Critical Resources Related to Cloud







The Office of Management and Budget or OMB is free and available for those wishing to understand oversight of the American Recovery Act of 2009 athttp://www.whitehouse.gov/omb




OMB Circular A-123
-- Management's Responsibility for Internal Control (Effective
beginning with Fiscal Year 2006) (Revised 12/21/2004) HTML or
PDF (35 pages, 274 kb)
-- Appendix A Implementation Plans (08/01/2005) (2 pages, 43 kb) 
-- Appendix A Implementation Guide (07/2005)
-- Appendix A Frequently Asked Questions (04/13/2006) (14 pages, 93 kb)
-- Issuance of Revised Appendix B to OMB Circular A-123 (04/28/2006) (51 pages, 286 kb)
-- Management's Accountability and Control (Effective through Fiscal 
Year 2005) (Revised 06/21/1995)
-- Appendix C, Requirements for Effective Measurement
and Remediation of Improper Payments (08/10/2006) (22 pages, 236 kb)
-- http://www.whitehouse.gov/omb/procurement/memo/a123_guidelines.pdf http://www.whitehouse.gov/omb/procurement/memo/a123_guidelines.pdf" style="color:rgb(27, 87, 177);text-decoration:none">Conducting Acquisition Assessments under OMB Circular A-123 (May 21, 
OMB Circular A-127, Financial Management Systems (07/23/1993)
-- Transmittal Memorandum #3 (12/01/2004)
-- Transmittal Memorandum #2 (06/10/1999) 
OMB Circular A-129, Policies for Federal Credit Programs and Non-Tax Receivables (11/2000)
OMB Circular A-130, Transmittal Memorandum #4, Management of Federal Information Resources (11/28/2000) HTML or PDF (23 pages, 92 kb) 
OMB Circular A-131, Value Engineering (05/21/1993) 
OMB Circular A-133, Audits of States, Local Governments, and Non-Profit Organizations (06/24/1997) (includes revisions published in Federal Register 06/27/2003) HTML or PDF (33 pages, 127 kb) 
-- March 2008 Compliance Supplement 
-- March 2007 Compliance Supplement 
-- March 2006 Compliance Supplement
-- Appendix A: Data Collection Form (Form SF-SAC)
OMB Circular A-134, Financial Accounting Principles and Standards (05/20/1993) 
OMB Circular A-135, Management of Federal Advisory Committees (10/05/1994)
OMB Circular A-136, Financial Reporting Requirements - Revised (06/03/08) (166 pages, 1.16 mb)
-- OMB Circular A-136, Financial Reporting Requirements - Revised (06/29/07)
(166 pages, 1.16 mb)







Welcome to the Official ITIL® Website
IT Service Management - ITIL
Service Management – ITIL® 2011 Edition Publications







Cyber Security for the 44th President



Securing Cyberspace for the 44th Presidency
A Report of the CSIS Commission on Cybersecurity for the 44th Presidency 
Cochairs: Representative James R. Langevin Representative Michael T. McCaul Scott Charney Lt. General Harry Raduege, USAF (Ret) Project Director: James A. Lewis Center for Strategic and International Studies Washington, DC December 2008




drink   ISACA Web Site
ISACA web site, http://www/isaca.org is the first stop for information related to Information Audit. EnterpriseGRC Solutions, Inc. is proud to contribute and sponsor ISACA resources.

SEC   SEC Website
Roadmap for the Potential Use of Financial Statements Prepared in Accordance with International Financial Reporting Standards by U.S. Issuers (Release No. 33-89)
...1. The Global Nature of Today's Capital Markets Today, investors, issuers and other capital markets participants are able to engage in financial transactions across national boundaries and to make investment, capital allocation and financing decisions on a global basis more readily than ever before. This is due in large measure to today's everfaster communications, and ever-moreclosely linked markets. (...)

Green Technology Resources


CHP EPA Awards
  Combined heat and power (CHP) http://www.epa.gov/chp/documents/datacenter_fs.pdf (directly quoting a part) Combined heat and power (CHP), also known as cogeneration, can be an excellent solution for controlling energy costs while improving the reliability of power and thermal energy supplies for data centers. CHP applied in data centers can provide benefits to the facility operator in the form of: 
• Reduced energy-related costs and enhanced economic competitiveness. 
• Increased reliability and decreased risk from outages. 
• Increased ability to meet facility expansion timelines. 
• Reduced emissions of greenhouse gases and criteria air pollutants, including carbon dioxide (CO2), carbon monoxide (CO), nitrogen oxides (NOX), and sulfur dioxide (SO2). 
Integrated Environmental and Economic Accounting 2003  

Integrated Environmental and Economic Accounting 2003
Copyright © 2003 United Nations European Commission
International Monetary Fund Organisation for Economic Co-operation and Development World Bank
The handbook provides a common framework for economic and environmental information, permitting a consistent analysis of the contribution of the environment to the economy and of the impact of the economy on the environment. It is intended to meet the needs of policy makers by providing indicators and descriptive statistics to monitor the interaction between the economy and the environment as well as serving as a tool for strategic planning and policy analysis to identify more sustainable development paths. (page 5)  Also see http://unstats.un.org/unsd/envaccounting/seea.asp


Click to access UNdata   UN Statistical DatabasesNothing is worth saying without the facts. UN data is as trustworthy and agnostic as it gets.  


