Press Release

About ISACA

ISACA Seeks Public Comment on IS Audit and Assurance Standards

Rolling Meadows, IL, USA (23 October 2012)—ISACA is seeking public comment on a refresh of its IS Audit and Assurance Standards. The global association of 100,000 IT audit, security, risk and governance professionals has posted the exposure draft at www.isaca.org/standardexposure. Comments are accepted through 28 December 2012.

ISACA introduced its IT Audit and Assurance Standards in 1988. Now called the IS Audit and Assurance Standards, the refresh includes 17 standards that establish the mandatory requirements for an information systems (IS) audit and assurance professional to follow.

“The refreshed standards provide additional clarity to IS audit and assurance professionals by precisely stating the requirements of each standard, defining key terms used within each standard and enhancing their alignment with other global auditing standards,” said Krysten McCabe, CISA, director of ISACA and senior manager in the Assurance and Advisory Management Program at The Home Depot. “They also are fully integrated into the IT Assurance Framework (ITAF), which serves as a living reference framework that includes other ISACA tools and techniques, such as IS audit programs.”

ISACA’s Professional Standards Committee aims to have all standards and their associated guidelines updated, and exposed to public comment, by the end of 2013.

“The world of information systems is constantly evolving. Those who wish to gain assurance that their systems are working as anticipated must have trust in the standards that audit and assurance professionals are using to deliver that trust. Likewise, audit and assurance professionals need confidence that the guidelines that help them interpret and implement the standards are up to date and reflect changes in the world of information systems,” said Ian Sanderson, CISA, CRISC, FCA, specialist information systems auditor to the International Board of Auditors for NATO. “ISACA’s Professional Standards Committee is reviewing, refreshing and enhancing the IS Audit and Assurance Standards so that they continue to meet the needs and expectations of those placing trust in information systems and the professionals who deliver that trust.”

To comment on the standards visit www.isaca.org/standardexposure. For additional information on ITAF, visit www.isaca.org/itaf.

About ISACA

With more than 100,000 constituents in 180 countries, ISACA (www.isaca.org) is a leading global provider of knowledge, certifications, community, advocacy and education on information systems (IS) assurance and security, enterprise governance and management of IT, and IT-related risk and compliance. Founded in 1969, the nonprofit, independent ISACA hosts international conferences, publishes the ISACA Journal, and develops international IS auditing and control standards, which help its constituents ensure trust in, and value from, information systems. It also advances and attests IT skills and knowledge through the globally respected Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT) and Certified in Risk and Information Systems Control (CRISC) designations.

ISACA continually updates and expands the practical guidance and product family based on the COBIT framework. COBIT helps IT professionals and enterprise leaders fulfill their IT governance and management responsibilities, particularly in the areas of assurance, security, risk and control, and deliver value to the business.

Participate in the ISACA Knowledge Center: www.isaca.org/knowledge-center

Follow ISACA on Twitter: https://twitter.com/ISACANews

Join ISACA on LinkedIn: ISACA (Official), http://linkd.in/ISACAOfficial

Like ISACA on Facebook: www.facebook.com/ISACAHQ

Contact:

Kristen Kessinger, +1.847.660.5512, news@isaca.org

Joanne Duffer, +1.847.660.5564, news@isaca.org


What is CISA	What is CISM	What is CGEIT	What is CRISC
Benefits of CISA	Benefits of CISM	Benefits of CGEIT	Benefits of CRISC
How to Become Certified	How to Become Certified	How to Become Certified	How to Become Certified
Register for the Exam	Register for the Exam	Register for the Exam	Register for the Exam
Prepare for the Exam	Prepare for the Exam	Prepare for the Exam	Prepare for the Exam
Taking the Exam	Taking the Exam	Taking the Exam	Taking the Exam
Apply for Certification	Apply for Certification	Apply for Certification	Apply for Certification
Maintain Your CISA	Maintain Your CISM	Maintain Your CGEIT	Maintain Your CRISC

World Congress: INSIGHTS	Training Week	Webinars
North America CACS	eLearning Campus	Virtual Conferences
EuroCACS / ISRM	On-Site Training
Governance, Risk and Control	Exam Review Courses	COBIT EDUCATION
North America ISRM
Latin America CACS / ISRM
Oceania CACS
Asia-Pacific CACS / ISRM


COBIT 5 Home
Product Family
Training & Accreditation
Licensing
Join the Conversation
News
Recognition
FAQs