http://www.isaca.org/_layouts/feed.aspx?xsl=1&web=/Knowledge-Center/Research&page=f824000b-3d6a-4d0a-9db5-47190ca86432&wp=85377c89-89d2-42f1-8e43-27d575ca06cf60http://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Responding-to-Targeted-Cyberattacks.aspxTue, 14 May 2013 19:04:36 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Cloud-Governance-Questions-Boards-of-Directors-Need-to-Ask.aspxTue, 30 Apr 2013 18:38:09 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Big-Data-Impacts-and-Benefits.aspxExperienced business and IT professionals know that optimizing their use of big data as a resource will deliver real business value to the enterprise stakeholders.Mon, 08 Apr 2013 19:24:13 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Software-Assurance-Audit-Assurance-Program.aspxTue, 12 Feb 2013 20:53:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Identity-Management-Audit-Assurance-Program.aspxTue, 12 Feb 2013 20:54:14 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Advanced-Persistent-Threats-Awareness-Study-Results.aspxThu, 11 Apr 2013 19:02:38 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Assessment-Programme-Using-COBIT-5.aspxWed, 08 May 2013 14:09:20 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Outsourced-IT-Environments-Audit-Assurance-Program.aspxTue, 30 Apr 2013 18:39:07 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Personally-Identifiable-Information-PII-Audit-Assurance-Program.aspxTue, 12 Mar 2013 18:24:37 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/BYOD-Audit-Assurance-Program.aspxTue, 12 Feb 2013 20:57:33 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Business-Continuity-Management-Emerging-Trends.aspxTue, 12 Feb 2013 20:57:22 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Securing-Mobile-Devices-Using-COBIT-5-for-Information-Security.aspxTue, 12 Feb 2013 20:57:10 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Biometrics-Audit-Assurance-Program.aspxThu, 31 Jan 2013 15:16:20 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/VPN-Security-Audit-Assurance-Program.aspxTue, 22 Jan 2013 20:44:20 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/E-commerce-and-Public-Key-Infrastructure-PKI-Audit-Assurance-Program.aspxTue, 22 Jan 2013 20:44:07 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/SOC-2-User-Guide.aspxThu, 27 Dec 2012 20:07:48 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Cybercrime-Audit-Assurance-Program.aspxTue, 04 Dec 2012 20:35:00 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/2012-Cloud-Computing-Market-Maturity-Study-Results.aspxTue, 13 Nov 2012 20:31:48 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Considerations-for-Cloud-Computing.aspxTue, 06 Nov 2012 20:32:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Calculating-Cloud-ROI-From-the-Customer-Perspective.aspxTue, 30 Oct 2012 19:35:06 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Virtualization-Desktop-Infrastructure-VDI.aspxTue, 30 Oct 2012 19:35:19 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-5-Product-Family.aspxTue, 01 May 2012 21:01:55 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Incident-Management-and-Response.aspxIncident response is a key component of an enterprise business continuity and resilience program.Tue, 23 Oct 2012 17:08:30 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IPv6-Security-Audit-Assurance-Program.aspxTue, 02 Oct 2012 19:31:27 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Guiding-Principles-for-Cloud-Computing-Adoption-and-Use.aspxThis paper describes the nature of cloud computing and areas of pressure that, when not addressed, can increase risk to the enterprise.Thu, 27 Sep 2012 19:36:14 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Audit-and-Control-Features-Oracle-PeopleSoft-3rd-Edition.aspxTue, 11 Sep 2012 14:49:02 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Voice-over-Internet-Protocol-VoIP-Audit-Assurance-Program.aspxTue, 24 Jul 2012 14:21:52 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Risk-Management-Audit-Assurance-Program.aspxTue, 22 May 2012 13:06:25 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Strategic-Management-Audit-Assurance-Program.aspxWed, 28 Mar 2012 16:59:04 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Self-assessment-Guide-Using-COBIT-4-1.aspxTue, 28 Feb 2012 19:38:45 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Tactical-Management-Audit-Assurance-Program.aspxTue, 21 Feb 2012 15:45:47 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Assessor-Guide-Using-COBIT-41.aspxThis guide is intended primarily to support those undertaking process assessments using the formal COBIT PAM.Tue, 31 Jan 2012 21:38:26 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Mobile-Payments-Risk-Security-and-Assurance-Issues.aspxWidespread use of smartphones and consumer comfort with mobile devices for more than communication are the principal drivers of a resurgent and increased interest in mobile payments.Tue, 24 Jan 2012 15:54:11 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Lotus-Domino-Server-Audit-Assurance-Program.aspxDomino server comprises