Evaluating Risk and Auditing Controls
Download (registration required, 300K)
Download --- Chinese Simplified (registration required 582K)
Provide feedback on this document
View News Release
10 Things Auditors Should Know About Cyber Security (infographic)
Cybersecurity: Based on the NIST Cybersecurity Framework
Cyber security has become a prevalent issue facing most organizations—one that companies recognize as an enterprise-wide issue requiring thoughtful attention. Investments in controls are necessary to protect organizations from increasingly sophisticated and widely available attack methods. Intentional attacks, breaches and incidents can have damaging consequences.
This free white paper from ISACA, Auditing Cyber Security, highlights the need for these controls implemented as part of an overall framework and strategy. This guide also focuses on the subsequent assurance that is needed through management review, risk assessments and audits of the cyber security controls.
In addition, we created a free infographic that captures at a high level the most important takeaways from our white paper’s deeper examination of auditing cyber security. Be sure to keep this information handy so you can quickly refer to it or share it with others. Get your copy of the infographic, 10 Things Auditors Should Know About Cyber Security, free for download today!
Moreover, you can put these best practices into action—be sure to check out our audit program template for cyber security. Cybersecurity: Based on the NIST Cybersecurity Framework is an IS audit/assurance program that provides management with an assessment of the effectiveness of cybersecurity processes and activities: identify, protect, detect, respond and recover. The audit program is based on the NIST Cybersecurity Framework and covers sub-processes such as asset management, awareness training, data security, resource planning, recover planning and communications.
Finally, be sure to view our archived webinars on this topic as well. Leading experts provide guidance in an on-demand format you can use at any time. You can also earn CPE credits from viewing these helpful presentations.