Bezuidenhout, Pieter StefanGloeck, Juergen D. (Juergen Dieter), 1956-2007-12-122007-12-122004Bezuidenhout, PS & Gloeck, JD 2004, 'An audit approach to e-commerce payment security', Southern African Journal of Accountability and Auditing Research, vol. 5, pp. 21-34. [http://www.saiga.co.za/publications-sajaar.htm]1028-9003http://hdl.handle.net/2263/4069This is the second of two articles that address the audit approach to EC payment security. The previous article (Bezuidenhout & Gloeck, 2003) dealt with the following: • The EC payment security environment, and • The risks prevalent in this environment. This paper capitalises on the first article and uses the identified risk model to develop an audit approach for the IS auditor that can be used when he/she is engaged in the audit of an e-commerce (EC) payment security environment. As part of the research various audit approaches followed by selected audit firms, are presented and the commonalities of these approaches are translated into steps that the IS auditor should follow as part of his/her audit approach to EC payment security.324829 bytesapplication/pdfenSouthern African Institute of Government AuditorsAudit of information systemsInternet securityInternet paymente-CommerceInformation systems auditorInformation systems auditInternet payment securityInternet payment methodsInternet risk managementInternet security risksIS auditor approachElectronic commerce -- AuditingElectronic commerce -- Security measuresArticle