Willkommen, schön sind Sie da!
Logo Ex Libris

CISA Certified Information Systems Auditor Study Guide

  • E-Book (epub)
  • 696 Seiten
(0) Erste Bewertung abgeben
Bewertungen
(0)
(0)
(0)
(0)
(0)
Alle Bewertungen ansehen
The ultimate CISA prep guide, with practice exams Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edi... Weiterlesen
E-Books ganz einfach mit der kostenlosen Ex Libris-Reader-App lesen. Hier erhalten Sie Ihren Download-Link.
CHF 52.00
Download steht sofort bereit
Informationen zu E-Books
E-Books eignen sich auch für mobile Geräte (sehen Sie dazu die Anleitungen).
E-Books von Ex Libris sind mit Adobe DRM kopiergeschützt: Erfahren Sie mehr.
Weitere Informationen finden Sie hier.

Beschreibung

The ultimate CISA prep guide, with practice exams

Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation.

For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared.

  • Discover how much you already know by beginning with an assessment test
  • Understand all content, knowledge, and tasks covered by the CISA exam
  • Get more in-depths explanation and demonstrations with an all-new training video
  • Test your knowledge with the electronic test engine, flashcards, review questions, and more

The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.



David L. Cannon CISA, CCSP, is President and Founder of CertTest Training Center, a leading CISA training provider. With more than 20 years of experience in IT training and consulting for IT operations, security, system administration, and management, David teaches CISA preparation courses across the country. He is a frequent speaker and lecturer at the leading security and auditing conferences. Brian T. O'Hara CISA, CISM, CRISC, CISSP is the Information Security Officer (ISO) for Do it Best Corp. and is an ISSA Fellow. He is the President of the Indiana InfraGard Members Alliance, a partnership between the FBI and the private sector and President of the Central Indiana Chapter of ISACA.

Featuring test questions by...

Allen Keele CISA, CISM, CISSP, ISO 31000 CICRA, ISO 27001 CICA, ISO 27001 Lead Auditor, ISO 22301 Certified Business Continuity Manager, and Certified Fraud Examiner is the founder of Certified Information Security www.certifiedinfosec.com.

Autorentext

David L. Cannon CISA, CCSP, is President and Founder of CertTest Training Center, a leading CISA training provider. With more than 20 years of experience in IT training and consulting for IT operations, security, system administration, and management, David teaches CISA preparation courses across the country. He is a frequent speaker and lecturer at the leading security and auditing conferences. Brian T. O'Hara CISA, CISM, CRISC, CISSP is the Information Security Officer (ISO) for Do it Best Corp. and is an ISSA Fellow. He is the President of the Indiana InfraGard Members Alliance, a partnership between the FBI and the private sector and President of the Central Indiana Chapter of ISACA.

Featuring test questions by

Allen Keele CISA, CISM, CISSP, ISO 31000 CICRA, ISO 27001 CICA, ISO 27001 Lead Auditor, ISO 22301 Certified Business Continuity Manager, and Certified Fraud Examiner is the founder of Certified Information Security www.certifiedinfosec.com.

Klappentext

The ultimate CISA prep guide, with practice exams Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation. For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared. Discover how much you already know by beginning with an assessment test Understand all content, knowledge, and tasks covered by the CISA exam Get more in-depths explanation and demonstrations with an all-new training video Test your knowledge with the electronic test engine, flashcards, review questions, and more The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.



Zusammenfassung
The ultimate CISA prep guide, with practice exams

Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation.

For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared.

  • Discover how much you already know by beginning with an assessment test
  • Understand all content, knowledge, and tasks covered by the CISA exam
  • Get more in-depths explanation and demonstrations with an all-new training video
  • Test your knowledge with the electronic test engine, flashcards, review questions, and more

The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.



