IT Assurance Framework (ITAF) Fact Sheet 


About ITAF

ITAF is a comprehensive and good-practice-setting model that:

  • Provides guidance on the design, conduct and reporting of IS audit and assurance assignments
  • Defines terms and concepts specific to IS assurance
  • Establishes standards that address IS audit and assurance professional roles and responsibilities; knowledge and skills; and diligence, conduct and reporting requirements

ITAF provides a single source through which IS audit and assurance professionals can seek guidance, research policies and procedures, obtain audit and assurance programmes, and develop effective reports.

While ITAF incorporates existing ISACA standards and guidance, it has been designed to be a living document. As new guidance is developed and issued, it will be indexed within the framework and made available to ISACA members.

ITAF Materials

ITAF: A Professional Practices Framework for IS Audit/Assurance, 3rd Edition is available as a free PDF download at

COBIT 5 Incorporates ITAF

The scope of the guidance provided in ITAF has been incorporated into the latest thinking offered in COBIT 5. More information on COBIT 5 can be found at


Kristen Kessinger, +1.847.660.5512
Joanne Duffer, +1.847.660.5564