1. 吴桂英. 信息系统审计理论与实务[M]. 清华大学出版社, 2012.
2. 刘文. 信息安全审计问题与应用创新策略研究[J]. 信息安全研究, 2017, 3(10): 946-953.
3. 曹洪泽, 唐志豪. 信息系统审计准则国际经验与启示[J]. 财会通讯, 2013(31):114-116.
4. 石爱中. 信息系统审计实务: 中国计算机审计实务报告. 2012[M]. 中国时代经济出版社, 2012.
5. 石爱中. 国家审计信息化与国家治理[M]. 中国时代经济出版社, 2012.
6. 唐志豪, 冯占国, 宋明霞. 信息系统审计的业务模型构建[J]. 财会月刊, 2010(16):41-43.
7. 陈耿. 网络环境下信息系统审计的职能与类型[J]. 南京审计学院学报, 2012(1):45-50.
8. 张文秀, 齐兴利, 黄溶冰. 基于COBIT的信息系统审计框架研究[J]. 南京审计学院学报, 2010, 07(4):29-34.
9. GAO. GAO Workforce [OL]. [2017-11-10] http://www.gao.gov/about/workforce/teams.html
10. The United States Congress. FISMA [OL]. (2002-12-17) [2017-11-10]. https://csrc.nist.gov/topics/laws-and-regulations/laws/fisma
11. GAO. GOVERNMENT AUDITING STANDARDS: 2011 Revision [OL]. (2011-12-01) [2017-11-10]. http://www.gao.gov/products/GAO-12-331G
12. GAO. Federal Information System Controls Audit Manual (FISCAM) [OL]. (2009-02-02) [2017-11-10]. http://www.gao.gov/products/GAO-09-232G
13. Blank R M, Gallagher P D, Joint Task Force Transformation Initiative Interagency Working Group. NIST Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organizations, Revision 4[J]. Washington, DC: National Institute of Standards and Technology (NIST), 2013.
14. GAO. Identity Theft: Additional Actions Could Help IRS Combat the Large, Evolving Threat of Refund Fraud [OL]. (2014-09-22) [2017-11-10]. http://www.gao.gov/products/GAO-14-633
15. GAO. Technology Assessment: Internet of Things: Status and Implications of an Increasingly Connected World [OL]. (2017-05-15) [2017-11-10]. https://www.gao.gov/products/GAO-17-75
16. GAO. Determining Performance and Accountability Challenges and High Risks [OL]. (2000-11-01) [2017-11-10]. http://www.gao.gov/products/GAO-01-159SP
17. GAO. CYBERSECURITY: DHS's National Integration Center Generally Performs Required Functions but Needs to Evaluate Its Activities More Completely [OL]. (2017-02-01) [2017-11-10]. http://www.gao.gov/products/GAO-17-163
18. GAO. ELECTRONIC HEALTH INFORMATION: HHS Needs to Strengthen Security and Privacy Guidance and Oversight [OL]. (2017-09-26) [2017-11-10]. http://www.gao.gov/products/GAO-16-771
19. GAO. VEHICLE CYBERSECURITY: DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack [OL]. (2016-04-25) [2017-11-10].http://www.gao.gov/products/GAO-16-350
20. GAO. CYBERSECURITY: Actions Needed to Strengthen U.S. Capabilities [OL]. (2017-02-14) [2017-11-10]. http://www.gao.gov/products/GAO-17-440T