Current Issue: Volume 19  18 September 2019

@ISACA is a biweekly publication available from this page and delivered via email to ISACA members and subscribers. This electronic newsletter features timely industry and ISACA news, as well as features and updates relevant to our readers.


Tips From Industry Experts

Managing Third-Party Risk
ISACA News

Third-party vendors are integral to delivering products and services for many enterprises, and this can pose a risk to the organization itself. Enterprises must be diligent in fostering safe and healthy relationships with suppliers and be accountable for their own data protection. This requires sound governance and risk management processes integrated into the enterprise and IT business practices. Read More >>


New From SheLeadsTech

Deidre Melton, CISA, CRISC, CISM, CFE, CIA, serves as an assurance, risk assessor, investigator and advisory professional specializing in IT and cybersecurity at Florida A&M University (USA). Her early experience is in educational and local/state government audits for the State of Florida Auditor General’s Office. Read More >>
 

Proactive Risk Management
ISACA News

While no one can predict the future, one can reasonably anticipate negative events and their outcomes, and even plan for appropriate responses. Risk management is a proactive planning process that mitigates and provides plans around negative events, should they occur. Enterprises need a framework for analyzing risk and developing sound treatment plans in response to risk realization. Read More >>


Dapo Ogunkola
Dapo Ogunkola

Dapo Ogunkola discovered the value of the Certified Information Systems Auditor (CISA) certification as an intern early in his career. While interning at a Nigerian bank in 2008, Ogunkola says, “I noticed all my mentors in the internal audit department were all CISAs, very knowledgeable and prominent within the industry.” Read More >>


ISACA News

The new publication COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution contains key concepts that can help auditors build prioritized audit plans. It also provides new capability levels for assessing process capability and outlines the governance and management objectives for structuring the audit universe and describing control activities. Read More >>