The following are new releases from the IT Governance Institute. Not necessarily specific to IT governance, they offer information that is of importance to IT control, security and assurance professionals, as well as others involved in various facets of ensuring effective governance over IT. These and many more such publications are available from the ISACA Bookstore.
Please Note: To view PDF files, Adobe Acrobat Reader must be installed. Documents in PDF format will open in a new browser window and may take a few minutes to download, depending on your connection speed. The files may also be saved directly to your computer by right-clicking on the document link and choosing 'Save Target As'.
- COBIT and Application Controls: A management Guide
This guide helps business executives, business
management, and IT management, as well as IT developers and implementers,
internal and external auditors and other professionals manage and provide
assurance regarding application controls.
- COBIT Mapping: Mapping of ISO/IEC 17799:2000 With COBIT
A new publication that demonstrates how these two standards are interrelated and how the detailed information requirements of ISO/IEC 17799:2000 can be integrated with COBIT. Almost 1,000 information requirements were mapped to 318 COBIT control objectives. Available for complimentary download.
- Enterprisewide Identity Management
Identity management and user provisioning solutions of today can help improve cost-efficiencies, enable effective processes and promote user satisfaction while providing a high degree of security—mitigating some of the risk. This document provides identity management guidance including business drivers and technology considerations; risk, control, privacy and security considerations when implementing identity management; a suggested framework for properly controlled and successful implementation; a self-assessment management questionnaire, focused on business needs, culture, infrastructure and resources; an internal control questionnaire and audit program linked to COBIT process areas; a detailed list of vendors and descriptions of their solutions.