World Resource Institute (WRI) 2006 SWITCHING TO GREEN, A Renewable Energy Guide for Office and Retail Compan



World Resource Institute (WRI) 2006 SWITCHING TO GREEN, A Renewable Energy Guide for Office and Retail Companies (From World Resource Web Site- Please visit the source.)

Switching to Green: A Renewable Energy Guide for Office and Retail companies is a practical resource for companies that want to "green" their energy supply but don't know how. More than 70 percent of electricity in the United States is generated using fossil fuels such as coal, oil, and natural gas. The environmental impacts from this generation are considerable, ranging from air and carbon pollution to the myriad consequences of mining and drilling for fuel. Obtaining energy from clean, renewable resources-"green power"-can provide both environmental and economic value, and a growing number of American companies are making the switch.

Although many types of green power are not difficult to procure, the overwhelming amount of information available can make this confusing to do, especially for newcomers. Accordingly, Switching to Green was designed to cut through the clutter and provide the essential information for companies wanting to "green" their energy supply. It is intended specifically for office- and retail-based companies and organizations. Examples include financial institutions; real estate, retail, law, and publishing firms; universities; and nonprofit organizations. The readers of this guide do not need an energy background to understand the information provided.

Switching to Green draws heavily on the lessons and publications of the Green Power Market Development Group <http://www.thegreenpowergroup.org/>

GHG Protocol Initiative  

Corporate Accounting and Reporting Standards (Corporate Standard): methodologies for business and other organizations to inventory and report all of the GHG emissions they produce. "Corporate," in this context, refers to both private and public sector organizations. The Calculation Tools are a complement to the Corporate Standard and assist businesses in quantifying emissions from their business activities and operations.

The Greenhouse Gas Protocol Initiative is a partnership of businesses, non-governmental organizations (NGOs), governments, and World Resources Institute (WRI), a U.S.-based environmental NGO, and the World Business Council for Sustainable Development (WBCSD), a Geneva-based coalition of 170 international companies.

Mission: develop internationally accepted greenhouse gas (GHG) accounting and reporting standards for business and promote their broad adoption. A well-designed and maintained corporate GHG inventory can serve several business goals, including;

  • Managing GHG risks and identifying reduction opportunities
  • Public reporting and participation in voluntary GHG programs
  • Participating in mandatory reporting programs
  • Participating in GHG markets
  • Recognition for early voluntary action
  • GHG Protocol Corporate Accounting and Reporting Standard (this document, which provides a step-by-step guide for companies to use in quantifying and reporting their GHG emissions)
  • GHG Protocol Project Quantification Standard (forthcoming; a guide for quantifying reductions from GHG mitigation projects)
Business Guide to Low Carbon Economy  

The Business Guide To The Low Carbon Economy From The Climate Group

Whether it is rising global temperatures or rising energy and fuel costs that motivate our actions, the need to make changes in our business decisions and our economy is increasingly urgent. California's Global Warming Solutions Act, AB32, sets ambitious directly or indirectly affecting every business and citizen of the state. Although many details of AB32's implementation are still being finalized, some initial measures have been adopted. Additionally, energy and fuel prices are high and likely to go higher. By taking action now, businesses can reduce GHG emissions and save money at the same time.[...]



Going Green A Strategic Guide Prepared by EMA for CA logo

Going Green: A Strategic Guide to Green IT Management
Prepared for CA, September 2008

First, Thank You to the strategic leadership at CA for their financial support to make this paper available to the public.  We all benefit by reading what they have spent time and money to produce.

Going Green: A Strategic Guide Prepared by EMA for CA is an important reading material.  SOAProjects experiences the profound contribution made by companies such as CA, and HP through our shared contributions on committees such as SIM, iTSMF, ISACA and IIA.  We offer kudos to the investment in public learning that is established by leaders in the effort to make Green Data center a common reality.  Part of Green is the investment in Green Products.  This is one of many reasons to highlight efforts by vendors who are ahead of the curve in Green Tech.



http://www.isaca.org/Template.cfm?Section=Archives&template=/TaggedPage/TaggedPageDisplay.cfm&TPLID=7&UserDefinedDate1=11/01/2006   Procedure Guidelines for Controls Documentation SDLC
ISACA web site shows an article published by Robin Basham

Enterprise Governance Risk and Controls Frameworks

Coming soon, writeups for CRISC and CGEIT Resources.

Please check back in a few weeks.


ISACA Web Site
ISACA web site, http://www/isaca.org is the first stop for information related to Information Audit.  EnterpriseGRC Solutions is proud to contribute and sponsor ISACA resources.



ISACA Logo  

Aligning COBIT® 4.1, ITIL® V3 and ISO/IEC 27002 for Business Benefit November 2008