a series of cooperating processes that communicate with one another on multiple servers and connect to remote computers.Tue, 17 Jan 2012 15:08:04 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Microsoft-Exchange-Server-2010-Audit-Assurance-Program.aspxExchange Server 2010 is comprised of a series of cooperating processes that communicate with one another on local and remote computers, as well as with domain controllers, and a number of different clients.Tue, 06 Dec 2011 20:08:22 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Microsoft-SharePoint-2010-Audit-Assurance-Program.aspxSharePoint 2010 is a complex group of architectures requiring technical expertise and understanding as well as the ability to evaluate the content vulnerabilities.Tue, 13 Dec 2011 17:04:37 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Web-Application-Security-Business-and-Risk-Considerations.aspxThis paper explores the root causes of these vulnerabilities, examines the associated risks and impacts, and provides guidance as to how enterprises can alter their practices to mitigate this risk.Tue, 29 Nov 2011 16:03:38 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Assessment-Program.aspxThe process assessment model (PAM) is REQUIRED TO align with the current contents of COBIT 4.1 and ISO/IEC 15504-2.Tue, 10 Jan 2012 15:19:39 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Microsoft-Windows-File-Server-Audit-Assurance-Program.aspxThe File Server audit/assurance review provides management with an independent assessment of the effectiveness of the configuration and of the security of the enterprise’s file servers.Fri, 11 Nov 2011 17:43:42 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Business-Continuity-Management-Audit-Assurance-Program.aspxWed, 09 Nov 2011 17:30:35 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Geolocation-Risks-Issues-and-Strategies.aspxGeolocation technologies and their application, while offering social and economic benefit to a mobile society, raise significant privacy and risk concerns for individuals, businesses and governments.Thu, 26 Apr 2012 13:50:42 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Data-Analytics-A-Practical-Approach.aspxThis white paper was written to illuminate what data analytics has to offer.Wed, 09 Nov 2011 18:29:40 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Overview-of-International-IT-Guidance-3rd-Edition.aspxThis is an update of the overview of the series of detailed COBIT mapping publications.Wed, 09 Nov 2011 17:45:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Control-Objectives-for-Cloud-Computing-Controls-and-Assurance-in-the-Cloud.aspxAs a follow-up to the whitepaper issued in October 2009, ISACA has produced this book to examine assurance in the cloud.Tue, 20 Sep 2011 16:57:25 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Microsoft-SQL-Server-Database-Audit-Assurance-Program.aspxWed, 09 Nov 2011 17:48:27 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Leveraging-XBRL-for-Value-in-Organizations.aspxISACA and IFAC have jointly developed this white paper to provide accounting and assurance professionals with guidance to leverage value from XBRL initiatives and compliance requirements.Wed, 09 Nov 2011 17:50:04 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Sustainability.aspxIT offers a suitable target for sustainability and “green” efforts—efforts that can pay off in ways other than financial.Tue, 05 Feb 2013 19:44:22 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Top-Business-Technology-Issues-Survey-Results-2011.aspxA survey of members, managers and above to identify current business issues, supported by technology was conducted in the fourth quarter of 2010. Wed, 09 Nov 2011 17:52:51 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Creating-a-Culture-of-Security.aspxThe greatest benefit of a culture of security is the effect it has on other dynamic interconnections within an enterprise. Wed, 09 Nov 2011 17:58:17 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Electronic-Discovery.aspxEnterprises are looking to technology to help them search, classify, preserve and present discoverable electronically stored information.Wed, 09 Nov 2011 18:02:52 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/VMware-Server-Virtualization-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:06:05 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-CMMI-for-Development-V12-With-COBIT-4-1.aspxWed, 01 Feb 2012 21:10:12 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-ISOIEC-20000-With-COBIT-4-1.aspxWed, 01 Feb 2012 21:11:27 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Microsoft-Internet-Information-Services-IIS-7-Web-Services-Server-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:12:32 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Social-Media-Audit-Assurance-Program.aspxWed, 09 Nov 2011 18:31:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Global-Status-Report-on-the-Governance-of-Enterprise-IT-GEIT-2011.aspxThe 4th edition of the IT Governance Institute’s status report of the governance of enterprise IT covers 