The need for timely and ongoing assurance over the effectiveness of risk management and control systems is critical. Organizations are continually exposed to significant errors,
frauds or inefficiencies that can lead to financial loss and increased levels of risk. An evolving regulatory environment, increased globalization of businesses, market pressure to
improve operations, and rapidly changing business conditions [...]
Certified Internal Auditor® (CIA®) Overview
The Certified Internal Auditor® (CIA®) designation is the only globally accepted certification for internal auditors and remains the standard by which individuals demonstrate their competency and professionalism in the internal auditing field. Candidates leave the program enriched with educational experience, information, and business tools that can be applied immediately in any [...]
Certified in the Governance of Enterprise IT® (CGEIT®) Overview
Boards and executive management have long understood the need for enterprise and corporate governance. As information technology (IT) has become more important to the achievement of enterprise goals and delivery of benefits, there has been an increasing realization that governance must be extended to IT as well. [...]
CISM Certification Overview
The Certified Information Security Manager® (CISM®) certification program is developed specifically for experienced information security managers and those who have information security management responsibilities. The CISM certification is for the individual who manages, designs, oversees and/or assesses an enterprise’s information security (IS). The CISM certification promotes international practices and provides executive management with [...]
1.1 Why the CAE Must Be Involved in Controlling Change and Patch Management You may be wondering why you should read a guide on the subject of information technology (IT) change and patch management. After all, isn’t this something you can completely delegate to your technical IT audit staff? And isn’t there sufficiently thorough guidance [...]
GTAG Information Technology Controls describes the knowledge needed by members of governing bodies, executives, IT professionals, and internal auditors to address technology control issues and their impact on business. Other professionals may find the guidance useful and relevant. The guide provides information on available frameworks for assessing IT controls and describes how to establish [...]
CISA Certification Overview
The mark of excellence for a professional certification program is the value and recognition it bestows on the individual who achieves it. Since 1978, the Certified Information Systems Auditor (CISA) program, sponsored by ISACA®, has been the globally accepted standard of achievement among information systems (IS) audit, control and security professionals.
The technical skills [...]