06176nam 2200661 450 991027093500332120160229011202.01-119-05640-31-119-41921-21-119-05625-X(CKB)3710000000603985(EBL)4415503(SSID)ssj0001701433(PQKBManifestationID)16560840(PQKBTitleCode)TC0001701433(PQKBWorkID)15079428(PQKB)25251745(MiAaPQ)EBC4415503(EXLCZ)99371000000060398520151221h20162016 uy| 0engur|n|---|||||txtccrCISA certified information systems auditor study guide /David Cannon, with Brian T. O'Hara and Allen Keele4th ed.Indianapolis, Indiana :Sybex, a Wiley brand,[2016]©20161 online resource (699 p.)Includes index.1-119-05624-1 CISA: Certified Information Systems Auditor: Study Guide; Contents; Introduction; Assessment Test; Chapter 1 Secrets of a Successful Auditor; Understanding the Demand for IS Audits; Executive Misconduct; More Regulation Ahead; Basic Regulatory Objective; Governance Is Leadership; Three Types of Data Target Different Uses; Audit Results Indicate the Truth; Understanding Policies, Standards, Guidelines, and Procedures; Understanding Professional Ethics; Following the ISACA Professional Code; Preventing Ethical Conflicts; Understanding the Purpose of an Audit; Classifying General Types of AuditsDetermining Differences in Audit ApproachUnderstanding the Auditor's Responsibility; Comparing Audits to Assessments; Differentiating between Auditor and Auditee Roles; Applying an Independence Test; Implementing Audit Standards; Where Do Audit Standards Come From?; Understanding the Various Auditing Standards; Specific Regulations Defining Best Practices; Audits to Prove Financial Integrity; Auditor Is an Executive Position; Understanding the Importance of Auditor Confidentiality; Working with Lawyers; Working with Executives; Working with IT Professionals; Retaining Audit DocumentationProviding Good Communication and IntegrationUnderstanding Leadership Duties; Planning and Setting Priorities; Providing Standard Terms of Reference; Dealing with Conflicts and Failures; Identifying the Value of Internal and External Auditors; Understanding the Evidence Rule; Stakeholders: Identifying Whom You Need to Interview; Understanding the Corporate Organizational Structure; Identifying Roles in a Corporate Organizational Structure; Identifying Roles in a Consulting Firm Organizational Structure; Summary; Exam Essentials; Review Questions; Chapter 2 GovernanceStrategy Planning for Organizational ControlOverview of the IT Steering Committee; Using the Balanced Scorecard; IT Subset of the BSC; Decoding the IT Strategy; Specifying a Policy; Project Management; Implementation Planning of the IT Strategy; Using COBIT; Identifying Sourcing Locations; Conducting an Executive Performance Review; Understanding the Auditor's Interest in the Strategy; Overview of Tactical Management; Planning and Performance; Management Control Methods; Risk Management; Implementing Standards; Human Resources; System Life-Cycle Management; Continuity Planning; InsuranceOverview of Business Process ReengineeringWhy Use Business Process Reengineering; BPR Methodology; Genius or Insanity?; Goal of BPR; Guiding Principles for BPR; Knowledge Requirements for BPR; BPR Techniques; BPR Application Steps; Role of IS in BPR; Business Process Documentation; BPR Data Management Techniques; Benchmarking as a BPR Tool; Using a Business Impact Analysis; BPR Project Risk Assessment; Practical Application of BPR; Practical Selection Methods for BPR; Troubleshooting BPR Problems; Understanding the Auditor's Interest in Tactical Management; Operations ManagementSustaining Operations"The industry-leading study guide for the CISA exam, fully updated. More than 27,000 IT professionals take the Certified Information Systems Auditor exam each year. SC Magazine lists the CISA as the top certification for security professionals. Compliances, regulations, and best practices for IS auditing are updated twice a year, and this is the most up-to-date book available to prepare aspiring CISAs for the next exam. CISAs are among the five highest-paid IT security professionals; more than 27,000 take the exam each year and the numbers are growing Standards are updated twice a year, and this book offers the most up-to-date coverage as well as the proven Sybex approach that breaks down the content, tasks, and knowledge areas of the exam to cover every detail. Covers the IS audit process, IT governance, systems and infrastructure lifecycle management, IT service delivery and support, protecting information assets, disaster recovery, and more. Anyone seeking Certified Information Systems Auditor status will be fully prepared for the exam with the detailed information and approach found in this book."--Provided by publisher.Computer securityExaminationsStudy guidesInformation storage and retrieval systemsSecurity measuresExaminationsStudy guidesComputer networksSecurity measuresExaminationsStudy guidesManagement information systemsAuditingExaminationsStudy guidesElectronic books.Computer securityExaminationsInformation storage and retrieval systemsSecurity measuresExaminationsComputer networksSecurity measuresExaminationsManagement information systemsAuditingExaminationsCannon David1211237O'Hara Brian T.Keele AllenMiAaPQMiAaPQMiAaPQBOOK9910270935003321CISA2795918UNINA