21 countries and 10 industries. It reveals accord on IT contribution to business success and views on IT outsourcing, social networking and the cloud.Wed, 01 Feb 2012 21:14:30 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Apache-Web-Services-Server-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:15:41 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/MySQL-Server-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:16:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Information-and-Event-Management-Business-Benefits-and-Security-Governance-and-Assurance-Perspective.aspxWed, 09 Nov 2011 18:54:26 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/E-Commerce-and-Consumer-Retailing-Risks-and-Benefits.aspxWed, 01 Feb 2012 21:19:02 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Virtualization-Benefits-and-Challenges.aspxWed, 09 Nov 2011 19:10:45 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Mobile-Computing-Security-Audit-Assurance-Program.aspxWed, 16 Nov 2011 16:49:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Monitoring-Internal-Control-Systems-and-IT.aspxWed, 01 Feb 2012 21:25:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Business-Model-for-Information-Security.aspxWed, 15 Feb 2012 20:02:46 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Data-Leak-Prevention.aspxWed, 01 Feb 2012 21:27:32 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Crisis-Management-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:30:55 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Cloud-Computing-Management-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:32:23 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Management-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:34:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Windows-Active-Directory-Audit-Assurance-Program.aspxWed, 01 Feb 2012 21:37:57 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Securing-Mobile-Devices.aspxWed, 09 Nov 2011 20:26:58 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/New-Service-Auditor-Standard-A-User-Entity-Perspective.aspxWed, 09 Nov 2011 20:30:46 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Audit-and-Control-Features-Oracle-E-Business-Suite-3rdEdition.aspxERP systems are pervasive globally in medium to large enterprises and the public sector. The series covers the three primary ERP systems: SAP, Oracle and PeopleSoft.Wed, 09 Nov 2011 20:35:25 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Social-Media-Business-Benefits-and-Security-Governance-and-Assurance-Perspectives.aspxWed, 01 Feb 2012 21:47:28 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-FFIEC-With-COBIT-41.aspxWed, 01 Feb 2012 21:49:02 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-ISO-IEC-17799-2005-With-COBIT-4-0.aspxThis document contains a detailed mapping of ISO/IEC 17799:2005 with COBIT 4.0Wed, 09 Nov 2011 20:47:39 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/The-Business-Case-Guide-Using-Val-IT-20.aspxWed, 01 Feb 2012 21:52:14 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/SharePoint-Deployment-and-Governance-Using-COBIT-4-1.aspxWed, 09 Nov 2011 20:55:44 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Value-Management-Guidance-for-Assurance-Professionals-Using-Val-IT-2-0.aspxThis publication provides guidance for assurance professionals by leveraging the Val IT 2.0 framework and the IT Assurance Guide: Using COBIT.Wed, 01 Feb 2012 21:54:47 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Audit-and-Control-Features-Oracle-Database-3rd-Edition.aspxThis update of the 2004 edition focuses on the attributes and incremental functionality in the most recent Oracle relational database management system software releases 10g and 11g (with focus on 11g).Wed, 01 Feb 2012 21:56:01 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/The-Risk-IT-Practitioner-Guide.aspxThe Risk IT Framework describes a detailed process model for the management of IT-related risk.Wed, 09 Nov 2011 21:06:20 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Implementing-and-Continually-Improving-IT-Governance1.aspxThis guide provides an approach for implementing IT governance in such a way that the implementation team can get started in an effective and efficient manner.Wed, 01 Feb 2012 21:58:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/The-Risk-IT-Framework.aspxThe Risk IT Framework fills the gap between generic risk management frameworks and detailed (primarily security-related) IT risk management frameworks.Wed, 01 Feb 2012 22:00:11 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Cloud-Computing-Business-Benefits-With-Security-Governance-and-Assurance-Perspective.aspxCloud Computing: Business Benefits With Security, Governance and Assurance PerspectivesWed, 24 Apr 2013 16:03:31 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Audit-and-Control-Features-SAP-ERP-3rd-Edition.aspxEnables assurance, security and risk professionals (both IT and non-IT) to evaluate risks and controls in existing ERP implementations and facilitates the design and building of better practice controls into system upgrades