Audit Information systems & IT Security
Audit Information systems & IT Security

Audit Information systems & and IT Security

Information System audit and IT Security


(Information Systems Audit and Control Association) A membership association dedicated to information systems auditing and security. ISACA provides the widely recognized certifications CISA and CISM.

The Institute of Internal Auditors
"The Institute of Internal Auditors (IIA) is an international professional association of more than 122,000 members with global headquarters in the United States." They also provide information on IT Audit, including their online publication 'ITAudit'

Computer Emergency Response Team

The Committee of Sponsoring Organizations of the Treadway Commission

SANS Institute
SANS (SysAdmin, Audit, Network, Security). Provides training, also much useful information on the web site.

US General Accountability Office
Formerly the General Accounting Office
Have a web page targeted at auditing and accountability:

Information Security Forum

International Federation of Accountants

US Intergovernmental Information Security Audit Forum
The National Association of State Auditors, Comptrollers and Treasurers is an organization for state officials who deal with the financial management of state government.

The International Information Systems Security Certification Consortium. Certification body for security professionals. Certified Information Systems Security Professional (CISSP) is the most recognised one. Other certifications include ISSAP, ISSMP, ISSEP; CAP and SSCP.

IT Governance Institute
Develops references on IT-enabled business systems governance, including COBIT and Val IT.

INTOSAI Standing Committee on IT Audit
"INTOSAI is the professional organization of supreme audit institutions (SAIs) in countries that belong to the United Nations or its specialist agencies. SAIs play a major role in auditing government accounts and operations, and in promoting sound financial management and accountability in their governments."
"…the IT Audit Committee is the arm of INTOSAI dedicated to supporting the development of knowledge and skills in the use and audit of information technology, and to encouraging bilateral and regional co-operation between its members…"

Auditing Security and IT Systems
Copyright 2006-2008. All Rights Reserved. Something missing on this page? Let us know