滚动草地,伊利诺伊州,美国-Global IT association ISACA has issued 23 new audit programs aligned with the COBIT 5 framework. 新 审计/保证程序 have been developed to help information systems (IS) audit 和 保证 professionals implement the good practices presented in COBIT 5 为保证 和 incorporate the seven enablers presented in COBIT 5 as part of a consistent 保证 approach to assess IT 风险.
This group of audit/保证 programs covers two important domains: 调整,计划和组织 (APO) 和 构建、获取和实施 (白). 这些领域包括 enterprise IT management processes that enable day-to-day delivery of IT services 和 products to achieve enterprise goals. 审计 和 保证 professionals can use all or subsets of these generic programs to build specific programs that meet their scope 和 保证 objectives.
的 APO domain covers 13 processes that lay the foundation to manage information assets in a consistent way that ensures value creation 和 风险 optimization. 13个APO过程是:
- 管理IT管理框架
- 管理策略
- 管理澳门赌场官方下载架构
- 管理创新
- 管理投资组合
- 管理预算和成本
- 管理人力资源
- 管理关系
- 管理服务协议
- 管理供应商
- 管理质量
- 管理风险
- 管理安全
的 BAI domain covers 10 processes that ensure that projects will be managed in a consistent 和 efficient way to enable the enterprise to realize value from information assets. 10个BAI过程是:
- 管理计划和项目
- 管理需求定义
- Manage Solutions Identification 和 Build
- 管理可用性和容量
- Manage Organisational Change Enablement
- 管理变更
- Manage Change Acceptance 和 Transitioning
- 管理知识
- 管理资产
- 管理配置
An audit program has been developed for each of these processes.
In total, ISACA now has nearly 30 generic audit/保证 programs aligned with COBIT 5. 的 评估、指导和监督 (EDM) domain covers five processes for the governance of enterprise IT, 和 those five programs were released earlier in the year to help audit professionals assess the effectiveness of the IT governance framework 和 its alignment with enterprise goals. Programs for the six processes included in the 交付、服务和支持 (DSS) domain will be released in December.
“ISACA’s audit programs are comprehensive 和 reference all seven COBIT 5 enablers 和 their dimensions to assess overall process performance,史蒂文·巴布说, CGEIT, CRISC, international vice president of ISACA 和 风险, compliance 和 保证 leader at Vodafone UK 和 Irel和. “的 programs reference the COBIT 5 goals cascade to ensure that detailed objectives of the 保证 engagement can be put into the enterprise 和 IT context.”
的 audit programs have been developed 和 peer reviewed by experienced audit/保证 professionals from around the world. 的 programs can be downloaded as Microsoft Word™ files to allow customization to fit specific operating environments.
的 audit/保证 programs are free for ISACA members 和 US $45 for nonmembers at 1bn.kingpaq.com. COBIT 5可在 1bn.kingpaq.com/cobit.
关于ISACA
With more than 115,000 constituents in 180 countries, ISACA (1bn.kingpaq.com) helps business 和 IT leaders build trust in, 和价值, 信息和信息系统. 成立于1969年, ISACA is the trusted source of knowledge, 标准, 网络, 和 career development for information systems audit, 保证, 安全, 风险, privacy 和 governance professionals. ISACA提供网络安全联系, a comprehensive set of resources for cyber安全 professionals, 和COBIT, a business framework that helps enterprises govern 和 manage their information 和 technology. ISACA also advances 和 validates business-critical skills 和 knowledge through the globally respected Certified Information Systems 审计or (CISA), Certified Information Security Manager (CISM), Certified in the 治理 of 澳门赌场官方下载 IT (CGEIT) 和 Certified in Risk 和 Information Systems Control (CRISC) credentials. 的 association has more than 200 chapters worldwide.
Participate in the ISACA Knowledge Center: http://1bn.kingpaq.com/resources
在Twitter上关注ISACA: http://twitter.com/ISACANews
在LinkedIn上加入ISACA: ISACA(官方) http://linkd.in/ISACAOfficial
比如Facebook上的ISACA: www.脸谱网.com/ISACAHQ