and enhancements.Wed, 09 Nov 2011 21:18:56 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Building-the-Business-Case-for-COBIT-and-Val-IT-Executive-Briefing.aspxThis research explores and demonstrates the business value of COBIT and Val IT. An overview of the significant market findings is presented in this executive briefing.Wed, 01 Feb 2012 22:03:42 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-and-Application-Controls-A-Management-Guide.aspxThis publication provides guidance on the definition, design, operation, relationships and dependencies of application controls.Wed, 01 Feb 2012 22:04:50 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-User-Guide-for-Service-Managers.aspxAimed at providing specific guidance on using COBIT when performing a particular role, this guide focuses on service managers, providing them a better understanding of the need for IT governance and how to apply good practices.Wed, 01 Feb 2012 22:07:04 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/ITGI-Enables-ISO-IEC-38500-2008-Adoption-.aspxSummarizes how COBIT, Val IT and related guidance support adoption of the ISO/IEC 38500’s principles and implementation approach.Wed, 01 Feb 2012 22:10:45 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-Unlocking-Value.aspxWed, 01 Feb 2012 22:09:18 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-Defining-IT-Governance.aspxWed, 01 Feb 2012 22:18:46 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-Value-Delivery.aspxWed, 01 Feb 2012 22:19:57 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/An-Introduction-to-the-Business-Model-for-Information-Security.aspxDefines core concepts that will evolve into practical aids to align security program activities with organizational goals and priorities, effectively manage risk, and increase the value of information security program activities to the enterprise.Wed, 01 Feb 2012 22:14:48 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Generic-Application-Audit-Assurance-Program1.aspxThis document is to be used as a review tool and starting point. It may be modified by the IT audit and assurance professional.Wed, 01 Feb 2012 22:16:22 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Incident-Management-Audit-Assurance-Program.aspxThe review will focus on security incident management standards, guidelines and procedures as well as the implementation and governance of these activities.Wed, 01 Feb 2012 22:17:31 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Change-Management-Audit-Assurance-Program.aspxDesign, development and testing methodology of program change management processes.Tue, 15 Nov 2011 17:33:08 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Continuity-Planning-Audit-Assurance-Program.aspxThe review relies on the existence of a business continuity plan. Policy, standards, guidelines and implementation of the business continuity plan is outside the scope of this review.Wed, 01 Feb 2012 22:23:12 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/z-OS-Security-Audit-Assurance-Program.aspxThe review will focus on configuration of the relevant z/OS images within the organization, and the controls over critical operating system (z/OS) libraries, exits to the operating system and supervisor calls (SVCs).Wed, 05 Dec 2012 20:56:19 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Network-Perimeter-Security-Audit-Assurance-Program.aspxThe review will focus on the network perimeter security, including associated policies, standards and procedures as well as the effectiveness of the security implementation.Wed, 01 Feb 2012 22:27:55 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Systems-Development-and-Project-Management-Audit-Assurance-Program.aspxThe review will focus upon the (initiation/ planning/ execution/ closure/ postimplementation) phase of the systems development process for the {insert application name}.Tue, 15 Nov 2011 17:53:12 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/UNIX-LINUX-Operating-System-Security-Audit-Assurance-Program.aspxTue, 15 Nov 2011 18:06:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Unlocking-Value-An-Executive-Primer-on-the-Critical-Role-of-IT-Governance.aspxThe guide explains what IT governance is and why it is important. It describes the key players in the enterprise in IT governance and explains how effective IT governance is implemented.Wed, 01 Feb 2012 22:32:24 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-and-Process-Maturity.aspxThis project achieved the research objective of developing robust benchmark information and providing a means for organizations to answer the question, ‘How do we compare with our peers?’Tue, 15 Nov 2011 18:15:17 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Defining-Information-Security-Manager-Position-Requirements-Guidance-for-Executives-and-Managers.aspxThis report provides a framework for understanding the many, changing and interrelated requirements of the information security manager position and its requirements assigned to professionals at various levels in an enterprise.Wed, 01 Feb 2012 22:37:07 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Understanding-How-Business-Goals-Drive-IT-Goals.aspxThis white paper presents a solid and strong list of 17 generic business goals and 18 generic IT goals, validated and prioritized over different sectors providing a basis upon which to build a generic cascade from business goals to IT goals.Wed, 01 Feb 2012 22:40:27 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Aligning-COBIT-4-1-ITIL-V3-and-ISO-IEC-27002-for-BusinessBenefit.aspxThe briefing applies generally to all IT best practices but focuses on three specific practices and standards that are becoming widely adopted around the world. It has been updated to reflect the latest versions.Wed, 01 Feb 2012 22:43:20 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Identifying-and-Aligning-Business-Goals-and-IT-Goals-Full-Research-Report-(e-book).aspxWed, 16 Nov 2011 17:07:39 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Top-Business-Technology-Issues-Survey-Results-July-2008.aspxWed, 01 Feb 2012 22:45:38 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Val-IT-Framework-2.0.aspxWed, 01 Feb 2012 22:46:59 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-ITIL-V3-With-COBIT-4-11.aspxContains the results of a mapping of ITIL V3 with COBIT 4.1 as well as a classification of the standards discussed in this publication, per the content of the overview document COBIT Mapping: Overview of International IT Guidance, 2nd Edition.Wed, 01 Feb 2012 22:48:18 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Enterprise-Value-Governance-of-IT-Investments-Getting-Started-with-Value-Management.aspxThis is a guide that complements The Val IT Framework 2.0 and outlines how to implement Val IT.Wed, 01 Feb 2012 22:49:23 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-IT-Governance-Trends.aspxWed, 01 Feb 2012 22:51:51 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Career-Progression-Survey-Results.aspxWed, 01 Feb 2012 22:53:22 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Governance-Guidance-for-Information-Security-Managers.aspxDiscusses how to develop an information security strategy within the organization’s governance framework and how to drive that strategy through an information security program.Wed, 01 Feb 2012 22:54:38 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/ITAF-A-Professional-Practices-Framework-for-IT-Assurance.aspxITAF provides a single source through which IT audit and assurance professionals can seek guidance, research policies and procedures, obtain audit and assurance programmes and develop effective reports.Wed, 01 Feb 2012 22:55:37 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Global-Status-Report-April-2008.aspxWed, 01 Feb 2012 22:58:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-IT-Staffing.aspxWed, 01 Feb 2012 23:01:33 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Roundtable-IT-Governance-Frameworks.aspxWed, 01 Feb 2012 23:02:43 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-NIST-SP800-53-Rev-1-With-COBIT-4-1.aspxThis document contains a detailed mapping of NIST SP800-53 Rev 1 with COBIT 4.1.Wed, 01 Feb 2012 23:04:46 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Control-Objectives-for-Basel-II-The-Importance-of-Governance-and-Risk-Management-for-Compliance.aspxThis document provides a framework for managing information risk in the context of Basel II.Tue, 15 Nov 2011 20:58:17 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Stepping-Through-the-InfoSec-Program.aspxThis publication includes a case study and steps to compose an information security program.Wed, 01 Feb 2012 23:07:15 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Quickstart-2nd-Edition.aspxThis version of COBIT is a baseline for small to medium enterprises where IT is not mission-critical for survival. It can also serve as a starting point for enterprises in their move towards an appropriate level of control and governance of IT.Thu, 23 Feb 2012 16:50:03 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Security-Baseline-An-Information-Security-Survival-Kit-2nd-Edition1.aspxTue, 15 Nov 2011 21:09:58 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-TOGAF-8-1-With-COBIT-4-0.aspxThis document contains a detailed mapping of TOGAF 8.1 with COBIT 4.0 and also contains the classification of the standards discussed in this paper as presented in the overview document COBIT Mapping: Overview of International IT Guidance, 2nd Edition.Wed, 01 Feb 2012 23:11:43 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-4-1.aspxCOBIT is an IT governance framework and supporting tool set that allows managers to bridge the gap between control requirements, technical issues and business risks.Tue, 15 Nov 2011 21:15:23 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Assurance-Guide-Using-COBIT.aspxAssurance steps and advice are provided for generic controls that apply to all processes; specific process controls; and application controlsTue, 15 Nov 2011 21:18:39 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Control-Practices-Guidance-to-Achieve-Control-Objective-for-Successful-IT-Governance-2nd-Edition.aspxThis publication provides guidance on the risks to be avoided and value to be gained from implementing a control objective, and instruction on how to implement the objective.Wed, 01 Feb 2012 23:15:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-of-CMMI-for-Development-V1-2-With-COBIT.aspxThis document contains a detailed mapping of CMMI for Development V1.2 with COBIT 4.0.Tue, 15 Nov 2011 21:23:13 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-SEI-s-CMM-for-Software-With-COBIT-4-0.aspxThis document contains a detailed mapping of the Software Engineering Institute (SEI) Capability Maturity Model (CMM) for Software with COBIT 4.0.Tue, 15 Nov 2011 21:36:31 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Control-Objectives-for-Sarbanes-Oxley-2nd-Edition.aspxThis publication provides scoping and assessment ideas, approaches and guidance in support of the IT-related COSO internal control objectives for financial reporting.Tue, 15 Nov 2011 21:27:15 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-PMBOK-with-COBIT-4-0.aspxThis publication contains a detailed mapping of A Guide to the Project Management Body of Knowledge (PMBOK© Guide) Third Edition (2004), with COBIT 4.0.Tue, 15 Nov 2011 22:05:41 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/COBIT-Mapping-Mapping-ISO-IEC-17799-2000-With-COBIT-2nd-Edition.aspxThe 2nd edition of COBIT Mapping: Mapping ISO/IEC 17799:2000 With COBIT updates the publication with references to COBIT 4.0.Tue, 15 Nov 2011 22:08:14 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Governance-Guidance-for-Boards-of-Directors-and-Executive-Management-2nd-Edition.aspxFirst published in 2002, the book is updated to reflect the changes in the environment, and to include many ideas and outcomes of those organizations that embrace good Information Security Governance.Wed, 01 Feb 2012 23:20:00 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Managing-Risk-in-the-Wireless-Environment-Security-Audit-and-Control-Issues.aspxThis publication provides the technical and security background to confidently evaluate the security of wireless networks of all types, and make knowledgeable recommendations for improvements to security or to cost-effectiveness.Tue, 15 Nov 2011 22:16:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Critical-Elements-of-Information-Security-Program-Success.aspxThis report reflects the experience and opinions of an international group of information security managers providing a look at the elements that are most critical for information security program success.Wed, 01 Feb 2012 23:23:30 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Domains-Practices-and-Competencies-Measuring-and-Demonstrating-the-Value-of-IT.aspxWed, 01 Feb 2012 23:27:39 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Domains-Practices-and-Competencies-Governance-of-Outsourcing.aspxWed, 01 Feb 2012 23:28:36 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Domains-Practices-and-Competencies-Information-Risks-Whose-Business-are-They-Whose-Business-are-They.aspxWed, 01 Feb 2012 23:30:10 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Domains-Practices-and-Competencies-Optimising-Value-Creation-from-IT-Investments.aspxWed, 01 Feb 2012 23:32:34 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/IT-Governance-Domains-Practices-and-Competencies-IT-Alignment-Who-Is-in-Charge.aspxThis volume focuses on ensuring IT alignment with business objectives and examines the effectiveness of an IT strategy committee or IT "council" in helping achieve IT alignment.Wed, 01 Feb 2012 23:24:57 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Security-Awareness-Best-Practices-to-Secure-Your-Enterprise.aspxThis document provides the critical steps needed to implement an enterprisewide security awareness effort; build concurrence among other departments; and provide baselines, maturity levels and control objectives.Wed, 01 Feb 2012 23:39:53 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Governance-Top-Actions-for-Security-Managers.aspxWed, 01 Feb 2012 23:34:45 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Linux-Security-Audit-and-Control-Features.aspxThis document provides a standard reference for Linux security controls and their audit for security administrators, security professionals and information systems auditors.Wed, 16 Nov 2011 19:26:06 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Information-Security-Harmonization-Classification-of-Global-Guidance.aspxThe purpose of this technical study is to provide the Certified Information Security Manager (CISM) holder with a guide to the better known and more widely available information security documents.Wed, 01 Feb 2012 23:39:16 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/Board-Briefing-on-IT-Governance-2nd-Edition.aspxComprehensive description of IT governance concepts. It is useful as a reference booklet or as a tool for educating top management and comes with checklists and tools.Wed, 11 Apr 2012 14:30:00 GMThttp://www.isaca.org/Knowledge-Center/Research/ResearchDeliverables/Pages/ITGI-Global-Survey-Results.aspxWed, 01 Feb 2012 23:49:35 GMT