获得专家指导, research policies and procedures to stay ahead of the curve in your IT audit and assurance career.
零信任审计计划
Zero Trust is a security model that requires all users of an organization's network to be authenticated, authorized, reviewed, 并定期进行验证,以确保授予和维护适当的访问权限,更重要的是,在不再需要执行工作职责时停用这些权限.
谷歌云平台审计程序
随着谷歌的不断发展和普及® Cloud Platform (GCP®) now representing the third largest provider of cloud services, ISACA制定了一个审核程序,帮助审核员评估和测试控制GCP的覆盖范围、充分性和有效性® services.
审计从业者机器学习指南,第1部分: Technology
机器学习(ML), 人工智能的一个子集, has been rapidly adopted by enterprises and governments around the world.
审计从业者机器学习指南,第2部分: Compliance Risk
机器学习(ML), 人工智能的一个子集, has been rapidly adopted by enterprises and governments around the world.
物理和环境安全审计程序
网络安全和审计从业者可能会说物理安全是网络安全的一部分,或者物理安全是网络安全的一个子集. While there may be differences of opinion in how physical security is defined in terms of cybersecurity, 人们一致认为,当从多个角度考虑数字威胁时,物理安全可能会被忽视.
数据库审计程序
Databases, 由数据和数据库管理系统组成, 存储数据,以便它们可以被不同的程序使用,而不必考虑数据结构或组织. The ability of databases to accommodate large volumes of data, 导致数据库被广泛采用吗.
COBIT为DevOps审计程序
ISACA developed this audit program as a companion to COBIT Focus Area: DevOps, Using COBIT® 2019. 重点领域出版物描述了COBIT框架概念如何应用于DevOps,旨在帮助澳门赌场官方下载评估对于开发有效的DevOps治理系统非常重要的管理实践.
VPN安全审计程序
Virtual Private Networks (VPNs) are relied on to give remote workers access to the corporate network securely. 随着远程工作者的数量和远程工作的持续时间的增加(从临时远程工作到潜在的永久远程工作), 人们对vpn的认识也在增长. 现在,澳门赌场官方下载开始质疑vpn的安全性.
目标:敏捷审计
目标:敏捷审计, 您将发现关于敏捷的历史教训——从它的开始到最近的采用方法——以及将敏捷纳入澳门赌场官方下载审计实践的好处. 获得敏捷审计工具集使用的预览, learn about approaches for enhancing professional Agile competency, and see how Agile auditing practices successfully integrate into traditional planning, fieldwork, 审计项目的报告阶段.
IT审计框架,第四版
Get the guidance and techniques that will lend consistency and effectiveness to your audits. The new 4th ITAF版本概述了与审计过程(风险评估)顺序一致的标准和最佳实践, planning and field work) to guide you in assessing the operational effectiveness of an enterprise and in
信息技术 Audit Sampling Guidelines (Guidelines 2208)
ISACA制定了信息技术审计抽样指南(指南2208),作为其信息技术审计框架(ITAF™)的配套。. 这些指南的目的是为IT审计和保证从业人员在设计和选择审计样本以及评估样本结果方面提供指导. Appropriate sampling and evaluation help to achieve the requirements of sufficient and appropriate evidence.
当审计程序应用于少于100%的总人数时,IT审计和保证从业人员应该在得出关于总人数的结论时考虑这些准则.
通过IT审计专家开发和提供的培训,提高您的专业知识,增加您的职业潜力或澳门赌场官方下载技能.
注册资讯系统审核员(CISA)
The CISA certification is world-renowned as the standard of achievement for those who audit, control, monitor and assess an organization’s information technology and business systems. This certification is a must have for entry to mid-career IT professionals looking for leverage in career growth. CISA考试现在可以通过远程监考!
来自ISACA的CISA考试准备
Whether you prefer to prep on your own time or with the additional guidance and interaction that comes with live, expert instruction, ISACA has the right test prep solutions for every professional. Choose what works for your schedule and your studying needs.
零信任审计计划
Zero Trust is a security model that requires all users of an organization's network to be authenticated, authorized, reviewed, 并定期进行验证,以确保授予和维护适当的访问权限,更重要的是,在不再需要执行工作职责时停用这些权限.
查看IT审计出版物和资源
获得关于利用IT审计框架来创建和维护最有效的技术和理解来管理IT审计的更多见解和指导.
