Michael Mendelsohn, CISSP, Antoine Philipovitch, William Welch, CISM, and Robert Zanella, CISA
One of today’s big security marketing pushes is enterprise single sign-on (ESSO).

Based on Volume 5, 2011

Ali Navid Akhtar, OCP, Jeff Buchholtz, Michael Ryan, CIA, CPA, and Kumar Setty, CISA
This article covers the topics related to data loss and the types of database backup and recovery available.

Ronke Oyemade, CISA, CRISC, PMP
This article defines IT governance, addresses its importance, and describes how to apply the three lines of defense by implementing a combination of the Risk IT and COBIT frameworks.

Mathew Nicho, Ph.D., CEH, SAP-SA, RWSP
With more and more transactions based on credit cards, merchants dealing with these are forced to comply with standards such as PCI DSS v2.0 or face huge penalties.

Angsuman Dutta and Prasad Sista
To reduce information risk exposure through appropriate risk mitigation processes, financial organizations need to put a stronger focus on information quality management.

Rama Lingeswara Satyanarayana Tammineedi, CISA, BCCE, CBCP, CISSP, PMP
Business continuity management (BCM) is a holistic process to ensure uninterrupted availability of all key business resources required to support critical business activities, whether manual or IT-enabled, in the event of business disruption.

Seth Davis, CFA, CIA, CPCU, Pat Ferrell, ARe, AIC, CPCU, Sean Scranton, CISA, CISM, CCNA, CISSP, and Peter Millar
Fraud impacted 87 percent of organizations in 2010, according to the Kroll Global Fraud Report.

Gan Subramaniam, CISA, CISM, CCNA, CCSA, CIA, CISSP, ISO 27001 LA, SSCP
What kind of risks should organizations be cognizant about particularly when they outsource their internal processes and data processing to third parties?

Steven J. Ross, CISA, CISSP, MBCP
If there is to be any advanced technology, the data center and the machines in it need to be operated and maintained in a manner consistent with prudent business practices.

Tommie W. Singleton, Ph.D., CISA, CGEIT, CITP, CPA
This article offers some basic guidance to IT auditors in evaluating the access controls over relevant data files.

Edward Amoroso | Reviewed by Jeimy J. Cano M., Ph.d., CFC, CFE, CMAS
This book is particularly interesting to and useful for information security and IT governance professionals because of its strategic and tactical guidance that can help refine decisions on the protection of critical infrastructure.

Thomas J. Shaw Esq. | Reviewed by Horst Karin, Ph.d., CISA, CRISC, CISSP
It is critical for businesses to understand legal implications and compliance and to have appropriate safeguards and risk management efforts in place to protect the information and private data of customers and the organization.

Prakhar Srivastava and Tarun Verma
Log management can play a pivotal role in addressing PCI DSS requirements, be a success factor and enabler for safeguarding cardholder transaction data, and provide a secure and vulnerability-free environment for cardholders.

ISACA Member and Certification Holder Compliance
An up-to-date listing of the current IT Audit and Assurance Standards, Guidelines, and Tools and Techniques

Ronke Oyemade, CISA, CRISC, PMP
Este artigo define governança de TI, trata de sua importância e descreve como aplicar as três linhas de defesa implementando uma combinação dos modelos Risk IT e COBIT para produzir uma estrutura mais eficiente de governança de TI, de modo a fortalecê-la.

Rama Lingeswara Satyanarayana Tammineedi, CISA, BCCE, CBCP, CISSP, PMP
O BCM é um processo do negócio, conduzido para o negócio, e uma boa prática de governança corporativa.