Press Release

About ISACA

New Guidance From ISACA Helps Assurance Professionals Audit and Manage IT Risk

Covers Strategic and Tactical Management, and the Lotus Domino Server

Rolling Meadows, IL, USA (24 January 2012)—Integrating IT risk and enterprise risk management is essential to the overall health of an enterprise’s infrastructure. To provide audit and assurance professionals with the most up-to-date guidance on IT auditing, risk management and strategic alignment, ISACA, a nonprofit association serving 95,000 IT professionals in 160 countries, has developed new audit/assurance programs:

IT Risk Management Audit/Assurance Program, which helps auditors provide senior management with an understanding of the effectiveness of the IT risk management process, supporting framework and policies, and assurance that IT risk management is aligned with the enterprise risk management process

IT Strategic Management Audit/Assurance Program, which provides a component of an IT general controls review and an operational audit of the IT function

IT Tactical Management Audit/Assurance Program, which provides a tactical approach to an IT general controls review and an operational audit of the IT function to improve the implementation of governance, policies, procedures and enterprise standards

Lotus^®Domino^® Server Audit/Assurance Program, which focuses on the Domino server—specifically, the e-mail function and applications

Voice-over Internet Protocol (VoIP) Audit/Assurance Program, which helps to review and manage VoIP controls of the network

Available soon: IPv6 Security Audit/Assurance Program

ISACA also will release a new publication this month: Security, Audit and Control Features Oracle^® PeopleSoft, 3^rd Edition, which will include customizable audit programs.

“Formal audits of IT controls provide transparency that can build the level of trust enterprises have in IT,” said Ken Vander Wal, CISA, CPA, international president of ISACA. “ISACA provides these audit programs to help auditors worldwide design and execute effective reviews that result in improved assurance processes that contribute to the enterprise’s overall goals and objectives.”

The audit/assurance programs are based on the standards and guidance in ISACA’s IT Assurance Framework (ITAF) and align with the globally recognized COBIT framework for governance and management of IT. They have been developed by a team of experienced assurance professionals from around the world and are peer reviewed. The programs are downloadable in a Word document and can be easily customized to fit a specific operating environment.

They can also be used by security and business professionals, who will benefit from applying the control objectives and audit steps to make the respective scope areas more robust.

The audit/assurance programs are free for ISACA members and US $45 for nonmembers at www.isaca.org/auditprograms. ITAF is available at www.isaca.org/ITAF. COBIT is available at www.isaca.org/cobit.

About ISACA

With 95,000 constituents in 160 countries, ISACA is a leading global provider of knowledge, certifications, community, advocacy, and education on information systems (IS) assurance and security, enterprise governance and management of IT, and IT-related risk and compliance. Founded in 1969, the nonprofit, independent ISACA hosts international conferences, publishes the ISACA Journal, and develops international IS auditing and control standards, which help its constituents ensure trust in, and value from, information systems. It also advances and attests IT skills and knowledge through the globally respected Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM, Certified in the Governance of Enterprise IT (CGEIT) and Certified in Risk and Information Systems Control (CRISC) designations. ISACA continually updates COBIT, which helps IT professionals and enterprise leaders fulfill their IT governance and management responsibilities, particularly in the areas of assurance, security, risk and control, and deliver value to the business.

Collaborate with ISACA members: www.isaca.org/knowledge-center

Follow ISACA on Twitter: http://twitter.com/ISACANews

Join ISACA on LinkedIn: ISACA (Official)

Like ISACA on Facebook: www.facebook.com/ISACAHQ

Contact:

Kristen Kessinger, +1.847.660.5512, news@isaca.org

Joanne Duffer, +1.847.660.5564, news@isaca.org


What is CISA	What is CISM	What is CGEIT	What is CRISC
Benefits of CISA	Benefits of CISM	Benefits of CGEIT	Benefits of CRISC
How to Become Certified	How to Become Certified	How to Become Certified	How to Become Certified
Register for the Exam	Register for the Exam	Register for the Exam	Register for the Exam
Prepare for the Exam	Prepare for the Exam	Prepare for the Exam	Prepare for the Exam
Taking the Exam	Taking the Exam	Taking the Exam	Taking the Exam
Apply for Certification	Apply for Certification	Apply for Certification	Apply for Certification
Maintain Your CISA	Maintain Your CISM	Maintain Your CGEIT	Maintain Your CRISC


COBIT 5 Home
Product Family
Education and Training
News
Recognition
Join the Conversation
Looking for COBIT 4.1?