Volume 2, 2025 | ISACA Journal

Featured Articles

Blue background, with white lines and dots scattered throughout, and in the center a bright white light is emanating from a circular object

The Governance Conundrum of Digital Twins

As organizations struggle to harness the power of digital twins, they face governance challenges that can undermine the technology's potential.

Hand interacting with a glowing network of interconnected nodes.

ISACA Journal Article

A Multilayered Framework for Assessing Trust in Cyberrisk Models

Author: Jack Freund

To integrate cyberrisk models into organizational decision making, stakeholders must trust in their accuracy, reliability, and transparency.

A pensive man wearing glasses contemplates data visualizations projected onto screen

ISACA Journal Article

Charting the Course of IT Governance

Author: Robert Putrus

Understanding the various forces at play in IT governance is vital for organizations aiming to leverage technology effectively and achieve sustained success.

Abstract illustration of a brain as a circuit board, highlighting the intricate connections of the human mind.

ISACA Journal Article

Guarding the Mind’s Frontier: The Unprecedented Challenge of Neurosecurity Governance

Author: Er. Kritika

Governance frameworks must evolve to reflect the merging of human cognition and digital systems.

Abstract digital illustration of a checkmark within a circuit board, signifying successful processing or verification

ISACA Journal Article

Accelerate AI and ML Governance With RPA Risk Management Principles

Authors: Michael Ly and Yue Hong

Organizations should look to RPA risk management principles to mitigate model development and data management risk associated with AI and ML.

Abstract digital tree symbolizing interconnectedness and technology, glowing on a dark green background.

ISACA Journal Article

Green IT and Environmental Economics Through an IT Governance Lens

Author: Guy Pearce

Green IT should be subject to the same rigors of IT governance as regular IT to help ensure that it produces the anticipated value.

Abstract digital art depicting streams of binary code flowing downwards, rendered in varying shades of blue

ISACA Journal Article

Consolidating Data Loss Prevention Tools: Good Idea, Bad Outcome

Author: Dennis Sawatzki

The reaction to shadow DLP is often to reduce the number of DLP tools in use. But the outcome may be a more fragmented DLP environment with higher operational costs.

A person's hands interact with a glowing digital network representing secure transactions

ISACA Journal Article

Case Study: Establishing a Strong Security Posture Without Sacrificing Developer Productivity

Author: Mick Brady

A company improved its security posture with a zero trust-based DevSecOps solution that used automation to reduce risk and increase compliance without slowing development.

A man's suit with a question mark in place of the head

ISACA Journal Article

The Role of the Identity Provider

Author: Luigi Sbriz

Digital identity recognition demands a holistic approach that takes into account the real world as well as the digital one.

Additional languages available: Italiano

Columns

A single green question mark cube stands out among numerous black question mark cubes on a dark surface

ISACA Journal Article

Information Security Matters: The Dark Arts of Managing Downtime

Author: Steven J. Ross

IT can be a sturdy midfielder and do some scoring, but businesspeople are the strikers, with security playing defense and tending the goal.

A hand holding a holographic image of a handshake, symbolizing global business partnerships and collaboration.

ISACA Journal Article

The Digital Trust Imperative: Building a Culture of Trust

Author: K. Brian Kelley

If an organization wants to have a strong trust position within the digital ecosystem, it must invest in the culture to support such a position.

Online Exclusives

ISACA Journal Article

Mitigating the Cybersecurity Workforce Shortage With the NIST NICE Framework

Author: James Baird

There is a dire need for workers with marketable security skills, from traditional information security to modern cybersecurity.

ISACA Journal Article

The Governance Game of Chess: Mapping ISO/IEC 27001:2022 to COBIT®

Author: Christopher C. Anoruo

The opening moves in the game of chess can be used to map controls specified in ISACA’s COBIT® framework to the ISO/IEC 27001:2022 standard outcomes.

ISACA Journal Article

The Board of Directors and the Volcano Dilemma: Due Care in the Face of Enterprise Cyberrisk

Author: Jeimy J. Cano M.

Recent research states that "[a]ny attempt to ‘predict’ the future is futile, which usually results in executives simply not bothering to determine how various political, regulatory changes or the manifestation of cyber risk (emphasis added) may affect their operations."

Additional languages available: Español

ISACA Journal Article

Applying Interstellar Wisdom to Navigate the Digital Age

Author: Abdelelah Alzaghloul

The film Interstellar parallels the pressing issues of sustainability, the evolving role of AI, and the importance of resilience in the face of technological advancement.

ISACA Journal Article

Quantifying Adaptive Governance Success: A Mixed-Methods Analysis of 500 Organizations

Authors: Arjun Jaggi and Aditya Karnam Gururaj Rao

The digital ecosystem has experienced unprecedented growth, with global internet users reaching 5.3 billion in 2023, representing a 66% penetration rate.

ISACA Journal Article

Reducing Software Vulnerabilities With a Secure-by-Demand Approach

Author: Allen Ari Dziwa

A secure-by-demand approach allows organizations to drive the quality of software by stipulating strict requirements for software manufacturers.

ISACA Journal Article

The Value of Zero Trust in IoT-Enabled Healthcare Infrastructure

Author: Sixtus Daudu

Zero trust models can address the healthcare industry’s current security challenges by enforcing the default deny measure.

ISACA Journal Article

Beyond Compliance: The Role of Threat Models in Safeguarding Critical Infrastructure

Author: Donavan Cheah

Securing CII goes beyond compliance. A risk picture and threat modeling enable risk practitioners to identify risk that manifests from threats to their environment.

ISACA Journal

CPE Quiz 219

Take the Quiz Now

Governance Gains: Fortifying the Digital Ecosystem

Featured Articles

Columns

Online Exclusives