Everyone is aware of the need for information security in today's highly networked business environment. Information is arguably among an enterprise's most valuable assets, so its protection from predators from both within and outside has taken center stage as an IT priority.
Boards and executive management have long known the need for enterprise and corporate governance. However, most are beginning to realize that there is a need to extend governance to information technology as well, and provide the leadership, organisational structures and processes that ensure that the enterprise
Without assurance, enterprises cannot feel certain that the information upon which they base their mission-critical decisions is reliable, confidential, secure and available when needed.
ISACA has long served the information systems audit and assurance community, since its inception in 1969. Through education, research, publications and the leading global IS audit certification (Certified Information Systems Auditor, CISA), ISACA has become
Hopefully you are able to find answers to any of your IT compliance-related questions through the source of information as follows (link:http://www.itcinstitute.com/display.aspx?id=3384):
ISACA Wellington is inviting participation from its members. Thanks to our members, our last ThinkTank session "What is the meaning of Governance" was lively, thought provoking and covered a lot of ground.
This article was originally published at IIA IT Audit Magazine (Vol. 10, March 10, 2007)
Reviews of an organization's change control environment will help internal auditors detect critical system failures and risks before they occur.
Francis Kaitano, CISSP, MCSD, MCAD.Net
Senior Consultant, Enterprise Risk Services Deloitte New Zealand
Audit committees in the public sector
This guide sets out the principles and good practices needed to set up and effectively operate an audit committee in the public sector.
8 April 2008
1. Do you know which analytical tool is the most popular audit analytics solution the world-wide? See the attached The 2006 Internal Auditor Software Survey Results for details.
2. The latest version of ACL (V9.1) released in Jan 2008 is able to import PDF file; however, based on my experience, only fixed length PDF file is able to import to ACL properly. Most of time, PDF files cannot be imported properly (i.e., in alignment).
Attached are notes from the first chapter think tank, where we considered the definition of governance.
Members are invited to propose a think tank topic, which can be on anything relevant to assurance, security, and governance, including issues that you are personally tackling in your organisation.
The format of think tanks is that the proposer presents a topic or issue for 5 to 10 minutes followed by discussion. This is a superb opportunity to exchange ideas and experiences and to essentially bring a collection of brainpower to bear on a subject.