Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying CISA – Certified Information Systems Auditor Study Guide
  • Table Of Contents Toc
CISA – Certified Information Systems Auditor Study Guide

CISA – Certified Information Systems Auditor Study Guide

By : Hemang Doshi
4.5 (61)
Buy this Book
close
close
CISA – Certified Information Systems Auditor Study Guide

CISA – Certified Information Systems Auditor Study Guide

4.5 (61)
By: Hemang Doshi
Buy this Book

Overview of this book

Are you looking to prepare for the CISA exam and understand the roles and responsibilities of an information systems (IS) auditor? The CISA - Certified Information Systems Auditor Study Guide is here to help you get started with CISA exam prep. This book covers all the five CISA domains in detail to help you pass the exam. You’ll start by getting up and running with the practical aspects of an information systems audit. The book then shows you how to govern and manage IT, before getting you up to speed with acquiring information systems. As you progress, you’ll gain knowledge of information systems operations and understand how to maintain business resilience, which will help you tackle various real-world business problems. Finally, you’ll be able to assist your organization in effectively protecting and controlling information systems with IT audit standards. By the end of this CISA book, you'll not only have covered the essential concepts and techniques you need to know to pass the CISA certification exam but also have the ability to apply them in the real world.
Table of Contents (19 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
1
Section 1: Information System Auditing Process
Icon
Section 1: Information System Auditing Process
Lock Free Chapter
2
Audit Planning
Icon
Audit Planning
Icon
The content of an audit charter
Icon
Audit planning
Icon
Business process applications and controls
Icon
Types of controls
Icon
Risk-based audit planning
Icon
Types of audit and assessment
Icon
Summary
Icon
Assessments
3
Audit Execution
Icon
Audit Execution
Icon
Audit project management
Icon
Sampling methodology
Icon
Audit evidence collection techniques
Icon
Data analytics
Icon
Reporting and communication techniques
Icon
Control self-assessment
Icon
Summary
Icon
Assessments
4
Section 2: Governance and Management of IT
Icon
Section 2: Governance and Management of IT
5
IT Governance
Icon
IT Governance
Icon
IT enterprise governance (EGIT)
Icon
IT-related frameworks
Icon
IT standards, policies, and procedures
Icon
Organizational structure
Icon
Enterprise architecture
Icon
Enterprise risk management
Icon
Maturity model
Icon
Laws, regulations, and industry standards affecting the organization
Icon
Summary
Icon
Assessments
6
IT Management
Icon
IT Management
Icon
IT resource management
Icon
IT service provider acquisition and management
Icon
IT performance monitoring and reporting
Icon
Quality assurance and quality management in IT
Icon
Summary
Icon
Assessment answers
7
Section 3: Information Systems Acquisition, Development, and Implementation
Icon
Section 3: Information Systems Acquisition, Development, and Implementation
8
Information Systems Acquisition and Development
Icon
Information Systems Acquisition and Development
Icon
Project management structure
Icon
Business cases and feasibility analysis
Icon
System development methodologies
Icon
Control identification and design
Icon
Summary
Icon
Assessments
9
Information Systems Implementation
Icon
Information Systems Implementation
Icon
Testing methodology
Icon
System migration
Icon
Post-implementation review
Icon
Summary
Icon
Assessments
10
Section 4: Information System Operations and Business Resilience
Icon
Section 4: Information System Operations and Business Resilience
11
Information System Operations
Icon
Information System Operations
Icon
Understanding common technology components
Icon
IT asset management
Icon
Job scheduling
Icon
End user computing
Icon
System performance management
Icon
Problem and incident management
Icon
Change management, configuration management, and patch management
Icon
IT service level management
Icon
Evaluating the database management process
Icon
Summary
Icon
Assessment
12
Business Resilience
Icon
Business Resilience
Icon
Business impact analysis
Icon
Data backup and restoration
Icon
System resiliency
Icon
Business continuity plan
Icon
Disaster recovery plan
Icon
DRP – test methods
Icon
Recovery Time Objective (RTO) and Recovery Point Objective (RPO)
Icon
Alternate recovery site
Icon
Summary
Icon
Assessment
13
Section 5: Protection of Information Assets
Icon
Section 5: Protection of Information Assets
14
Information Asset Security and Control
Icon
Information Asset Security and Control
Icon
Information asset security frameworks, standards, and guidelines
Icon
Privacy principles
Icon
Physical access and environmental controls
Icon
Identity and access management
Icon
Biometrics
Icon
Summary
Icon
Assessments
15
Network Security and Control
Icon
Network Security and Control
Icon
Network and endpoint devices
Icon
Firewall types and implementation
Icon
VPN
Icon
Voice over Internet Protocol (VoIP)
Icon
Wireless networks
Icon
Email security
Icon
Summary
Icon
Assessments
16
Public Key Cryptography and Other Emerging Technologies
chevron up
Icon
Public Key Cryptography and Other Emerging Technologies
Icon
Public key cryptography
Icon
Elements of PKI
Icon
Cloud computing
Icon
Virtualization
Icon
Mobile computing
Icon
Summary
Icon
Assessments
17
Security Event Management
Icon
Security Event Management
Icon
Security awareness training and programs
Icon
Information system attack methods and techniques
Icon
Security testing tools and techniques
Icon
Security monitoring tools and techniques
Icon
Incident response management
Icon
Evidence collection and forensics
Icon
Summary
Icon
Assessments
18
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Public key cryptography

Encryption is the process of converting data into an unreadable code so it cannot be accessed or read by any unauthorized person. This unreadable data can again be converted into readable form by a process of decryption. Different types of algorithms are available for encryption and decryption. In this section, we will look at various aspects of public key cryptography.

Let's understand the concepts of symmetric and asymmetric encryption and the difference between the two.

Symmetric encryption versus asymmetric encryption

Encryption can be of two types, that is, symmetric encryption or asymmetric encryption. The following table will help us to understand the difference between the two terms:

Symmetric Encryption Asymmetric Encryption
A single key is used to encrypt and decrypt the messages Two keys are used: one for encryption and another for decryption.
The Key is said to be symmetric because the encryption key is the same as the decryption key. Messages...
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
CISA – Certified Information Systems Auditor Study Guide
End of Section 16
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon