Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

Young Professionals

Welcome to the Young Professionals Community! This page was developed for ISACA members in their 20s or 30s. Members are encouraged to share practical career advice on professional and personal development.

YP Spotlight: Matthias Kraft, Aurich, Germany, USA

ISACA is proud to spotlight Matthias Kraft from Germany. Get to know more about Matthias by scrolling down a little.

This Topic Has:
2682 Members
3 Online
24609 Visits

 Recent Discussions

Community Leader



Badge: Influential

Spotlight on Matthias Kraft
(from Aurich, Germany)

ISACA: What do you like about the risk and security profession?
Matthias:  When I started my career as a young entrepreneur and software engineer in the year 2000 when the Internet was at the rise, it was all about enabling businesses by creating new functionality within applications and making them available on the Internet. I never thought about risk or security during that time. When I slowly moved into the security and risk profession, I noticed that a healthy thinking about ‘what could go wrong’ can sustainably improve existing business processes. Now, I am passionate about helping businesses to protect themselves against the known and unknown in an ever changing threat landscape.

ISACA: From your personal experience, what has been the greatest challenge as a Young Professional in the work place?
Matthias:  I am part of the generation that grew up with a continuously and fast changing environment in terms of technologies constantly impacting our lives. As a young professional, I see myself often challenged to act as broker between the former, less agile and the new, fast paced world. I believe it is important for me to learn from the existing that in fact made all the changes possible but also support others to cope with constant change. ISACA has been a great touch point for me bringing together people with different backgrounds, capabilities, values and experiences.

ISACA: Complete this sentence. “The secret to success is…”
Matthias:  …to watch, to listen and to learn. This approach helped me many times to flex my style and to adapt to new cultures and environments during my personal and professional live.

Which technology could you not live without and why?
a) Facebook
b) Twitter
c) You Tube
d) Linked In
e) Instant Messenger
f) None of the above, as I am not a fan.
Matthias: "Linked In – Networking platforms such as Linked In and XING are extremely useful to connect with peers, colleagues and business partners. It provides easy access to background information about connections, direct messaging, news updates within my network and groups, etc.

ISACA: Complete this sentence. “ISACA Young Professionals can add value through…”
 …bringing new perspectives, insights and thinking from a new generation that will shape the future of many organizations.


NEW! Activity Badges

Badges help others understand your level of community activity and your reputation as a contributor within the Knowledge Center. Learn More.

Discussions: 393 total

Must be a Topic member to contribute
View All »
Did you all know that ISACA has an eLibrary that offers over 425 full text books that can be read for free by its members? You can access the eLibrary here: That being said, it seems to be an und...
JasonY | 2/22/2018 3:50:15 PM | COMMENTS(12)
Is there anyone who 'd already passed CSX-P certification exam? I need some tips and knowledge sharing resources that can help me to pass the exam. Email:-
Sana527 | 2/17/2018 12:24:24 PM | COMMENTS(0)
With a Masters degree in Information Systems Technology - Information Assurance. What is the position to apply to? Is it as a new employee, experienced staff or as a senior.
Akinkunmi135 | 1/12/2018 2:27:54 AM | COMMENTS(4)
Hi all, Do you know any links or do you have a recommendation relating to IT audit rating system? Currently, we are having a difficulty in rating our engagements (function, application, post-implementation  reviews, etc.) Appreciate also if you could shar...
ege_eds | 1/10/2018 9:34:27 PM | COMMENTS(0)
New year Promo!. Have full lifetime access to my newly published course on Udemy -ACL FOR AUDIT, DATA ANALYSIS AND VISUALIZATION. ITS JUST 10.99$. Get Yours Now!. Follow the link below.
Samuel922 | 1/3/2018 6:05:23 AM | COMMENTS(0)
In February 2017 I took my first job as and IT Auditor.  Now I am being asked to scope out an audit for the SFTP process for my company.  Because of my background in IT support, my bosses think I have the requisite knowledge of what SFTP is, which I do, t...
James650 | 12/30/2017 7:54:24 AM | COMMENTS(1)

Documents & Publications: 226 total

Must be a Topic member to contribute
View All »
Posted by ISACA 57 days ago
ISACA Guidelines
Posted by ISACA 72 days ago
ICQs and Audit Programs
Posted by ISACA 362 days ago
Posted by ISACA 740 days ago

Events & Online Learning: 4 total

11 Sep 2017
ISACA International Event
Portland, OR, USA
13 Aug 2018
ISACA International Event
Nashville, Tennessee, US
2018 GRC Conference - 13-15 August , Nashville, TN. Explore the future of Governance Risk and Control through expert-led workshops and sessions developed by the IIA and ISACA. Register early for our GRC learning tracks.

Journal Articles: 18 total

Volume 2, 2018
by Stephen Doyle, CISA, CGEIT, PMIIA
Get to know your network.
Volume 6, 2017
by Thomas Johnson, CISA, CRISC, CISM, CISSP
A certification is a credential for an accomplishment that has been validated by a testing process and typically cannot be earned without verification of the appropriate level of experience or education.
Volume 6, 2017
by Sarah Orton, CISA
Get to know your network.
Volume 5, 2017
by Justine Bone
Get to know your network.
Volume 3, 2017
by Jane Whitgift, CISM, MBCS
Get to know your network.
Volume 5, 2016
by Daksha Bhasker, CISM, CISSP
When women are in leadership positions in significant numbers, “the bottom line improves—from financial success to the quality and scope of decision making.”

Wikis: 6 total

Blog Posts: 10 total

Public Key Infrastructure or PKI has been around for more than twenty years and just like a twenty-year-old it may have finally found its home with device protection. When PKI first hit the scene, it was revolutionary. A way to share information without s...
Posted By : Kenneth687 | 0 comments
28 Sep 2017
Recently, I witnessed an interesting webcast by Scopism, an UK-based consulting and training company. They announced the publication of the SIAM(c) Foundation Body of Knowledge, available for free through their website Service Integration...
Posted By : Peter873 | 0 comments
Liechtensteins Teilnahme an der 'European Cybersecurity Challenge' in DüsseldorfEdit articleUm was geht es genau?Die European Cybersecurity Challenge ist ein Wettbewerb für Nachwuchskräfte aus dem Bereich IT / InfoSec die sich für Cybersecurity interessie...
Posted By : Peter Huerlimann | 0 comments
Hi there, About some 6 years ago, I was sitting in a dead end job and always I felt I could do better. I had done everything I knew and I did my job well enough but I found myself to have hit the ceiling as far as my career was concerned in that particula...
Posted By : Edward491 | 3 comments
Let us have positive inspirational slogans for every situation. Last week I started the project meeting like this: I don't know you are all so good at tuning the website. The performance is now is wonderful. I could witness reduction of stress, anxiety an...
Posted By : Jayakumar Sundaram | 1 comments
  Rob Stroud is the New York based Vice President of Strategy and Innovation at CA Technologies and is the current President for the 2014-15 administrative term.  I caught up with Rob in Australia when he visited Canberra in June 2014...
Posted By : Rob Hanson | 2 comments