Books
Posted by ISACA 11 days ago
|
Books
Posted by ISACA 34 days ago
|
|
|
Research
Posted by ISACA 56 days ago
|
Books
Computer crimes call for forensics specialists, people who know how to find and follow the evidence.
Posted by ISACA 57 days ago
|
Books
Aimed at both the novice and expert in IT security and industrial control systems (ICS), this book will help readers gain a better understanding of protecting ICSs from electronic threats.
Posted by ISACA 57 days ago
|
15 May 2012
ISACA International Event
Washington, DC, USA
|
12 Jun 2012
ISACA International Event
Dallas, Texas, USA
ISACA Training is a unique educational event designed to provide the tools you need to maintain, update and upgrade your skills, and to continue your professional development.
|
7 Aug 2012
ISACA International Event
Chicago, Illinois, USA
ISACA Training is a unique educational event designed to provide the tools you need to maintain, update and upgrade your skills, and to continue your professional development.
|
10 Sep 2012
ISACA International Event
Munich, Germany
EuroCACS/ISRM is a multidimensional event featuring audit, security, governance and risk content, and the audit and security programs, tools and the resources you need to be responsive to industry changes.
|
11 Sep 2012
ISACA International Event
San Francisco, California, USA
ISACA Training is a unique educational event designed to provide the tools you need to maintain, update and upgrade your skills, and to continue your professional development.
|
2 Oct 2012
ISACA International Event
Orlando, Florida, USA
ISACA Training is a unique educational event designed to provide the tools you need to maintain, update and upgrade your skills, and to continue your professional development.
|
Volume 2, 2011
by Gan Subramaniam, CISA, CISM, CCNA, CCSA, CIA, CISSP, ISO 27001 LA, SSCP
What should be our approach to determining and reaching agreement on the optimal percentage of business operations that must be or can be recovered in the event of a crisis?
|
Volume 3, 2010
by Steven J. Ross, CISA, MBCP, CISSP
Any organization planning to utilize cloud computing services should be well aware of the risks and should implement a robust control structure to counter them. Among the foremost risks is disruption of service, which includes both downtime and data loss.
|
Volume 2, 2010
by Gan Subramaniam, CISA, CISM, CIA, CISSP, SSCP, CCNA, CCSA, ISO 27001 LA
|
Volume 2, 2010
by Chris Fry and Martin Nystrom | Reviewed by Tansu Gumus, CISA, CCNA
|
Volume 2, 2010
by John P. Pironti, CISA, CISM, CGEIT, CISSP, ISSAP, ISSMP
|
Volume 2, 2010
by Shahab Nayyer, CISA, CIA
|
These links, which have been contributed by site users, link to external third-party web sites. ISACA has not evaluated these web sites and accepts no responsibility for their suitability, security or privacy practices.
A brief discussion/article on ISMS. By Prasanna Ramakrishnan
Contributed by lamd on 19 Oct 2010
|
The IA Policy Chart was inspired by the creation of a similar Acquisition Security Policy Chart by the Office of the Under Secretary of Defense for Acquisition, Technology & Logistics. The goal of the IA Policy Chart is to capture the tremendous breadth of applicable policies, some of which many IA practitioners may not even be aware, in a helpful organizational scheme.
|
Would you hire someone convicted of a computer crime to fill a position of trust in your computer network? Or, more generally, would you hire someone convicted of a crime for a job related to that crime?
Contributed by ISACA on 30 Jun 2010
|
ISACA's Risk IT is a global IT-related risk framework to provide a comprehensive view of the business risks associated with IT initiatives. Risk IT builds on ISACA's COBIT framework for IT governance to provide a missing link between conventional enterprise risk management and IT risk management and control.
Contributed by ISACA on 29 May 2010
|
On the surface of it, it seems like IT Governance is a lot of trouble for no tangible return. Yet, if we really take the time to think about it, a business runs on information.
Contributed by ISACA on 29 May 2010
|
This paper provides seven practical steps any information security organization can take to improve information system security and achieve compliance with relevant regulations, standards and internal security and operational policy.
Contributed by ISACA on 29 May 2010
|
|
To share various espects in cloud computing viz; history, availability, deployment, integrity, availability, confidentiality, security, cloud sharing etc.
Posted By : MoizB583519 | 2 comments
|
On March 1st, I was invited to speak at the CampIT conference on Enterprise Risk/Security Management at Rosemont Convention Center.
Before me there were two speakers. The first presenter spent an hour presenting the story from the trenches of technolog...
Posted By : Umesh391 | 0 comments
|
|
I am interested in system security & control and therefore have joined ISACA as a member for several years. Besides, I am a CISA and CISM in titles. To take advantage of membership privilege, I can easily collect up-to-date information related to standar...
Posted By : Calvin Tsang | 2 comments
|
Posted By : masarker | 0 comments
|
|
APT Defense Strategy
By Kevin J. Murphy, CISSP, CISM, CGEIT
September 30, 2010
WHAT IS APT?
APT is an acronym for Advance Persistent Threat. Isn’t that descriptive? In reality there is a lot behind the APT which might not be that obvious from underst...
Posted By : Kevin J. Murphy | 1 comments
|
Hello, this is my first post on my blog at ISACA. I feel honored to be among the many members of the ISACA organization and look forward to exchanging ideas, issues, and changes in the Information Security and all of the areas of Risk, Governance, and Co...
Posted By : Donald515 | 0 comments
|
|
|