Inhalt
Introduction xix

Assessment Test xlii

Chapter 1 Secrets of a Successful Auditor 1

Understanding the Demand for IS Audits 2

Executive Misconduct 3

More Regulation Ahead 5

Basic Regulatory Objective 7

Governance Is Leadership 8

Three Types of Data Target Different Uses 9

Audit Results Indicate the Truth 10

Understanding Policies, Standards, Guidelines, and Procedures 11

Understanding Professional Ethics 14

Following the ISACA Professional Code 14

Preventing Ethical Conflicts 16

Understanding the Purpose of an Audit 17

Classifying General Types of Audits 18

Determining Differences in Audit Approach 20

Understanding the Auditor's Responsibility 21

Comparing Audits to Assessments 21

Differentiating between Auditor and Auditee Roles 22

Applying an Independence Test 23

Implementing Audit Standards 24

Where Do Audit Standards Come From? 25

Understanding the Various Auditing Standards 27

Specific Regulations Defining Best Practices 31

Audits to Prove Financial Integrity 34

Auditor Is an Executive Position 35

Understanding the Importance of Auditor Confidentiality 35

Working with Lawyers 36

Working with Executives 37

Working with IT Professionals 37

Retaining Audit Documentation 38

Providing Good Communication and Integration 39

Understanding Leadership Duties 39

Planning and Setting Priorities 40

Providing Standard Terms of Reference 41

Dealing with Conflicts and Failures 42

Identifying the Value of Internal and External Auditors 43

Understanding the Evidence Rule 43

Stakeholders: Identifying Whom You Need to Interview 44

Understanding the Corporate Organizational Structure 45

Identifying Roles in a Corporate Organizational Structure 45

Identifying Roles in a Consulting Firm Organizational Structure 47

Summary 49

Exam Essentials 49

Review Questions 52

Chapter 2 Governance 57

Strategy Planning for Organizational Control 61

Overview of the IT Steering Committee 64

Using the Balanced Scorecard 69

IT Subset of the BSC 74

Decoding the IT Strategy 74

Specifying a Policy 77

Project Management 79

Implementation Planning of the IT Strategy 90

Using COBIT 94

Identifying Sourcing Locations 94

Conducting an Executive Performance Review 99

Understanding the Auditor's Interest in the Strategy 100

Overview of Tactical Management 100

Planning and Performance 100

Management Control Methods 101

Risk Management 105

Implementing Standards 108

Human Resources 109

System Life?]Cycle Management 111

Continuity Planning 111

Insurance 112

Overview of Business Process Reengineering 112

Why Use Business Process Reengineering 113

BPR Methodology 114

Genius or Insanity? 114

Goal of BPR 114

Guiding Principles for BPR 115

Knowledge Requirements for BPR 116

BPR Techniques 116

BPR Application Steps 117

Role of IS in BPR 119

Business Process Documentation 119

BPR Data Management Techniques 120

Benchmarking as a BPR Tool 120

Using a Business Impact Analysis 121

BPR Project Risk Assessment 123

Practical Application of BPR 125

Practical Selection Methods for BPR 127

Troubleshooting BPR Problems 128

Understanding the Auditor's Interest in Tactical Management 129

Operations Management 129

Sustaining Operations 130

Tracking Actual Performance 130

Controlling Change 131

Understanding the Auditor's Interest in Operational Delivery 131

Summary 132

Exam Essentials 132

Review Questions 134

Chapter 3 Audit Process 139

Understanding the Audit Program 140

Audit Program Objectives and Scope 141

Audit Program Extent 143

Audit Program Responsibilities 144

Audit Program Resources 144

Audit Program Procedures 145

Audit Program Implementation 146

Audit Program Records 146

Audit Program Monitoring and Review 147

Planning Individual Audits 148

Establishing and Approving an Audit Charter 151

Role of the Audit Committee 151

Preplanning Specific Audits 153

Understanding the Variety of Audits 154

Identifying Restrictions on Scope 156

Gathering Detailed Audit Requirements 158

Using a Systematic Approach to Planning 159

Comparing Traditional Audits to Assessments and Self?]Assessments 161

Performing an Audit Risk Assessment 162

Determining Whether an Audit Is Possible 163

Identifying the Risk Management Strategy 165

Determining Feasibility of Audit 167

Produktinformationen

Titel: CISA Certified Information Systems Auditor Study Guide
Autor:
EAN: 9781119056409
ISBN: 978-1-119-05640-9
Digitaler Kopierschutz: Adobe-DRM
Format: E-Book (epub)
Herausgeber: Sybex
Genre: Datenkommunikation, Netzwerke
Anzahl Seiten: 696
Veröffentlichung: 23.02.2016
Jahr: 2016
Auflage: 4. Aufl.
Untertitel: Englisch
Dateigrösse: 6.8 MB